This post represents setting up split-ssh in keepass vault qubes as a “best practice”, which is information that puts others at risk.
This post points out why that is insecure and requests that post be edited so that people are aware of the risks they take when they introduce split-ssh or anything into their setups.
This post dismisses security concerns as a matter of “personal views”, which is quite frankly why you will find me fucking annoyed by subsequent posts, including now yours @deeplow , that support such trivialization of the encouragement creation of a systematic and exploitable flaw in Qubes OS users configurations.
I didn’t see anything in the community guidelines about being able to report those posters who may be willfully and knowingly advising people to adopt insecure setups, so what do you mean flag it?
I’m guessing you didn’t actually attempt to follow what was insecure about connecting the ssh identity agent that is resident in the same qube as a person’s keepass database file to whatever qubes a person uses to connect to remote ssh servers outside of the user’s control?
Or did you just want to double down on the “personal views” bullshit as being inviolably sacred while honest attempts to point out mistakes people have made that will put others at risk are unwelcome on the Qubes OS forums?
I doubt you did anything but react to the tone of the posters, which is ostensibly against the community guidelines. I can only presume tone arguing like this is the bread and butter here and you get a lot of “personal views” rebuttals from people who get called out on insecure aspects of their advice and can’t be arsed to take ownership of having given advice that would put people at risk. Thanks for letting me know what kind of place this isn’t.