How do you respond without getting mad?
>>107844625luks and gpg are out of place here. they're actually useful and reasonable for the average person to use
>>107844625Who are you?
>>107844625He only thinks that because it's working.
LUKS is basically mandatory if you have a laptop that you carry around. Nobody tells you you're a schizo when you're using bitlocker
>>107844625>MoneroThey are literally hiding money. It might only be a few hundred bucks, but it's still money.
>>107844625Several of these have significant flaws that make them not worth using, only LUKS and GPG are worthwhile. Tor is a glowie shit, VeraCrypt is a glowie shit, GrapheneOS is a glowie shit, Session is a glowie shit, I2P is a slow shit, Tails is a glowie shit, Qubes is a retarded shit, Coreboot is a abandoned shit, Monero is a insecure shit, and Matrix is a slow shit. Thank you for your attention to this matter!
>>107844625What are you guys talking about? He's absolutely right. Anyone who uses these programs is a nobody who has nothing worth hiding. :)
>>107844625I don't get mad because that is me. I don't get up to nefarious shenanigans, and I also despite the corporate machine.Also, wtf is this new captcha?
>>107844660>coreboot is abandonedhuh?
>>107844625Man's necessity for privacy is primal and doesn't need justification.
>>107844625I don't. What difference does it make to kache or to you, for that matter? Rhetorical question. Who cares.
>>107844660>Qubes is a retarded shit>t. retard
>>107844742ret.ardfify
>>107844625Why does this jeet jew keep spamming his own posts? Kill yourself
>>107844660>GrapheneOS is a glowie shitWhy would the glowies have an OP inside an OS that is known to be headed by a complete schizoid that burns bridges, creates drama and causes people to look in to him and laugh at him as a lolcow?
>>107844625call him indian
>>107844807Reverse psychology to make you think Micay isn't a glowie
>>107844742Qubes literally runs everything as root because>lol Xen is secure, you don't need anymore security
>>107844625Ahh, yes, my daily jeet post. Thank you OP.
>>107844834But what if that is just reverse reverse psychologyTo trick you in to not using it?
>you only need privacy if you have something to hideNo
>>107844625You better get used to it. If you say jews control everything you will be thrown in prison now.
>>107844868entire point of running an hypervisor is to move the TCB from host kernel to host hypervisor (kernel). root inside the guest OS has no meaning. Qubes' threat model assumes non-template guest OSes are already compromised
>>107844671I archived your post. Soon, I will doxx you.
>>107844625Nothing wrong with that, you can want to be anonymous without doing anything illegal with it.
>>107844976JEWS CONTROL EVERYTHINGhuh im not in prisonare you by chance... british?
>>107844660>Coreboot is a abandoned shitNo. New boards are added periodically, but the documentation isn't updated; there's support for boards other than the ones listed in the documentation. Documentation for both Libreboot and Coreboot is objectively shit. Coreboot doesn't bother, and Libreboot has some ESL stroke victim write most of their documentation. I don't know about GNUboot however.
>>107844625qvm-shutdown sys-net
>>107844625>a kikejeet opines unwarranted in my direction about pedo tech"yea..."
>>107844868you mean the passwordless sudo? you can just use a minimal template, the root account is locked on there. or you can uninstall the qubes-core-agent-passwordless-root package. retard.
>>107844641>Nobody tells you you're a schizo when you're using bitlockerYou might be surprised.
>>107844625easy. ask this person for:>political affiliation>bank statements>medical records>sexual preferencies>geolocation data>enployment record data>social network / gaming platforms passwords>browsing history on all devices>encryption keys on all vaults / servicesEven the "cleanest of the clean" have something that they have for themselves.>alsoon repressive regimes you would want to keep your digital footprint minimal, because they can get you for whatever reason they think is viable. So yeah, some people might seem like edgelords, but there is a ton of valid reasons to secure your data>also alsoliterally who the fuck is that and why should I care?
>>107845031>Qubes' threat model assumes non-template guest OSes are already compromisedThis is a good assumption, but doesn't excuse literally turning off all security in the guest OS because you assume they are already compromised. Security is like a bunch of filters, in that the attacker needs to breach each filter to finally pwn you. To remove the first filter (user -> root exploit) because you're assuming it has already been removed is retarded and actually lessens your total security (which is additive for each filter).
>>107845195kicksecure, also, which if you're aware is the same thing as whonix but for daily driving is just there and you can install its template by 2 clicks
>>107845249meh i just stick to fedora honestly. used to run debian12 template just so i didnt have to install fuse2 but i moved onare you a qubes connesieur? can you help me with sone policies and firewall rules?
>>107844625without presenting evidence you cant give a definitive counterargument. It's just a mind play for retards to willingly share their findings to win argument. Very effective tactic against UK people, I must say.
>every single person i've seen use all of this shit actually has nothing worth stealing and is basically a nobody
>>107844625>nothing worth hidingCompletely subjective
>>107845245no, it's not really additive like you think. what you said is true if you completely ignore the fact that there's an enormous difference between getting root in guest linux VM and breaching the hypervisor, considering the state of the desktop linux' security. you're not gonna prevent an attacker with that. when you're capable of breaching Xen, getting root on a linux while you already can do ACE is just a nuisance.>>107845298I dont have custom policies. firewall rules totally depend on your setup.
>>107844625i don't have to, i'm actually glad to see that this is what people think of people who use this and not that they are terrorists who will commit a second 9/11
>>107845569>no, it's not really additive like you think.It objectively is, take two parties>actor A is running Firefox as root in a Linux distribution inside a VM>actor B is running Firefox as a user in a Linux distribution inside a VM, with no root password (since Qubes has its whole template setup anyways).An attacker would need to compromise the following things for actor A>Firefox>Xen HypervisorWhereas for actor B>Firefox>Privilege escalation exploit (e.g. through the Linux Kernel or a broken distribution setup, like an insecure setuid binary).>Xen HypervisorIt is clearly additive and thus actor B is objectively more secure than actor A.>if you completely ignore the fact that there's an enormous difference between getting root in guest linux VM and breaching the hypervisorAlso I disagree with this, on a proper distribution with root password locked and nothing like sudo installed, the attacker will likely need a kernel exploit to get root. While that may be less difficult than compromising a Xen or KVM hypervisor, it still is a relatively high barrier that isn't just as simple as>lol if an attacker found a Xen exploit, he's definitely got a kernel exploit!
>>107844625I don't use any of this stuff myself, but if they're all nobodies then why do big tech and the government need all their data so badly?
>>107845712>While that may be less difficult than compromising a Xen or KVM hypervisor, it still is a relatively high barrierit really isn't for someone capable of exploiting Xen, hence why it's not additive. it's not a big news when someone finds a local privilege escalation on Linux. people do it for fun. you should check Brad Spengler.
>>107845830local privilege escalation on linux is usually shit like>modify .bashrc to change sudo or LD_LIBRARY_PATHnot>Find ACE exploit in Linux KernelThe second is harder than the first, the first could be done by literally anyone because standard desktop linux is laughably insecure.
>>107844625How does he know they have nothing worth hiding if they are hiding it?
Tor is useful to bypass dns level blocks without changing any other setting
>>107844625So? It's not about me personally hiding data but about not being a bootlicker cuck encouraging surveillance states and bending over for corpo psychopaths
>>107844660do you use a condom when fucking an AIDS-riddled hooker?yes, because although it doesn't protect you 100% of the time it's still MUCH better than nothing. also, not everyone is trying to hide from the government so their threat-model doesn't need to be so sophisticated.
the idea is that you can easily hide your shit while you're a nobody, so in the case you stop being a nobody, people don't have shit on you. I know it's a monumentally complex concept to grasp for you people, but please try
>>107845712yeah whatever man. i told you how you can manage the nothingburger that is the root situation. >>107845569i want to install adguard home into a standalone and obviously i need to forward the dns (and possibly other stuff). however even after multiple clanker sessions i havent been able to actually block anything when setting it as my netvm. also i have all pheripherals as ask, but i want to allowlist my two mice and keyboards.i thought i could do something like:qubes.InputMouse+id:id allow dom0but doesnt work. i dont think i have the format right. not sure how qvm-pci --persistent stores things in sys-usb but that's my guess, looking how that works to setup the proper naming
>>107846072Most normal users are never going to get hacked unless they willingly hack themselves (e.g. run random executables, like vidya gaymes or visit shady websites with outdated browsers without an adblocker). For those users, something fairly insecure like a normal linux distribution or Windows or MacOS or such is a better compromise on usability versus security than something like Qubes.In terms of just stupid shit like Monero, I am simply not convinced mixing your inputs with a bunch of fake inputs is anything but a sense of false security. Things like Tornado Cash or Zcash which use a ZKP setup are fundamentally superior to the automated mixing service that is Monero.
>>107846104also the wifi doesnt work after suspend even with the blacklisted modules in /rw/configi have to manually rmmod and modprobe them. ( i put all dependencies there from iwlmvm to cfg80211)
>>107846115who's talking about being hacked? nigger, the companies themselves are the ones doing the nefarious shit.
and lastly pipewire fucked my headphones up on 4.3.0i can basically bo longer listen to my headphones on this laptop...
>>107846128that's the laptop's manufacturer's fault, not linux's.
>>107846146retarded nigger its a fault in the configuration of linux inside qubes os. it works just fine on linux distros with pipewire. manufacturer is goated
>>107846127Why even bother with this shit if you aren't worried about hacks? If you just don't want telemetry, run Debian or Arch Linux with a LUKS-encrypted partition and be done with it.
>>107846115Monero is still using a kind of shit approach ngl>sign up to exchange KYC>exchange #1 sends you ~$2000 in one output>send the $2000 to "substance dealer", that output is now an input of this transaction (or is 'close' to this transaction in the tree of inputs)>substance dealer busted, wallet seized>using his keys, they see a transaction with ~$2000>they have access to all exchange keys, so they see that one of the "nearby" inputs of the transaction is an output known to contain ~$2000The exchange knows that John Doe owned that output, and he is now a person of interest.
>>107844625being a nobody is the whole point, of course this dipshit is saying this on twitter of all places.
>>107845951>local privilege escalation on linux>.bashrcyou know linux is kernel right? linux, even in the most hardcore way hardened as possible still has a way bigger attack surface than Xen. >>107846104DNS requests are proxied to sys-firewall or net as far as I remember (DNAT rules), that could be why. you will notice if you do 'nft list ruleset'. I think simply deleting those rules should stop routing without being filtered by adguard.>also i have all pheripherals as ask, but i want to allowlist my two mice and keyboards.you can do that in the global config menu. beware of its risks thoughhttps://doc.qubes-os.org/en/latest/user/security-in-qubes/device-handling-security.html#security-warning-on-usb-input-devices
>>107846207>you know linux is kernel right? linux, even in the most hardcore way hardened as possible still has a way bigger attack surface than Xen.I guarantee you that the most barebones Linux without any drivers has had far more eyes and fuzzing on it than Xen, and has significantly less attack surface. Xen isn't even the most battletested hypervisor, KVM is...
>>107844625why would I get mad? that's literally the point, privacy is a basic human right, obvious fucking ly most people will have nothing to hide, that's normal...is he stupid?
>>107846228The internet is filled with 1000 cyberniggers trying every lock on every door and sharing the newest lockpicking tech with each other, and this motherfucker gets on the ass of anybody who sets up a more secure door.
>>107844625He's mostly right (as most non open source / cryptes app will use your data to be sale anyways), but it requires a community for this tools to become worthwhile and broadly used, and better be safe than sorry when your dictator in chief or your techno lord decide to screw you.So while a lot of users roleplays as leet hackers from a bad 90s movie we need them for this tools to be pertinent (but there is still a lot of big tech users for crypto tools like gnugpg).
>>107846244>blue markhe is just farming for money
>>107846207yes the dnat shit gets replaced all the time, even with my own stuff. ill try deleting those >>107846207in the global config menu i can allow ALL keyboards. i want just some ids>>107846226xen has 150k LOC. SUPER SMALL. sustemd and olenbsd jave 2+ MILLION kvm has a lot too, and interacts with a lot more stuff. kvm has to work with qemu, and the linux kernel. so basically you are getting vulnerability galore if one of those is compromised
>>107844625There's a lot of pedophiles on 4chan so I wouldn't be surprised if they actually are hiding stuff for legal reasons. Not to mention a large, LARGE, portion of this website is turd worlds (see: South America, China, etc) so speech is heavily censored and having to hide information is actually a major concern.
>>107846176well, there's GrapheneOS to avoid telemetry on your phone. GnuPG to avoid others from spying on your online conversations. Monero to avoid being spied on by credit-card companies when shopping online (and also financial freedom: https://www.pcgamer.com/software/platforms/valve-confirms-credit-card-companies-pressured-it-to-delist-certain-adult-games-from-steam/)Tor for browsing the web without being spied onetc etc.
In short, principled people.
>>107846289>financial freedomapparently that doesn't mean what i think it means, but you get the idea. credit-card companies hold too much power.
>>107844625i'm not a woman or a leftist man, i don't have an emotional reaction to everything i encounter>>107844633no average person uses GNUPG or LUKS>>107845339that's not to protect your stuff, that's to protect your bussy by giving you time to grab your 12 ga. full of 00 buckshot
>>107846226most people don't even know half the qemu/kvm/virsh commands. the docs are awful, the code is too
>>107846286don't fall for the marketing, the US of A is actively infringing your civil rights every day, you're just oblivious to it or want to pretend that it doesn't exist.
>>107846226>I guarantee you that the most barebones Linux without any drivers has had far more eyes and fuzzing on it than Xensecurity isnt measured by your gut feeling and Linux is a multi million LoC sized general purpose OS kernel that is created and maintained by a person who thinks security is a joke. it's not comparable to a smaller and more specific hypervisor kernel that leverages virtualization. not mentioning Xen at least has some kind of standardization now by bringing more MISRA-C rules to the codebase each passing day.>Xen isn't even the most battletested hypervisor, KVM is...we're not talking about KVM. we're talking about linux and Xen.>has significantly less attack surfaceyou're just baiting right? ok, that's enough.
>>107846262and what does OP get out of posting this on (formerly) 4channel?
>>107846321True, I wake up every day in fear simply because i'm associated to retards like yourself that are at higher odds to be terrorists or pedophiles and link me to your crimes.
>>107846342farming (you) like in the pre-every-fucking-thing-is-a-side-hustle-including-breathing days
>>107844625why would I get mad? he's 100% right
>>107846289>well, there's GrapheneOS to avoid telemetry on your phone.Well beyond my FUD claiming Micay was a glowie, I just don't trust GrapheneOS' future. There is no strong source of funding for it, too much custom code that hasn't been battletested/audited by industry folks, opposition against it by multiple governments, and Micay himself is too unstable to be trusted long term.>Monero to avoid being spied on by credit-card companies when shopping online (and also financial freedom: https://www.pcgamer.com/software/platforms/valve-confirms-credit-card-companies-pressured-it-to-delist-certain-adult-games-from-steam/)Monero isn't a good solution for this, use Tornado Cash or Railgun instead. Be warned though, unlike with Monero the financial system is actually scared of those and will freeze your accounts due to AML concerns.>Tor for browsing the web without being spied onI wouldn't trust Tor with a ten foot pole, my comments about it being glowie central wasn't a joke, unlike GrapheneOS. If you want to hide from misc websites, sure. But don't be fooled into thinking you're private from the state with it.>>107846332He said barebones Linux kernel, not the all-in-one kernel with almost everything compiled in it that Debian/Fedora/etc use. Barebones linux with almost everything except what's absolutely necessary disabled is definitely more secure and audited than Xen.
>>107844625>2025why are you guys falling for this one year old bait?
>>107846342whenever i make a thread that gets a bunch of replies from retards it makes me feel better than themThink like ddos amplification. Fewer bytes in, more out. It's a perpetual retardation machine!
>>107844639This. "How would you know?" is the obvious response to this random X user.
>>107844625Privacy is a human right
>>107844625You don't use those things because you have something to hide. Wrong way of thinking of it and is the psyop to discourage you from using it. It's not that you want to hide something, it's that you don't want to share anything.
