Ryan Petersen

@adrelanos > but on servers this can break connectivity to the level that SSH access is no longer possible. I have Kicksecure installed on a baremetal not a server however...

I agree but I think policies should be included to lock down settings that could effect a Kicksecure users security and privacy while still keeping open settings the user might...

@monsieuremre Well ok i'm kinda confused but like I said the policy should lock settings that could effect the users security or privacy if changed while still leaving user control...

@monsieuremre >Thunderbird - Already good, should stay Thunderbird can also be locked down with a policy like these two important settings: ```diff +{ + "policies": { + "Proxy": { +...

>What is the rationale behind locking settings? - Scenario A. User acidently changes settings in about:config or settings menu that effect their security and or privacy and forgets about them....

@adrenlanos You are probably one of the few devs and project maintainers that seems to get it. Sadly many projects are loosing site of the things that do matter by...

>Somebody [1] sent me a screenshot of LibreWolf's connections at each startup using OpenSnitch. Librewolf connects to ~ 11 different servers. Each of that server gets a free delivery of...

@adrelanos So tested this and it indeed does work (followed this [Qubes Guide](https://forum.qubes-os.org/t/anonymizing-your-mac-address/19072)) It copied the behavior of androids mac spoofing by using NetworkManager's *mac-address-mask* settings which I'm sure many...

So to not cause any confusion to anyone reading this I want to clarify some things. * **What this network manager configuration will do:** + Spoof the full MAC address...