Kevin O'Gorman
Kevin O'Gorman
Potentially related to #1476
flagging as needs discussion and making a note to bring it up at a hangout - this is an easy first step to providing a wider toolset within the workstation...
A proposal for this is in play, most likely leveraging Dangerzone. Leaving open for now. Some questions remain about metadata handling (for example, "silently scrub vs. report any found?").
The overall issue is valid - but I don't see how the STR would work here unless you *also* nuke .ssh/config and somehow replace it with a version that uses...
Initial questions from discussion elsewhere related to possibly mirroring and installing veracrypt in an SDW VM: - The Veracrypt code is dual-licensed as Apache 2.0 and Truecrypt 3.0 (a non-open-source...
> I'm not sure if anyone has before, but we could also look into [tcplay](https://github.com/bwalex/tc-play), which is already packaged in Debian and doesn't have the same licensing issues. It looks...
+1 for Apparmor or something similar - Qubes isolation by itself doesn't seem sufficient given there's at least one valid path (replies) to get data out from the client. Said...
I have some issues with this proposal, and am not in favour of it in its current form: > ### Problem Statement > > The grsecurity kernel presents two major...
> I was re-reading recent kernel vulnerabilities and techniques, namely > > * https://yanglingxi1993.github.io/dirty_pagetable/dirty_pagetable.html > > * https://pwning.tech/nftables/ > > > Both very interesting reads, both targeting mostly temporal (rather...
My bad, looks like we don't have coverage for `tailsconfig`, so ignore that one.