Merge remote-tracking branch 'origin/pr/394' into https

* origin/pr/394: theinvisiblethings.blogpost.com -> https://blog.invisiblethings.org
2024-10-01 01:25:40 -04:00 · 2017-05-06 23:38:02 +02:00 · 2017-05-06 23:38:02 +02:00 · c48490c354
commit c48490c354
parent 408b818a0e f9c898c6c1
1 changed files with 1 additions and 1 deletions
--- a/common-tasks/copy-paste.md
+++ b/common-tasks/copy-paste.md
@ -29,7 +29,7 @@ On Copy/Paste Security

 The scheme is *secure* because it doesn't allow other VMs to steal the content of the clipboard. However, one should keep in mind that performing a copy and paste operation from *less trusted* to *more trusted* domain can always be potentially insecure, because the data that we insert might potentially try to exploit some hypothetical bug in the destination VM (e.g. the seemingly innocent link that we copy from untrusted domain, might turn out to be, in fact, a large buffer of junk that, when pasted into the destination VM's word processor could exploit a hypothetical bug in the undo buffer). This is a general problem and applies to any data transfer between *less trusted to more trusted* domains. It even applies to copying files between physically separate machines (air-gapped) systems. So, you should always copy clipboard and data only from *more trusted* to *less trusted* domains.

-See also [this article](http://theinvisiblethings.blogspot.com/2011/03/partitioning-my-digital-life-into.html) for more information on this topic, and some ideas of how we might solve this problem in some future version of Qubes.
+See also [this article](https://blog.invisiblethings.org/2011/03/13/partitioning-my-digital-life-into.html) for more information on this topic, and some ideas of how we might solve this problem in some future version of Qubes.

 And [this message](https://groups.google.com/group/qubes-devel/msg/48b4b532cee06e01) from qubes-devel.