Qubes source code in Python?
31 views
Skip to first unread message
jrsm...@gmail.com
Apr 19, 2019, 8:52:37 PM4/19/19
to qubes-users
I was looking at the Qubes source recently and was mildly surprised to see that much of the Qubes-specific code is written in Python. As much as that helps with productivity, I would have thought that the security risks outweigh the benefits. Doesn’t the runtime engine alone present an attacker with a huge surface area compared to C, Rust, Go, and other languages typically used for system level development?
awokd
Apr 23, 2019, 4:54:03 AM4/23/19
to qubes...@googlegroups.com
jrsm...@gmail.com:
type of code in there, it's pretty much game over already.
> I was looking at the Qubes source recently and was mildly surprised to see that much of the Qubes-specific code is written in Python. As much as that helps with productivity, I would have thought that the security risks outweigh the benefits. Doesn’t the runtime engine alone present an attacker with a huge surface area compared to C, Rust, Go, and other languages typically used for system level development?
>
I think most of it is in dom0. If an attacker has the ability to run any
>
type of code in there, it's pretty much game over already.
Reply all
Reply to author
Forward
0 new messages