Hello.
Are there any QubesOS hardening guides or tips or are the default settings hardened enough?
what do you recommend
1 Like
I think Qubes achieves to be a reasonably secure OS by focusing on compartmentalization while giving up on “hardening” stuff.
See:
So I would say it is not “hardened” enough but who cares? 
1 Like
any guides or tips to harden it?
2 Likes
Dom0 is already very reasonably hardened. I’d advise against doing any significant “hardening” modifications within dom0. However, you can still harden the templates themselves, I suppose. But then again, what could constitute “hardening” in your case depends entirely on your threat model.
1 Like
Hardening against what?
Tell me your threat model and I tell you, as good as I can, how to harden your Qubes OS installation.