I broke qubes.UpdateProxy. Does anyone have a default version of it I can reference to fix it in dom0?
16 views
Skip to first unread message
setem...@posteo.net
Oct 25, 2020, 5:38:57 PM10/25/20
to qubes...@googlegroups.com
I was halfway through setting my updateProxy file to go off of a sys-vpn
instead of sys-whonix. However I can't remember how it was supposed to
be initially. Could someone show me a default one or otherwise tell me
how to adjust this one? Thank you
$type:TemplateVM $default allow,target=sys-whonix
#target formerly set to sys-vpn
## Note that policy parsing stops at the first match,
## so adding anything below "$anyvm $anyvm action" line will have no
effect
## Please use a single # to start your custom comments
# Upgrade all TemplateVMs through sys-whonix (formerly sys-whonix)
$type:TemplateVM $default allow,target=sys-whonix
# Upgrade Whonix TemplateVMs through sys-whonix (formerly sys-whonix)
$tag:whonix-updatevm $default allow,target=sys-whonix
# Deny Whonix TemplateVMs using UpdatesProxy of any other VM.
$tag:whonix-updatevm $anyvm deny
# Default rule for all TemplateVMs - direct the connection to sys-net
$type:TemplateVM $default allow,target=sys-net
$anyvm $anyvm deny
instead of sys-whonix. However I can't remember how it was supposed to
be initially. Could someone show me a default one or otherwise tell me
how to adjust this one? Thank you
$type:TemplateVM $default allow,target=sys-whonix
#target formerly set to sys-vpn
## Note that policy parsing stops at the first match,
## so adding anything below "$anyvm $anyvm action" line will have no
effect
## Please use a single # to start your custom comments
# Upgrade all TemplateVMs through sys-whonix (formerly sys-whonix)
$type:TemplateVM $default allow,target=sys-whonix
# Upgrade Whonix TemplateVMs through sys-whonix (formerly sys-whonix)
$tag:whonix-updatevm $default allow,target=sys-whonix
# Deny Whonix TemplateVMs using UpdatesProxy of any other VM.
$tag:whonix-updatevm $anyvm deny
# Default rule for all TemplateVMs - direct the connection to sys-net
$type:TemplateVM $default allow,target=sys-net
$anyvm $anyvm deny
awokd
Oct 27, 2020, 7:06:16 PM10/27/20
to qubes...@googlegroups.com
setem...@posteo.net:
$type:TemplateVM $default allow,target=sys-whonix
#$type:TemplateVM $default allow,target=sys-whonix
# Upgrade Whonix TemplateVMs through sys-whonix.
- don't top post
Mailing list etiquette:
- trim quoted reply to only relevant portions
- when possible, copy and paste text instead of screenshots
> I was halfway through setting my updateProxy file to go off of a sys-vpn
> instead of sys-whonix. However I can't remember how it was supposed to
> be initially. Could someone show me a default one or otherwise tell me
> how to adjust this one? Thank you
Think this is default if you chose sys-whonix for updates:
> instead of sys-whonix. However I can't remember how it was supposed to
> be initially. Could someone show me a default one or otherwise tell me
> how to adjust this one? Thank you
$type:TemplateVM $default allow,target=sys-whonix
## Note that policy parsing stops at the first match,
## so adding anything below "$anyvm $anyvm action" line will have no effect
## Please use a single # to start your custom comments
# Upgrade all TemplateVMs through sys-whonix.
## so adding anything below "$anyvm $anyvm action" line will have no effect
## Please use a single # to start your custom comments
#$type:TemplateVM $default allow,target=sys-whonix
# Upgrade Whonix TemplateVMs through sys-whonix.
$tag:whonix-updatevm $default allow,target=sys-whonix
# Deny Whonix TemplateVMs using UpdatesProxy of any other VM.
$tag:whonix-updatevm $anyvm deny
# Default rule for all TemplateVMs - direct the connection to sys-net
$type:TemplateVM $default allow,target=sys-net
$anyvm $anyvm deny
--
# Deny Whonix TemplateVMs using UpdatesProxy of any other VM.
$tag:whonix-updatevm $anyvm deny
# Default rule for all TemplateVMs - direct the connection to sys-net
$type:TemplateVM $default allow,target=sys-net
$anyvm $anyvm deny
- don't top post
Mailing list etiquette:
- trim quoted reply to only relevant portions
- when possible, copy and paste text instead of screenshots
Reply all
Reply to author
Forward
0 new messages