Hello, I have a question regarding the security differences between Minimal templates and Normal templates.
I came across a forum discussion highlighting the absence of SELinux and AppArmor installations in minimal templates, which makes sense given their reduced feature set. However, I believe this omission would only increase the vulnerability of the specific Qube using the template, not dom0, nor would it introduce data leaks that a normal template would prevent.
I plan to create a DVM Qube without a network connection to handle unsafe email attachments. Since the DVM Qube’s compromise is not a major concern, I’m focused on system-wide security.
In this context, is it more secure to use a normal or minimal template for the DVM Qube? I’m concerned about potential information leaks, and minimal templates appear preferable due to their limited base functionality.
Is my understanding accurate? Any feedback is appreciated.
Hi! For better security, it’s recommended to use a normal template. Minimal templates can be useful if you’re setting up a lab environment for testing purposes.
However if you plan is to create a DVM Qube without network connection just to handle an unsafe email attachment, I don’t think it minds something if you choose a normal or a minimal. You have an Qube that doesn’t have any type of connection so an threat actor can’t be able to gain any type of remote access to your Qube.
I don’t agree with this statement. I use minimal template in various daily situations, and even if it is not my goal most of the time, it minimizes attack surface. But for non-advanced users, it might be true.
Never mind, I agree with you. I think it also more convenient in term of disk space usage since he have to use that qube only to open an attachment file.
