EDIT: let me share my pet project, OpenKuBSD. The point is to see how I could recreate a similar Qubes OS experience using OpenBSD tooling. That’s not really a serious project now, but experimentations. This is very valuable since I started, I understand many design decisions done in Qubes OS, and make me regularly in awe for the good work done!
TLDR: the goal is to have an OpenBSD template (and Alpine later) to quickly create new Kubes (equivalent to AppVm with /home persistent), and be able to use ssh to run remote program on a dedicated local Xephyr server. No USB/PCI passthrough, no “netless VMs” in the plans. Not a new distro, just something to use on top of OpenBSD. NFS is used to exchange files between the host and a Kube, and then can be used to move a file from a Kube to another by using the host.
The current state is that I can create a template, generate Kubes, generate desktop entries in XFCE menu to run programs, handle starting + connection + running a program in a single command, NFS storage, persistent /home/. Dedicated X server per program, sharing clipboard tool.
TODO: firewall, VPN support to use a Kube as a net source like in Qubes OS
Hi @solene, is there any specific reason why you’re asking this in the All Around Qubes category? It seems perfectly on topic for General Discussion and would be seen by more people there!
Thanks. There is something I don’t understand here, which channel is used to communicate the X memory from the xen guest to dom0? I really can’t figure how dom0 tells the guest it can use a piece of memory, after that, I suppose the memory is shared through Xen between dom0 X and domU X
I’m having fun making a lighter Qubes OS using OpenBSD (but really lighter, it’s a week end project). But using OpenBSD vmd as a VM hypervisor, I only found ssh forwarding to display GUI programs from the VMs, unfortunately ssh with trusted X11 works fine but isn’t secure at all, and without trusted X11 it’s super slow and not reliable.
So I was wondering how Qubes OS GUI displaying was working
Well, that’s great experiment. If I were you, I’d immediately change the topic title and category in order to better reflect your goal. And I think it would be great you to share your findings on the way,
The forum welcomes everyone to ensure the forum follows the Code of Conduct regardless of whether or not they are moderators. The key thing really is that regular users can only reply in the thread or use the button, while moderators can intervene directly and have some other tools. As far as I can see @gonzalo-bulnes has done great work in that regard.
If you feel mistreated in some way, or saw someone be mistreated, please don’t be open an out-of context reply in another thread. Instead flag the post where you believe you were mistreated, give some context and forum moderators will take a look. Please, engage with eachother in a positive way. If unhappy with how that went, there is always #feedback:forum-feedback.
) and running programs on local X from the VM
I changed it.
I really can’t figure how dom0 tells the guest it can use a piece of memory, after that, I suppose the memory is shared through Xen between dom0 X and domU X
button, while moderators can intervene directly and have some other tools. As far as I can see