/qubes-issues

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Warn if user has no other keyboard than USB #1630

Closed
rootkovska opened this Issue Jan 15, 2016 · 3 comments

Comments

Assignees

@marmarek marmarek

Labels
Projects
None yet
Milestone
  Release 3.1
2 participants
@rootkovska @marmarek
@rootkovska
Member

rootkovska commented Jan 15, 2016

Make sure to warn the user that:

  1. We cannot properly secure such a system:
    a. either the USB must be in Dom0, which is a total failure of security, generally.
    b. ... or the keyboard must be in USB VM, which provides some security but is far from ideal (e.g. if the USB VM gets compromised from other USB devices, the attacker can sniff and spoof all the keystrokes)
  2. If the user decided to use a USB VM for the keyboard (via our qubes.InputKeyboard service), make sure that the user doesn't try to stop the VM, or else will lock themselves out.

@rootkovska rootkovska added C: installer C: doc task UX labels Jan 15, 2016

@rootkovska rootkovska added this to the Release 3.1 milestone Jan 15, 2016

@marmarek

This comment has been minimized.

Show comment
Hide comment
@marmarek

marmarek Jan 15, 2016

Member

Duplicate of #1597 , but this one is much better described, so I'll close the other one.
Member

marmarek commented Jan 15, 2016

Duplicate of #1597 , but this one is much better described, so I'll close the other one.

@marmarek marmarek referenced this issue Jan 16, 2016

Closed

USBVM creation / Firstboot: fails when booting from USB HDD #1649

@marmarek marmarek self-assigned this Feb 5, 2016

@marmarek marmarek closed this in marmarek/qubes-installer-qubes-os@dc1374c Feb 7, 2016

@marmarek

This comment has been minimized.

Show comment
Hide comment
@marmarek

marmarek Feb 12, 2016

Member

Automated announcement from builder-github

The package anaconda-20.25.16-12.fc20 has been pushed to the r3.1 testing repository for dom0.
To test this update, please install it with the following command:

sudo qubes-dom0-update --enablerepo=qubes-dom0-current-testing

Changes included in this update
Member

marmarek commented Feb 12, 2016

Automated announcement from builder-github

The package anaconda-20.25.16-12.fc20 has been pushed to the r3.1 testing repository for dom0.
To test this update, please install it with the following command:

sudo qubes-dom0-update --enablerepo=qubes-dom0-current-testing

Changes included in this update

@marmarek marmarek added the r3.1-dom0-cur-test label Feb 12, 2016

@marmarek

This comment has been minimized.

Show comment
Hide comment
@marmarek

marmarek Feb 22, 2016

Member

Automated announcement from builder-github

The package anaconda-20.25.16-12.fc20 has been pushed to the r3.1 stable repository for dom0.
To install this update, please use the standard update command:

sudo qubes-dom0-update

Or update dom0 via Qubes Manager.

Changes included in this update
Member

marmarek commented Feb 22, 2016

Automated announcement from builder-github

The package anaconda-20.25.16-12.fc20 has been pushed to the r3.1 stable repository for dom0.
To install this update, please use the standard update command:

sudo qubes-dom0-update

Or update dom0 via Qubes Manager.

Changes included in this update

@marmarek marmarek added r3.1-dom0-stable and removed r3.1-dom0-cur-test labels Feb 22, 2016

@adrelanos adrelanos referenced this issue Jul 2, 2016

Open

PV USB documentation needs to be updated for Qubes R3.2 #2144

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment