one of those things you love about qubes!
193 views
Skip to first unread message
raah...@gmail.com
May 1, 2016, 1:27:16 PM5/1/16
to qubes-users
that moment i realize i just hit allow permanently when i clicked in my pgl but then remember it don't matter cause as soon as I shut down the vm that setting is gone! haha.
Desobediente
May 1, 2016, 1:52:25 PM5/1/16
to qubes-users
- Never having to "log out" of websites again, and for the first time ever, the "remember me" option in a website is an actual option;
- Catch myself doing CTRL+SHIFT+C on everyone else's computer and grin alone.
Alex
May 1, 2016, 3:48:15 PM5/1/16
to qubes...@googlegroups.com
Having my life organized AND handy:
- two always-open skype vm, one for personal contacts and one for work
- two always-open firefox instances, one with personal bookmarks/addons
and one for work
- two always-open thunderbird instances, one with personal
accounts/address books and one with business contacts
- knowing that, should a simple leak happen on a business vm, my
personal data is safe; should a simple leak happen on the personal vm,
my work data (e.g. ssh keys to servers) is safe; should the skype-vm be
owned via the skype monolith, everything will be safe apart from the
skype chat logs themselves
- knowing that it will be hard to absent-mindedly copy and paste
inappropriate content (say, pr0n) from a personal space to the work
space, or vice-versa (say, passwords to production servers / source code
/ etc.)
Sometimes it's hard to share a funny link on skype, have to remember the
penta-hotkey-combo (ctrl+c, ctrl+shift+c, alt+tab, ctrl+shift+v,
ctrl+v), but it makes me smile and feel a little safer from *my*
mistakes first, and from malware too.
When I evangelize about Qubes OS, I like to take on the "organize my
life" approach first, defending from the honest mistakes of the user,
and only then moving to the secure architecture it provides.
--
Alex
- two always-open skype vm, one for personal contacts and one for work
- two always-open firefox instances, one with personal bookmarks/addons
and one for work
- two always-open thunderbird instances, one with personal
accounts/address books and one with business contacts
- knowing that, should a simple leak happen on a business vm, my
personal data is safe; should a simple leak happen on the personal vm,
my work data (e.g. ssh keys to servers) is safe; should the skype-vm be
owned via the skype monolith, everything will be safe apart from the
skype chat logs themselves
- knowing that it will be hard to absent-mindedly copy and paste
inappropriate content (say, pr0n) from a personal space to the work
space, or vice-versa (say, passwords to production servers / source code
/ etc.)
Sometimes it's hard to share a funny link on skype, have to remember the
penta-hotkey-combo (ctrl+c, ctrl+shift+c, alt+tab, ctrl+shift+v,
ctrl+v), but it makes me smile and feel a little safer from *my*
mistakes first, and from malware too.
When I evangelize about Qubes OS, I like to take on the "organize my
life" approach first, defending from the honest mistakes of the user,
and only then moving to the secure architecture it provides.
--
Alex
raah...@gmail.com
May 1, 2016, 11:39:45 PM5/1/16
to qubes-users, alex...@gmx.com
when you delete your vm and recreate it because there was a .0000001% chance that something stopped working due to malicious activity, because your paranoid and its that easy! ( and when you realize you've done this multiple times in a day haha)
when you realize you might of clicked a bad link, but then remember you were in a disposable vm (or it got blocked cause vm is https only)
when you are so paranoid you use whonix to compare the ssl certificate with the one your home ip sees, before entering sensitive information or credentials.
raah...@gmail.com
May 1, 2016, 11:50:50 PM5/1/16
to qubes-users, alex...@gmx.com, raah...@gmail.com
when you install a program in an appvm just to test it temporarily without worrying about it making any permanent changes.
when using fedora in qubes, dnf does not ruin your experience by hanging or preferring bad mirrors.
when you plug in a usb stick and it says attached to sys-usb on the screen.
Andrew David Wong
May 2, 2016, 2:39:10 AM5/2/16
to raah...@gmail.com, qubes-users, alex...@gmx.com
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512
These are all great! Would you all mind if we were to collect a list
of these quotations and possibly put them on the website? It would be
wonderful to showcase feedback from real users like this.
- --
Andrew David Wong (Axon)
Community Manager, Qubes OS
https://www.qubes-os.org
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2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=24+x
-----END PGP SIGNATURE-----
Hash: SHA512
of these quotations and possibly put them on the website? It would be
wonderful to showcase feedback from real users like this.
- --
Andrew David Wong (Axon)
Community Manager, Qubes OS
https://www.qubes-os.org
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2
iQIcBAEBCgAGBQJXJvYCAAoJENtN07w5UDAw7RUQAMHPm0fQtL56gvZyA+sHz3AS
nK3u8amXmjYa7qm9GBXK/nmgrEp5U5ccwGsUl2tqe/LLJLt+ey21r8kUpQRFR/nS
BfP7NZl8PcYarYgO3c0XV7w4WbvAmV4VIQKxPMNuTB/5IIWmajl+owBIGBp7K/Wc
AvDY5DuhAjXq7kDFhhbjwO54+mTim/5KhL5uCL5A8YgiqXpoItZOoaJ7PkbLGWe5
XhSRMZ79e9nUMcDhP+R6GlD/eYfV+bcWjoMhgEkADSLwsjd6jouD8kWPqbSh8z94
gEV7kgZ75RabugRvuterOCHaMTllQOqM+/2MwMJr6yw+jd7SoYcSw+3YnvQb+2Pv
X3zl7jv/0gG8j1d+KFrPLdWknmzP1QT5mpmpm7QAliZtR0rxteaKnIUwcAeZkZSy
hhyx+RsOyye+8pNiB6D7IRO2sA3344alWngsJffc78L00ihyCfsnPuEV2vDwJ2qS
/YTNUHISWQtWq60q2iDlDmZtESN1/flTxa7jn4j7Y0YeCzjnpi90UX1w6A4gQZW8
84iKHESjVGEu4xcEhKV252Hq+5uSdT6Zaks4oEkiu9q74MtQqhLEm72+jB6NWyQU
6IjCURo4BneK6WQVnBdHLksGg334YzhjiieXP9TEst97iIIM7w1vgMWklEiusxqU
hVQsZuO7FvfX+edATFtX
=24+x
-----END PGP SIGNATURE-----
raah...@gmail.com
May 2, 2016, 1:43:09 PM5/2/16
to qubes-users, raah...@gmail.com, alex...@gmx.com
sure, you don't have to give me credit. You have to make one first :)
Alex
May 2, 2016, 4:04:13 PM5/2/16
to raah...@gmail.com, qubes-users
On 05/02/2016 07:43 PM, raah...@gmail.com wrote:
> On Monday, May 2, 2016 at 2:39:10 AM UTC-4, Andrew David Wong wrote:
>
> These are all great! Would you all mind if we were to collect a list
> of these quotations and possibly put them on the website? It would be
> wonderful to showcase feedback from real users like this.
>
>
> On Monday, May 2, 2016 at 2:39:10 AM UTC-4, Andrew David Wong wrote:
>
> These are all great! Would you all mind if we were to collect a list
> of these quotations and possibly put them on the website? It would be
> wonderful to showcase feedback from real users like this.
>
>
> sure, you don't have to give me credit. You have to make one first :)
>
It's ok for me too, if any of my quotes is worth it =)
>
--
Alex
Andrew David Wong
May 3, 2016, 1:43:33 AM5/3/16
to raah...@gmail.com, qubes-users, alex...@gmx.com
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512
Hash: SHA512
On 2016-05-02 10:43, raah...@gmail.com wrote:
> On Monday, May 2, 2016 at 2:39:10 AM UTC-4, Andrew David Wong
> On Monday, May 2, 2016 at 2:39:10 AM UTC-4, Andrew David Wong
> wrote: On 2016-05-01 20:50, raah...@gmail.com wrote:
>>>> when you install a program in an appvm just to test it
>>>> temporarily without worrying about it making any permanent
>>>> changes.
>>>>
>>>> when using fedora in qubes, dnf does not ruin your
>>>> experience by hanging or preferring bad mirrors.
>>>>
>>>> when you plug in a usb stick and it says attached to sys-usb
>>>> on the screen.
>>>>
>>>>
>
> These are all great! Would you all mind if we were to collect a
> list of these quotations and possibly put them on the website? It
> would be wonderful to showcase feedback from real users like this.
>
>
>>>> when you install a program in an appvm just to test it
>>>> temporarily without worrying about it making any permanent
>>>> changes.
>>>>
>>>> when using fedora in qubes, dnf does not ruin your
>>>> experience by hanging or preferring bad mirrors.
>>>>
>>>> when you plug in a usb stick and it says attached to sys-usb
>>>> on the screen.
>>>>
>>>>
>
> These are all great! Would you all mind if we were to collect a
> list of these quotations and possibly put them on the website? It
> would be wonderful to showcase feedback from real users like this.
>
>
> sure, you don't have to give me credit. You have to make one first
> :)
>
I honestly have too many to list! But here's a classic:
> :)
>
When you get an email with a suspicious attachment, but you don't mind
because all your attachments automatically open in DispVMs. :)
- --
Andrew David Wong (Axon)
Community Manager, Qubes OS
https://www.qubes-os.org
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2
x9oZby/WZUiqyLnI0P+2SYtS9O7D3KcRBGsk0WrPG6/G5kAAxhjs7ZNDc4dvTa5h
9Q+mPtFJwzvfj+Odh4FSOQx/oeisAHW8bXafukEMdsRTooX3xsOSYdwYHD1PKZZ3
a9mKNTVz7G6rAwywzPHqVOcVfSOnkNDzbkd6kO+7NoM6c2hKqVG61Z6ephqf1PQN
90l478vCbr4hmKhyyoeUcAAJ1NQg1h6pG+DouxCpd9tz9PL4H/WKUGcTOnh5g591
cbb7B+dNN/w0iblI0Jpqocst/IRpl5VWY4SW2lH2FcOjAYLlrHor4EsRCg1Attav
K61IvMIupC4c/bME25+SCIefzFebef1Bj+cn3nLl3m5RyEyiGG5tDRY/JqmN30Jf
hHghGBch/shECsadcvx9Dmz8w4+C70sply2UGsHgPtUTir9uurmZp4vvkJ5e7baL
qRLfEPHkGYlMmA+x1NrZAtpKgCvuqtDyR6thEaI3mzY3GozJAkC2nFxAJ3l/abDy
GNIbfeMwCKRTpAM/yLUCCDSsy3nBmnxuuboWqGF6LHSem7IHkB7iDtznCCnu00TV
UmYSVgKjNfEB8+jZkaes8tdxktH2PaPMTddEbMGYCbNQsjMRIMugrG8Z/17baavC
TKw1tSo5oDekyoiLiu2k
=p8ZY
-----END PGP SIGNATURE-----
raah...@gmail.com
May 3, 2016, 3:28:44 PM5/3/16
to qubes-users, raah...@gmail.com, alex...@gmx.com
haha nice!
Zrubi
May 6, 2016, 3:36:37 AM5/6/16
to Andrew David Wong, qubes-users
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256
On 05/02/2016 08:39 AM, Andrew David Wong wrote:
> These are all great! Would you all mind if we were to collect a
> list of these quotations and possibly put them on the website? It
> would be wonderful to showcase feedback from real users like this.
What I used to say about Qubes OS:
It is a general rule, that the user is the weakest link in every
system.It is the same in case of Qubes OS - but it will let you being
the weakest link, even if you are a highly skilled security expert.
- --
Zrubi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=Zp66
-----END PGP SIGNATURE-----
Hash: SHA256
On 05/02/2016 08:39 AM, Andrew David Wong wrote:
> These are all great! Would you all mind if we were to collect a
> list of these quotations and possibly put them on the website? It
> would be wonderful to showcase feedback from real users like this.
It is a general rule, that the user is the weakest link in every
system.It is the same in case of Qubes OS - but it will let you being
the weakest link, even if you are a highly skilled security expert.
- --
Zrubi
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2
iQIcBAEBCAAGBQJXLEl0AAoJEC3TtYFBiXSvYj8P/RfG/A+2iwaSJ5L1ery5aq0x
Version: GnuPG v2
dg80O3HlW4DiP3aDmfc0O2sGcFOztSv4E66sanKfhBGObzkXUjX2kB9ggsbIOZvW
p0jEdzoMhAcyYxCwL9E6Bqn2B+A/z0pI+1wMJNcQW8V24C/r3s/7m8ZwtqZnMLBq
P7ht2oAw8+6jyOqmiF5RvY+5eEhv+ClHAl7OmJ4va53zHYwvunADN+wdnNlFQ6iv
kMhrImRFr87GvGcelLUblCr9InsDXDpyoZzEzvCTkHIe/hg+7GjHTdrbRfoUmDki
TNhpYvtLKxKGKoRi+XLprZT+/KJEBIK3zG0W6Mdn7YKxI14xMIvg2ZH5GaCZ0AS0
EZjfTamA2MdxwOIragP4+U9OAiYbVVo6V/uQA8B23kcU1WN7+tqxANmDItMuVPwe
IYlDoKejNQX82R8xRH5QpUWG2dGkySHP/839IKml+I4FRtbTY8tk08TGWyZtpVso
DvYq1IkR51cU1N8H0TrpYMBRROzhsATNAU0mAt6FP7xObPfseBXvjBI1B17qtupt
dNp5ZsUObEI0k5YpC+Se8SsoDEh+FZ1u6Hwa4fPDw9CV8XSV4xNPJOl2Zk2//loo
bZPbB4h6skBl+VEPbHIjsq1dBJvPM0rno4VCqdD83egPBBlWZIUYI3af7RhBPAKK
yralcu33GYUbfH/Q0jCD
=Zp66
-----END PGP SIGNATURE-----
Gorka Alonso
May 6, 2016, 7:35:26 AM5/6/16
to qubes-users, a...@qubes-os.org
El viernes, 6 de mayo de 2016, 9:36:37 (UTC+2), Laszlo Zrubecz escribió:
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256
On 05/02/2016 08:39 AM, Andrew David Wong wrote:
> These are all great! Would you all mind if we were to collect a
> list of these quotations and possibly put them on the website? It
> would be wonderful to showcase feedback from real users like this.
What I used to say about Qubes OS:
It is a general rule, that the user is the weakest link in every
system.It is the same in case of Qubes OS - but it will let you being
the weakest link, even if you are a highly skilled security expert.
I remember once being asked why:
a) My personalVM had a firewall deny rule to access my internal lan NAS and my bank address
b) My nasVM had a deny rule to everything except my NAS (the same happened to my bankingVM).
My answer was... To enforce myself to do things right!
:-)
Users, myself included, not only are the weakest link, but often we are lazy
tristan....@gmail.com
Jul 10, 2016, 6:03:16 AM7/10/16
to qubes-users, alex...@gmx.com
Hi,
May I ask how you setup a skype VM? did you install skype rpm into your base template, trusting the installer? or do you have a standalone? what is a minimal setup for skype, e.g. do you use a whole fedora, or is a minimal fedora with some extra packages more sensible? thanks for the help, trying to get oriented on convenience vs security sometimes still...
Reply all
Reply to author
Forward
0 new messages