[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-talk] janusvm still safe?

To: tor-talk@xxxxxxxxxxxxxxxxxxxx
Subject: Re: [tor-talk] janusvm still safe?
From: Praedor <praedor@xxxxxxxxx>
Date: Wed, 21 Dec 2011 09:30:00 -0500
Delivered-to: archiver@xxxxxxxx
Delivery-date: Wed, 21 Dec 2011 09:30:32 -0500
Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=yahoo.com; s=s1024; t=1324477810; bh=X5TDxm2vN4cmYVYIy6j01k/1H+AUVT4Ws16O4h3Wv5w=; h=X-Yahoo-Newman-Id:X-Yahoo-Newman-Property:X-YMail-OSG:X-Yahoo-SMTP:Received:From:To:Subject:Date:User-Agent:References:In-Reply-To:MIME-Version:Content-Type:Content-Transfer-Encoding:Message-Id; b=KOQ975ImkfxX1nPnH8zBkTkjJ+LviwGuR9wSiCYh98oe2jjalitP2OaXnM8P+uwJwXhWRRDI7WqXqmhx5k+nxdoJiebJd3iyT+/4+ehg9pSpx+GYKwj0pe0eoMYRYxPjXDvEwn4C9FAg/KTjpsQorW0n+mwEomTGMGviwUPUhCA=
In-reply-to: <N1-jQw3qNfuPd@xxxxxxxxxxxxx>
List-archive: <http://lists.torproject.org/pipermail/tor-talk>
List-help: <mailto:tor-talk-request@lists.torproject.org?subject=help>
List-id: "This mailing list is for all discussion about theory, design, and development of Onion Routing." <tor-talk.lists.torproject.org>
List-post: <mailto:tor-talk@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk>, <mailto:tor-talk-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-talk>, <mailto:tor-talk-request@lists.torproject.org?subject=unsubscribe>
References: <N1-jQw3qNfuPd@xxxxxxxxxxxxx>
Reply-to: tor-talk@xxxxxxxxxxxxxxxxxxxx
Sender: tor-talk-bounces@xxxxxxxxxxxxxxxxxxxx
User-agent: KMail/1.13.7 (Linux/2.6.38.8-desktop-8.mga; KDE/4.6.5; x86_64; ; )

Couldn't one simply use Tails in a VM the way JanusVM was designed to run and get the benefits of tails without having to reboot constantly from a general purpose use OS to a task-specific OS (Tails)?  It would be nice to run Tails in a VM and have your main OS up and running for virtually everything else you need your computer for.

On Wednesday, December 21, 2011 08:19:58 AM hmoh@xxxxxxxxxxxxx wrote:
> Something come up to my mind... Vulnerabilitys could be,
> - the user forgets to start the VPN, or
> - the VPN connection breaks down for some reason (Windows bug or crash), traffic continues without Tor
> 
> I like the basic idea of JanusVM. I can say nothing about the concept of the deployed virtual machine but those vulnerabilitys I posted here could be fixed using a software firewall in whitelisting mode. Everything incoming and outgoing blocked expect the VPN connection.
> 
> Furthermore the VPN connection and the firewall should be forced enabled by an administrator and all applications should run as user. Not sure if that's best possible. Probable the Tor transparent proxy approach [1] is even better.
> 
> What I liked about JanusVM is that it's very easy to install and use.
> 
> [1] https://trac.torproject.org/projects/tor/wiki/doc/TransparentProxy
> _______________________________________________
> tor-talk mailing list
> tor-talk@xxxxxxxxxxxxxxxxxxxx
> https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk
> 
> 
_______________________________________________
tor-talk mailing list
tor-talk@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk

Follow-Ups:
- Re: [tor-talk] janusvm still safe?
  - From: Chris

References:
- Re: [tor-talk] janusvm still safe?
  - From: hmoh

Prev by Author: Re: [tor-talk] "If you have access to certain tools, you can completely ignore Tor."
Next by Author: [tor-talk] Tails signing key missing
Previous by thread: Re: [tor-talk] janusvm still safe?
Next by thread: Re: [tor-talk] janusvm still safe?
Index(es):
- Author
- Thread