-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256
I'm not sure if I understand it fully, but isn't it required for the
attacker to reach both end of the connection directly? On Qubes, every
VM (besides sys-net) is behind NAT, so this isn't possible.
Also, IIUC, the worst what can happen is off-path attacker performing
some attacks normally requiring being in-path. Something that using
properly encrypted/authenticated protocols guard against already.
Otherwise using any public wifi (which is much more common case than
this attack) could be fatal.
- --
Best Regards,
Marek Marczykowski-Górecki
Invisible Things Lab
A: Because it messes up the order in which people normally read text.
Q: Why is top-posting such a bad thing?
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2
iQEcBAEBCAAGBQJXr4jAAAoJENuP0xzK19csc98H/ReSlwHnrZ+i+geia+LNj/X1
QgKgHJqIyiEkgoPrKOiiH7N/IisC8IpylYddiuKJ0HYoFKlQmk7yDeGT4B4HAdrr
HtGlQC+wg5GRINvxOnhKjhJsRByEYgOZuMESVaZUbI0SMQhR2nUN6tj559EDkJRH
uqUpX8m9qZN/qoQ+lhoPOpOWuWl8z0o7UyhdhcGs9l0+1+khKKMxw50qvg6z5W8l
CSuV9kJp+ivySIjMscscFeb6If5+oH83UuoqbmIdJ0755SmIzTrK+iCOn/rn04Ak
STx5knA71s0KGnmRaMtCtaUltEGG03wVSAEZjrWCMfJWMP6MxfftxOr+zsaSIfM=
=CCU0
-----END PGP SIGNATURE-----