zlacker

Qubes Beta 1 has been released (strong desktop security OS)

submitted by virapt+(OP) on 2011-04-12 20:27:44 | 15 points 3 comments
[view article] [source] [links] [go to bottom]
replies(1): >>tobyla+Z4
1. tobyla+Z4[view] [source] 2011-04-12 21:31:07
>>virapt+(OP)
A lot of detail, not a lot of reasoning. What seems to matter are things like ODSCP (or whatever the ssl check is called), so use Opera, and phishing, so common sense.
replies(2): >>Kotota+U6 >>virapt+6B
◧◩
2. Kotota+U6[view] [source] [discussion] 2011-04-12 21:55:21
>>tobyla+Z4
You should check her previous works and posts before blaming her for "not a lot of reasoning".

Basically her approach is that 1) secure by design is too hard to achieve 2) isolation is what matters since each component, "secure" or not, in an OS can break. 3) SELinux and other similar systems are too fine grained for a normal user, thus VM per security domain is one solution.

It's a really pratical approach to security, but probably highly effective for the end user.

◧◩
3. virapt+6B[view] [source] [discussion] 2011-04-13 09:37:13
>>tobyla+Z4
For more explanations check: http://qubes-os.org/FAQ.html and the architecture document. Reasoning is there.

Regarding OCSP (Online Certificate Status Protocol) - have a look at http://en.wikipedia.org/wiki/Moxie_Marlinspike#OCSP_Attacks

[go to top]