Security using qvm+windows?

TlCNeFOD · August 3, 2022, 11:47am

Hello, ladies and gentlemen. English is not my native language, so I am using a translation software. I hope you can be more tolerant, thank you.
I just started using Qubes OS a few days ago, but I still do most of my work on Windows. I like to keep several identities on the internet completely separate to save me from unnecessary hassles, and Qubes OS is just what I need.
If I use Qubes (qvm), install windows and windows-tools, and connect to sys-whonix at the same time, will there be any security issues due to windows-tools or other factors? For example, can the attack be directed to dom0 through windows-tools, or any reason lead to de-anonymization. (Only system issues are discussed, excluding social engineering and other human-focused attacks)

Qubes OS：4.1.1

TheGardner · August 3, 2022, 1:29pm

Simple answer: NO!

As long as Windows is running as domU, it should be save for dom0. It possibly could be more a problem, if you running QubesOS and Windows side by side on a device.
So, from all the infos you gave, YOU probably will be the most common reason for de-anonymization, IF you did a wrong step (by accident).
As long as you’re using the OS in the way it was build for - all should be save.

TlCNeFOD · August 3, 2022, 2:42pm

I am using a Laptop with qubes OS installed in a USB external hard drive (M.2), but I did not empty the original hard drive inside the Laptop, it comes with a Windows system built in, do you mean that such a configuration is prone to other problems?

fsflover · August 3, 2022, 3:27pm

If you use Qubes from the USB device and sometimes boot your main system from the hard drive, it might be equivalent to multibooting:

github.com

Qubes-Community/Contents/blob/master/docs/configuration/multiboot.md


Multibooting Qubes 
========================================

Introduction
---------------------

You should think carefully before dual booting Qubes on your box.
Read the [guidelines](https://www.qubes-os.org/doc/security-guidelines) carefully.

One problem is that when you dual or multiboot, even if you are using
encryption on your Qubes installation, /boot is still unprotected and
could be maliciously modified by the other OS, possibly leading to Qubes
itself being maliciously modified.

The other problem is firmware security - for example the other system
could infect the BIOS firmware, which might enable compromise or spying on
the Qubes system.

You can use [Anti Evil Maid](https://www.qubes-os.org/doc/anti-evil-maid/), which would inform

This file has been truncated. show original

Also, you don’t have a sys-usb, so you are not protected from malicious USB devices in this case.

Brainhack · August 4, 2022, 6:29am

Keep it to the underlying philosophy of Qubes & you’ll be just fine, separate tasks, habits and servers/websites you visit well that is.

Running Windows as one VM should make that easier for most I’d guess, just remember to avoid spontaneously doing stuff in that VM that you do otherwise. Fingerprinting is a thing and will just be even more capable in the future

TlCNeFOD · August 4, 2022, 7:31pm

After a busy day, I found a lot of information, and since it was my first time using qubes os, I thought it would take me a little while to absorb it all. Let me talk about my new knowledge, I think it might be helpful for others like me to learn qubes os. After reading the multiboot.md, I thought I would need Anti Evil Maid since I use a Laptop, and I probably carry it around a lot for use elsewhere (probably when traveling), and I thought I could ditch some of the USB security (I haven’t used USB in a long time, and I’m more than happy to transfer it over the network, which is much more convenient), but after reading more about AEM, I see “known issues”, my Laptop no longer has USB 2.0, but AEM does not support USB 3.0, and I use an M.2 external box (Silverstone SST-MS12) as a Qubes OS carrier (AEM is not compatible with having an SSD cache), and my laptop uses amd cpu, while AEM seems to be based on intel’s built-in features, This means I have no way to use the AEM … Right? I need more time to absorb other information and google data, I will probably ask other questions tomorrow. Anyway, thanks to everyone who responded to me here, thank you very much for your help. English is not my native language, I use translation software, please forgive my grammar mistakes, thank you!

TlCNeFOD · August 5, 2022, 10:41am

I think of a problem, if I do not shut down windows (qube), perhaps because the computer does not respond or the reality of danger, human pressure, etc. … If the computer is forced to turn off the power (such as long press the power button and so on), will it cause a bug? Any danger? De-anonymization?

fsflover · August 5, 2022, 11:56am

You did not tell us which laptop you are using. Maybe it supports Heads instead, which would be even better AFAIK.

However I would not recommend to go full-security so quickly for a person new to all this stuff. There many other attacks that are much more frequent than Evil Maid, and it takes time to adjust your workflow to Qubes OS with many isolated workflows.

In this case, if your computer was doing some writing to the disk, the writing fill fail and the file will be damaged. D epending on which file it was, you may loose some data or render your OS unbootable. Nobody should be able to deanonymize you because of that. It’s not recommended to abruptly shut down Qubes OS, but usually it does not do any harm.

TlCNeFOD · August 14, 2022, 5:41pm

My Laptop Model：Asus ROG G14

Can you give me some examples? For example, social engineering or a malicious person directly gaining full control of a physical machine?

I understand, it seems that this and I used to learn to force the shutdown of the system damage is the same

TlCNeFOD · August 14, 2022, 5:46pm

I recently created multiple windows VMs, some of them are StandaloneVM, some are StandaloneVM under TemplateVM, and some are full DispVMs under TemplateVM and AppVM, but I can see some data in qvm-prefs that is identical in all VMs. Should I try to change it? Will these identical data affect security and anonymity?

TlCNeFOD · August 20, 2022, 6:55am

Is it possible for me to hide the dom0 mouse in windows StandaloneVM?

TlCNeFOD · August 20, 2022, 6:59am

I checked this article, which mentioned “Note how the MAC addresses differ between those two, otherwise identical VMs”, it looks like I should change the MAC address manually?

enmus · August 20, 2022, 9:45am

I am genuinely interested to find out what is your goal here, e.g, why would you want to achieve that.

TlCNeFOD · August 20, 2022, 12:28pm

Make it look more beautiful. When I use windows now, I will see two mice on the screen, dom0 and windows mouse.
But this is just a casual mention, it would be better if there happens to be an answer. I’m still focusing on the anonymity of qvm+windows for this article.

TlCNeFOD · August 27, 2022, 2:25pm

Is there anyone who can help me, thank you very much.

fsflover · August 28, 2022, 5:02pm

I can’t help you here, but I guess you should create a separate topic about hiding the mouse, since it’s not really related to “Security using qvm+windows”.

TlCNeFOD · August 29, 2022, 5:06am

That’s okay, let’s just ignore the problem

Am I right in thinking this? Should I change the MAC address manually?