LWN.net Logo

Not logged in

Log in now

Create an account

Subscribe to LWN

Recent Features

LWN.net Weekly Edition for May 23, 2013

An "enum" for Python 3

An unexpected perf feature

LWN.net Weekly Edition for May 16, 2013

A look at the PyPy 2.0 release

Printable page
Weekly edition Kernel Security Distributions Contact Us Search
Archives Calendar Subscribe Write for LWN LWN.net FAQ Sponsors

Qubes beta 1 released

Qubes beta 1 released

Posted Apr 13, 2011 20:03 UTC (Wed) by Felix_the_Mac (guest, #32242)
In reply to: Qubes beta 1 released by alvieboy
Parent article: Qubes beta 1 released

From the point of view of a normal user (that's me) everything is in your home account and if you get infected by malware in some form it can completly 0wn your digital life. Whereas with cubes your banking can be in one area, your p09rn in another, and your normal web browsing in 3rd. It seems to make sense!?

(Log in to post comments)

Qubes beta 1 released

Posted Apr 13, 2011 20:07 UTC (Wed) by SEJeff (subscriber, #51588) [Link]

It honestly surprises me that no one has done something very similar with lxc (linux containers). There was an article recently about starting X from a container so something quasi-similar could be done.

Qubes beta 1 released

Posted Apr 14, 2011 17:56 UTC (Thu) by trasz (guest, #45786) [Link]

With lxc, you wouldn't solve the problems Qubes aims to fix (attack surface between userland and the kernel is simply too big; the whole protection would become useless with every exploitable security hole in kernel, which in Linux seems to happen every two months or so - and that's not including problems related to X11), and the overhead - administration overhead in particular - would be close.

Qubes beta 1 released

Posted Apr 13, 2011 20:30 UTC (Wed) by Felix_the_Mac (guest, #32242) [Link]

But I'd also like an easy way to launch Firefox with guest privileges only in all desktop distros.

Qubes beta 1 released

Posted Apr 13, 2011 23:55 UTC (Wed) by dlang (✭ supporter ✭, #313) [Link]

the problem is that currently firefox refuses to let you run multiple copies on one display. it detects that there is already a copy of firefox on that display and instead of starting a new copy, it sends a message via X for the existing copy to open a new window to the URL instead.

I have no problem with firefox defaulting to checking to see if there's already a copy running as this user and having that copy open a window, but what it does today is that if you have a copy running on a different system, as a different user (on a different network that you may not be able to talk to except the X display), trying to start a new copy of firefox will instead instruct the copy on the remote machine to open a new window instead.

this also means that you can't have two VMs each open a browser, unless you don't use X for your display and instead use somethign even less efficient like VNC

Multiple instances of Firefox on one display (getting offtopic)

Posted Apr 14, 2011 1:09 UTC (Thu) by donovan (guest, #852) [Link]

Have you tried "firefox --no-remote"?

Copyright © 2013, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds