Qubes/core-agent-linux
1
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity
78de37da92
core-agent-linux/network
History
Marek Marczykowski-Górecki 8306013cbf
network: enable MAC randomization for wifi connections by default 
We do have NetworkManager new enough to handle this feature already.
Enable both scan MAC address randomization, and also connection mac
address randomization. The later do in a "stable" way - preserving the
same MAC _for a connection_, until reboot. This is a safe tradeoff
between full random, which breaks some captive portals. The stable MAC
is generated separate for each connection, so it also prevents
correlation of the same machine between different networks.

Do not enable it for wired connections, as those are less often used at
random untrusted localizations, but also more often it's desired to
get the same IP address each time (having random MAC would make it much
harder).

QubesOS/qubes-issues#938
2021-03-27 18:10:05 +01:00
..
30-qubes-external-ip network: fix issues found by shellcheck 2017-09-30 04:43:04 +02:00
80-qubes.conf Stop Debian templates from forwarding by default. 2018-02-06 23:10:28 +00:00
ip6tables Update rule priorities for anti-spoofing 2020-01-10 09:19:32 +01:00
ip6tables-enabled Allow DHCPv6 replies on uplink interface, if ipv6 is enabled 2020-12-03 20:52:51 +01:00
iptables firewall: drop INVALID state TCP packets 2020-01-24 19:01:00 +01:00
iptables-updates-proxy network: fix issues found by shellcheck 2017-09-30 04:43:04 +02:00
Makefile Split items in misc directory by topic 2020-02-04 23:59:09 +00:00
network-manager-prepare-conf-dir network: skip calling setup-ip from network-manager-prepare-conf-dir 2021-01-03 22:36:08 +01:00
nm-30-qubes.conf Configure NetworkManager to keep /etc/resolv.conf as plain file 2016-09-15 01:26:35 +02:00
nm-31-randomize-mac.conf network: enable MAC randomization for wifi connections by default 2021-03-27 18:10:05 +01:00
qubes-fix-nm-conf.sh Fix regex in qubes-fix-nm-conf.sh 2020-07-28 16:02:34 +02:00
qubes-iptables Fixes issue #3939 2018-05-31 14:02:15 -04:00
qubes-nmhook network: reload DNS only on "up" event from NetworkManager 2018-02-10 22:12:44 +01:00
qubes-setup-dnat-to-ns network: fix issues found by shellcheck 2017-09-30 04:43:04 +02:00
qvm-connect-tcp Split items in misc directory by topic 2020-02-04 23:59:09 +00:00
setup-ip Cleanup setup-ip script a bit 2020-12-04 03:24:02 +01:00
show-hide-nm-applet.desktop Fix show-hide-nm-applet.desktop - use OnlyShowIn=X-QUBES 2015-09-03 00:43:54 +02:00
show-hide-nm-applet.sh network: fix issues found by shellcheck 2017-09-30 04:43:04 +02:00
tinyproxy-updates.conf tinyproxy: support rsync for Gentoo 2020-08-04 12:24:09 +02:00
tinyproxy-wrapper Split items in misc directory by topic 2020-02-04 23:59:09 +00:00
udev-qubes-network.rules Move network uplink setup to a separate service 2020-12-04 03:24:02 +01:00
update-proxy-configs archlinux: improve pacman proxy implementation 2020-10-29 00:11:06 -03:00
updates-blacklist (redo) updates-proxy: explicitly block connection looping back to the proxy IP 2017-09-15 05:00:05 +02:00
vif-qubes-nat.sh Use netvm_gw_ip instead of netvm_ip 2020-11-22 17:52:54 -05:00
vif-route-qubes Don’t rely on an arbitrary length limit 2020-12-17 23:39:19 -05:00