Directly connecting my USB headphones to a VM might compromise my anonymity if the VM is breached. Should I create a dedicated audio qube to isolate the audio functionality, or are there other ways to mitigate this risk?
To clarify, my concern is not that the USB headphones themselves are malicious, but rather the potential fingerprinting implications of connecting them directly to the VM
I would recommend creating sys-audio. This is the main reason for doing so.
Hi, could i use this approach to connect Bluetooth headphones as well?
Yes, sys-audio (when properly configured) isolates the audio into its own qube. This means that you can use any audio device without fear of compromising dom0, and you can optionally make it disposable to make sure that a malicious device cannot persist. A good guide is here: