Home Linux Blog Memories Me About ?

Dear My


Installing Conky in Qubes OS 4.0

Qubes Os Screenshot

This is a bad thing to do, but the easiest way to install Conky in Qubes OS is using the RPM packages of Fedora 24.

First you need to download the following packages:

  • giflib-4.1.6-15.fc24.x86_64
  • imlib2-1.4.9-1.fc25.x86_64
  • iw-4.1-2.fc24.x86_64
  • crda-3.18_2016.02.08-1.fc24.x86_64
  • wireless-tools-29-14.1.fc24.x86_64
  • tolua++-1.0.93-18.fc24.x86_64
  • conky-1.10.4-1.fc25.x86_64

Then install all them, they are in the installed order, the packages highlighted with bold letters are the main dependencies for installing conky

You can install all of them using

rpm -i *

Qubes Os is not for everyone.

When I first tried Qubes OS some months ago, it changed my view of security. Many people complains that is not very good for daily work, but I don't think that's have to be true.

I mean, I've using Slackware for some months, the more hard is something, the most creative you became. I'm impressed of myself due to my ability to solve problems.

I don't really know why I chose Slackware, the more I tried to explain, the more false looks for me. But I'm sure that I chose it because the DVD includes lots of useful utilities and windows managers.

With regards with Qubes OS, if you get used to security, then Qubes OS will be a good fit for you. But I don't know what to say, my way of understanding the world is incomprehensible for everyone. In my mind things really complex are too simple for me. By the other hand, frequently complex activities or plans of mine are empty of meaning.

But I think that there are simple things I liked about it: The main filesystem in the Virtual Machines are keep intact and changes are lost in each reboot, I really like how it it's isolated because there doesn't remain the system logs.
You can easy deleted a virtual machine and so easily control the metadata of your activity.

Actually I'm a bit obsessed in controlling the information because everything generates metadata. It's an obsessive-compulsive idea, but maybe I'm not wrong because the experts in security says to treat the information the same as radioactive waste.

Also I do like protecting the information, maybe I just care about information as few people in the world. I also love sharing information.

Does really people has an appropriate computer?

I would say that you should have at least 100G free for Qubes OS, 8G of RAM and a fast SSD. I use a raid with 3 hard disk and the start up process takes some time. I only suspend the computer instead of shutting down it in order to avoid stressing so much my hard disks. Qubes OS is making to suffer my hard disk. You can do many optimizations in the hard disk increasing the cache and delaying the writes.

I highly recommend a PSU because the last time my Qubes Os were ruined with an power outage in my house. The disposables machines uses lots of IO resources. I may say that the Anaconda installer is kind of tricky. It contains little bugs, so you will have to get dirty in the terminal.

Does really people think the more complexity, the more prone to failure?

Actually my Qubes OS system is working with 70 partitions of many kinds, loop devices, device mapper, and traditional, half of them mine, the other half are dependencies for Qubes OS. By the way, I only use 4 workplaces.

So don't be silly and do not create so much workplaces. Sometimes people are afraid of creating a third partition when right here we have tens of partitions.

Does really people know how to use Tor?

I was thinking that we don't need two Whonix installations since we can improvise the Whonix gateway with the Fedora template using a transparent Tor proxy. It's only a matter to modify the tor browser typing about:config and specifying the IP of the router plus the open port 9050. Finally disabling the extension that Start Tor. It's important to do in this way and not enabling the transparent proxy in Tor Browser since the transparent proxy cannot change the IP in each tab.

Does people really realize that more Templates means more updates?

Keep it minimalistic, because installing Qubes OS is like installing 5 operative systems, so it will increase the complexity of maintaining.

Does people really know about Fedora and Debian?

This question is relevant because some people rarely uses Linux, or more important, you may use Linux but don't know about both RPM or Deb package system. The RPM package system is special and sometimes needs kind of maintenance in matters such as expired package cache, or maybe the updates systems is locked.

Another considerations:

Moving files to dom0 isn't the most easy, but you can get used to the command to do it.

Stability is an issue in Linux

I thought that any Linux distro was pretty usable, but this year I changed my mind. Some days ago I installed Ubuntu in my netbook, and then I updated it and rebooted, after rebooting it was ruined, it was not able to start Xorg.

So I immediately reinstalled Ubuntu again and tried the same, but this time I disabled the automatic update and used the command line: apt-get update and apt-get upgrade. And in the next rebooting it was damaged in the same way.

However, notice that before updating my Ubuntu I could reboot it many times with any problem.

But there I have another bad experience:

Some months ago I installed Xubuntu in a Virtual Machine, and one day I tried to start it and it was not able to start up, I’ve tried Windows XP, Windows 8.1, Gentoo many times, Arch, Fedora, FreeBSD, and Ubuntu is the only Operative System that has ever been magically damaged.

But it is not only Ubuntu, I also have complain about Fedora, someone told me that after upgrading Fedora his system were ruined, but I could not believe it because I regard Linux as reliable. But that happened to me one time that I normally updated my Fedora.

You know that I don’t do any stupid thing and that I only use free drivers and also I don’t install unstable software. Indeed I had used Gentoo for 4 years with any problem.

That is the reason now I migrated to Slackware, Slackware is a distribution that never have had any problem with me, BTW have you noticed that Slackware has appeared in Mr. Robot recently?

Qubes OS

Also my Qubes Os was damaged, but that is interesting, Qubes OS is very easy to break because the complexity of it, it uses python scripts, virtualization libraries, so this system can be very easy broken. e.g an outage can damage a python library, and notice that python is a high level programming language that normally it is not needed to boot an operative system.

Did you know that my Qubes OS was in a raid 0 of 3 hard disks with XFS as filesystem?

Complains of Whonix

As you may know, I'm using Qubes Os , and sincerely I think that Whonix can be too bloated. Whonix needs 4 virtual machines in Qubes OS in order to work:

sys-whonixIs the Whonix VM running the Tor Network (backend)
whonix-gsIt is a Template VM for the Whonix frontend with Tor Browser.
whonix-wsIt is the Template VM for the Whonix backend
whonix-ws-dvmIt is the Whonix frontend

Even so, you also need to update dom0, Fedora and maybe Debian, thus, Qubes OS requires a regular update of 5 OS.

Once I uninstalled VLC of Whonix, and it uninstalled half of system, ruining it. Then I realized that the Qubes OS's Whonix is too bloated. Qubes Os needs a minimal Whonix only focused in running the Tor Browser.

Whonix depends in its own repository, I don't agree with centralization, there must be several repos you can choose, but then an eviden problem arises, that any of them can be compromised. Right?

So that, I had this problem: the Whonix repo expired when I needed to install very important updates , the repo was re-enabled several hours later.

I want you to know that we are depending so much in many people, the ideal is to create your own minimal "Whonix".

But it is more practical to use Tails in Qubes Os, since Tails uses a Transparent Proxy to Tor, so everything must be pass through Tor unless you got hacked. But everything will be lost after shutting down the Virtual Machine. So it's not that bad.

I recommend you to create your own LiveCD of any Linux or BSD with transparent Tor proxy instead using Tails, so that you don't have to depend on so many updates, however it is easier to remake a Tails iso than a self-build image.

You can use Gentoo for that purpose, so you will be aware of what exactly are you installing (and doing).

We do not believe in magic

Rss feed of the category