From qubes-users Mon Aug 15 09:22:14 2016 From: Joanna Rutkowska Date: Mon, 15 Aug 2016 09:22:14 +0000 To: qubes-users Subject: Re: [qubes-users] Thinkpwn? Message-Id: <20160815092214.GF2484 () work-mutt> X-MARC-Message: https://marc.info/?l=qubes-users&m=147125294426094 -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 On Mon, Aug 15, 2016 at 11:06:32AM +0200, Joanna Rutkowska wrote: > On Sun, Aug 14, 2016 at 12:55:10PM -0700, eliwu@tutanota.com wrote: > > Just to clarify, that means that even if the UEFI is exploited, it does not > > matter with Qubes? > > Yes. Oh, I noticed you wrote 'exploited', while I originally understood 'exploitable'. So, if it is 'exploited', which I assume you meant 'already compromised', then it's likely a game over, no matter what OS on the host. joanna. -----BEGIN PGP SIGNATURE----- iQIcBAEBCAAGBQJXsYnHAAoJEDOT2L8N3GcYUR0P/i5goJ9TH09QbFRFysHMJKyz 4cm4xPI4IsskXWQJHbwD62332iGZ2UpYqK/NBixfj2q+UbwruF5BOVSTkdpsaJe/ Lu8qmqEHxBOqqmX+utnyJtvjob8Ranuj3IzCw0zcC03riUEuUz/YyvUEBoyPDyWb KTbw1NJc3DrPGty8NW1hNbsGHNMNrvKwGA7rCl1kHdyZQ0WB4T2Ury2QpXeMYoD+ Jz9R3GXAH0ZhPOiqy4+5laWnl/kQ7MK5h1cUTvkFYUmX8j9kDuvpjmZ2sG5/tkC3 KH4uVXzRcHlj/Wa/ihKFPSgReRLDeQop/zPraMF0upZH/fcawfJSXdpD5YWDu5JN sn6JDzYRO/tWOgTnWRYRgMFn/ILuyb56XO7F8DnFQOmo32smRJwUlhE+W5VnhEhf ibYYsDEV7+GCIjxLuDL28o2/flPYdmed8YEpf6ilPidSHn/OahlRACx8DhP7acXV e6an11/3GnQ5cUDp7jM0J+gx0rJ58jOgfS6KQ1WTLHpLQuPKV3OooG6qdYJav1NC h2hEhDMrDU198wyB5KjnP8UzFZXZKj4P44+5ATIv2XoU7wmuTiaRe7Vg+jHdxg96 vpJ9Vwv+iY5jN1cB5Eh6MWS9j2Qlud/voDgxnwMqen33wp3w0nmC6VDL/1bD+KbN wTBGjE0Im3VaXM57we/9 =w+Ko -----END PGP SIGNATURE----- -- You received this message because you are subscribed to the Google Groups "qubes-users" group. To unsubscribe from this group and stop receiving emails from it, send an email to qubes-users+unsubscribe@googlegroups.com. To post to this group, send email to qubes-users@googlegroups.com. To view this discussion on the web visit https://groups.google.com/d/msgid/qubes-users/20160815092214.GF2484%40work-mutt. For more options, visit https://groups.google.com/d/optout.