From f107c9f0da60548475469a25305105b8eccf10fe Mon Sep 17 00:00:00 2001 From: Raffaele Florio Date: Sat, 13 Oct 2018 11:36:10 +0200 Subject: [PATCH 1/3] Added personal setup --- docs/user-setups/raffaeleflorio/README.md | 114 ++++++++++++++++++++++ 1 file changed, 114 insertions(+) create mode 100644 docs/user-setups/raffaeleflorio/README.md diff --git a/docs/user-setups/raffaeleflorio/README.md b/docs/user-setups/raffaeleflorio/README.md new file mode 100644 index 0000000..8bfecee --- /dev/null +++ b/docs/user-setups/raffaeleflorio/README.md @@ -0,0 +1,114 @@ +# User setup / @raffaeleflorio + +## TemplateVMs and VMs +The following TemplateVMs are really generic. I didn't include any specialized TemplateVMs (e.g. those used for development). + +### TemplateVM fedora-28-minimal +It's used only as a base for other TemplateVM. + +### TemplateVM fedora-28-mini +A clone of fedora-28-minimal with: +``` +qubes-core-agent-nautilus +qubes-core-agent-networking +qubes-core-agent-network-manager +qubes-core-agent-dom0-updates +network-manager-applet +dejavu-sans-fonts +notification-daemon +qubes-usb-proxy +qubes-input-proxy-sender +qubes-img-converter +qubes-pdf-converter +less +psmisc +pciutils +keepassxc +openssl +qubes-gpg-split +NetworkManager-wifi +wireless-tools +openssh-clients +nmap-ncat +oathtool +vim-common +``` + +Template of: +- sys-net +- sys-usb +- sys-sd +- sys-firewall +- vault: offline; password manager; totp generation +- *VMs used as split-{gpg,ssh} backend (e.g. work-keys)*: offline; management of a minimal set of (sub)keys +- *VMs used as data container (e.g. backup)*: offline + +Notes: +[split gpg](https://www.qubes-os.org/doc/split-gpg/) +[split gpg advanced setup](https://www.qubes-os.org/doc/split-gpg/#advanced-using-split-gpg-with-subkeys) +[split ssh](https://github.com/henn/qubes-app-split-ssh + +### TemplateVM fedora-28-net +A clone of fedora-28-mini with: +``` +firefox +thunderbird +thunderbird-qubes +pulseaudio-qubes +mozilla-https-everywhere +mozilla-privacy-badger +``` + +Template of: +- dvm-net: template for dispVMs +- dispNet: DispVM based on dvm-net +- *VMs that needs a minimal Firefox and/or Thunderbird (e.g. work)*: firewalled; qubes-url-redirector; custom Firefox + +Notes: +[qubes-url-redirector](https://github.com/raffaeleflorio/qubes-url-redirector) +[Qubes community docs about link/files opening](https://github.com/Qubes-Community/Contents/blob/master/docs/common-tasks/opening-urls-in-vms.md) + +### TemplateVM fedora-28-heavy +A clone of fedora-28-net with: +``` +vlc +libreoffice +gimp +whois +bzip2 +bind-utils +emacs +p7zip +java-1.8.0-openjdk +unar +unzip +galculator +polkit +qubes-core-agent-passwordless-root +man-pages +man +git +glibc-langpack-en +gnome-terminal +qubes-vm-recommended +tree +bash-completion +chromium +python2-jwt +``` + +Template of: +- dvm-heavy-offline: offline; template for DispVMs; used to handle every file in every other VMs +- dispHeavyOffline: DispVM based on dvm-heavy-offline +- dvm-heavy-online: template for DispVMs; +- dispHeavyOnline: DispVM based on dvm-heavy-online + +### TemplateVM whonix-ws-14 +- dvm-anon + +Notes: +[Whonix info 1](https://www.qubes-os.org/doc/whonix) +[Whonix info 2](https://www.whonix.org/wiki/Qubes) + +### TemplateVM whonix-gw-14 +- sys-whonix \ No newline at end of file From 9b3947a15f9c9d43c4983fb477edf93ab6df2781 Mon Sep 17 00:00:00 2001 From: Raffaele Florio Date: Sat, 13 Oct 2018 11:40:53 +0200 Subject: [PATCH 2/3] Improved layout --- docs/user-setups/raffaeleflorio/README.md | 16 ++++++++-------- 1 file changed, 8 insertions(+), 8 deletions(-) diff --git a/docs/user-setups/raffaeleflorio/README.md b/docs/user-setups/raffaeleflorio/README.md index 8bfecee..62ae9df 100644 --- a/docs/user-setups/raffaeleflorio/README.md +++ b/docs/user-setups/raffaeleflorio/README.md @@ -44,9 +44,9 @@ Template of: - *VMs used as data container (e.g. backup)*: offline Notes: -[split gpg](https://www.qubes-os.org/doc/split-gpg/) -[split gpg advanced setup](https://www.qubes-os.org/doc/split-gpg/#advanced-using-split-gpg-with-subkeys) -[split ssh](https://github.com/henn/qubes-app-split-ssh +- [split gpg](https://www.qubes-os.org/doc/split-gpg/) +- [split gpg advanced setup](https://www.qubes-os.org/doc/split-gpg/#advanced-using-split-gpg-with-subkeys) +- [split ssh](https://github.com/henn/qubes-app-split-ssh) ### TemplateVM fedora-28-net A clone of fedora-28-mini with: @@ -62,11 +62,11 @@ mozilla-privacy-badger Template of: - dvm-net: template for dispVMs - dispNet: DispVM based on dvm-net -- *VMs that needs a minimal Firefox and/or Thunderbird (e.g. work)*: firewalled; qubes-url-redirector; custom Firefox +- *VMs that needs a minimal Firefox and/or Thunderbird (e.g. work)*: firewalled; qubes-url-redirector; custom Firefox preferences Notes: -[qubes-url-redirector](https://github.com/raffaeleflorio/qubes-url-redirector) -[Qubes community docs about link/files opening](https://github.com/Qubes-Community/Contents/blob/master/docs/common-tasks/opening-urls-in-vms.md) +- [qubes-url-redirector](https://github.com/raffaeleflorio/qubes-url-redirector) +- [Qubes community docs about link/files opening](https://github.com/Qubes-Community/Contents/blob/master/docs/common-tasks/opening-urls-in-vms.md) ### TemplateVM fedora-28-heavy A clone of fedora-28-net with: @@ -107,8 +107,8 @@ Template of: - dvm-anon Notes: -[Whonix info 1](https://www.qubes-os.org/doc/whonix) -[Whonix info 2](https://www.whonix.org/wiki/Qubes) +- [Whonix info 1](https://www.qubes-os.org/doc/whonix) +- [Whonix info 2](https://www.whonix.org/wiki/Qubes) ### TemplateVM whonix-gw-14 - sys-whonix \ No newline at end of file From 09f6c5ee7b58d6ad490c894f7470ae25284ef261 Mon Sep 17 00:00:00 2001 From: Raffaele Florio Date: Sat, 13 Oct 2018 12:03:06 +0200 Subject: [PATCH 3/3] DispVM info --- docs/user-setups/raffaeleflorio/README.md | 11 ++++++----- 1 file changed, 6 insertions(+), 5 deletions(-) diff --git a/docs/user-setups/raffaeleflorio/README.md b/docs/user-setups/raffaeleflorio/README.md index 62ae9df..be8b199 100644 --- a/docs/user-setups/raffaeleflorio/README.md +++ b/docs/user-setups/raffaeleflorio/README.md @@ -35,10 +35,11 @@ vim-common ``` Template of: -- sys-net -- sys-usb -- sys-sd -- sys-firewall +- fedora-28-mini-dvm: template for DispVMs +- sys-net: DispVM based on fedora-28-mini-dvm +- sys-usb: DispVM based on fedora-28-mini-dvm +- sys-sd: DispVM based on fedora-28-mini-dvm +- sys-firewall: DispVM based on fedora-28-mini-dvm - vault: offline; password manager; totp generation - *VMs used as split-{gpg,ssh} backend (e.g. work-keys)*: offline; management of a minimal set of (sub)keys - *VMs used as data container (e.g. backup)*: offline @@ -60,7 +61,7 @@ mozilla-privacy-badger ``` Template of: -- dvm-net: template for dispVMs +- dvm-net: template for DispVMs - dispNet: DispVM based on dvm-net - *VMs that needs a minimal Firefox and/or Thunderbird (e.g. work)*: firewalled; qubes-url-redirector; custom Firefox preferences