[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-talk] [tor-dev] Porting Tor Browser to the BSDs

To: tor-talk@xxxxxxxxxxxxxxxxxxxx
Subject: Re: [tor-talk] [tor-dev] Porting Tor Browser to the BSDs
From: WhonixQubes <whonixqubes@xxxxxxxxxx>
Date: Tue, 14 Apr 2015 21:59:42 +0000
Delivered-to: archiver@xxxxxxxx
Delivery-date: Tue, 14 Apr 2015 17:59:53 -0400
Dkim-signature: v=1; a=rsa-sha256; c=relaxed/simple; d=riseup.net; s=squak; t=1429048782; bh=Wwl03vwzsGNyTBNN8tBlAozgRj+8xeEh2FSRRYGsgXk=; h=Date:From:To:Cc:Subject:In-Reply-To:References:From; b=PZVJ+NybAylzOly9GccQ/oQIfHWREWWsKV+aSR9+RF0C+hYlR7KrO/sCLE9CMUxne epFME7WsBgSKcYC/Tp0mYjll+arvnbXs1TXJuGmxPoOm6aGCXkRHyP0rfJMdClL/XR oE+q3iVkBeT3M7VW/vbavvJxQ23rd90t86lJR+Bw=
In-reply-to: <552D8B97.3040407@xxxxxxxxx>
List-archive: <http://lists.torproject.org/pipermail/tor-talk/>
List-help: <mailto:tor-talk-request@lists.torproject.org?subject=help>
List-id: "all discussion about theory, design, and development of Onion Routing" <tor-talk.lists.torproject.org>
List-post: <mailto:tor-talk@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk>, <mailto:tor-talk-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-talk>, <mailto:tor-talk-request@lists.torproject.org?subject=unsubscribe>
References: <54E36CA2.9040504@xxxxxxxxxxx> <5529BA28.30909@xxxxxxxxx> <20150412064735.GA25987@xxxxxxxxxxxxxx> <a6e97db5c897305c7dd655119c5eba57@xxxxxxxxxx> <CAAgxajG9P07T0Ya_OyY4FS6ZO5HHBYQTYmttu34sp1oNseHL7A@xxxxxxxxxxxxxx> <3de2be9cc26c8e14281da15b6148681a@xxxxxxxxxx> <552D8B97.3040407@xxxxxxxxx>
Reply-to: tor-talk@xxxxxxxxxxxxxxxxxxxx
Sender: "tor-talk" <tor-talk-bounces@xxxxxxxxxxxxxxxxxxxx>
User-agent: Riseup mail

On 2015-04-14 9:50 pm, Yuri wrote:

On 04/14/2015 14:41, WhonixQubes wrote:
I believe it is probably generally harder to break out of a virtualmachine than root a Linux distro, like Tails, because hypervisors havea more limited attack surface compared to a full monolithic OS.
If you use Qubes, then it is infinitely harder to root the hostsystem.
Can you describe the scenario how can somebody potentially break out
of the virtual machine and root the host system, if VM is wired to
connect only through tor?

Yuri



Some VM breakout scenarios:

- Hypervisor vulnerability

- Trojaned hypervisor

- Side channels


WhonixQubes
--
tor-talk mailing list - tor-talk@xxxxxxxxxxxxxxxxxxxx
To unsubscribe or change other settings go to
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk

References:
- Re: [tor-talk] [tor-dev] Porting Tor Browser to the BSDs
  - From: Yuri
- Re: [tor-talk] [tor-dev] Porting Tor Browser to the BSDs
  - From: Andreas Krey
- Re: [tor-talk] [tor-dev] Porting Tor Browser to the BSDs
  - From: WhonixQubes
- Re: [tor-talk] [tor-dev] Porting Tor Browser to the BSDs
  - From: Apple Apple
- Re: [tor-talk] [tor-dev] Porting Tor Browser to the BSDs
  - From: WhonixQubes
- Re: [tor-talk] [tor-dev] Porting Tor Browser to the BSDs
  - From: Yuri

Prev by Author: Re: [tor-talk] [tor-dev] Porting Tor Browser to the BSDs
Next by Author: Re: [tor-talk] [tor-dev] Porting Tor Browser to the BSDs
Previous by thread: Re: [tor-talk] [tor-dev] Porting Tor Browser to the BSDs
Next by thread: Re: [tor-talk] [tor-dev] Porting Tor Browser to the BSDs
Index(es):
- Author
- Thread