I don’t think this is going in a fruitful direction.
It is readily apparent that none of the posters to this thread including
myself have the technical depth to even begin evaluating Xen exploit paths.
As such we might simply produce a lot of noise that best case isn’t
useful and worst case misinforms new users giving us too much weight as
regulars.
But the assumption that the Xen exploit is hardest to obtain isn’t baseless, as it’s basically the bedrock of Qubes’ security–if Xen exploits were more common, the entire security model falls apart, and we wouldn’t be here. Though again, I must stress my lack of technical knowledge.
Thank you for long and complete explanation, it is really helpful,
I think it gives new user, peace of mind. Maybe we can put in document or FAQ.