Re: [Tails-ux] Prompt before compromise

Delete this message

Reply to this message
Author: u
Date:  
To: tails-ux
Subject: Re: [Tails-ux] Prompt before compromise
Hi,

> We know that persistence is useful, but it can leak information. For example, a machine that can automatically log into a known Wi-Fi network will respond when the known SSID is broadcast by an adversary. (Many other examples could be given here, and should probably be explained in some detail here: https://tails.boum.org/doc/first_steps/persistence/warnings/index.en.html <https://tails.boum.org/doc/first_steps/persistence/warnings/index.en.html> .)


I let sajolida answer as he knows the documentation very well. If not
yet mentioned anywhere, we should open a bug on Redmine here:
https://labs.riseup.net/code/projects/tails/issues/new

> It would be interesting to design the system so that before it takes actions that are known to create a risk of leaking information about the user, the user gets a prompt. For example, add dialogs that say “Join known Wi-Fi network <SSID>?” or “Install apps AAA, BBB, and CCC?” or “Connect to printer <NAME>?”
>
> This would still be much more convenient than configuring Wi-Fi access (or performing other tasks) on every reboot, while allowing the user to maintain a higher degree of privacy than the current implementation of persistence does.
>
> Thoughts? Has this been previously proposed? (I don’t see this anywhere, but I might be missing something.)


This sounds like a great and important idea!

Although, that would mean that on every boot, I will have many little
windows or notifications which i need to click on. This might be very
annoying, especially if you use Tails on a daily basis.

So I would rather imagine some kind of unique screen. Or try to
implement this as an option into the greeter:
When you have persistence and you enter your persistence password on
boot, propose "persistence settings". By default, you will connect to
all those items. But you can disable them, one by one.

What do you think?

Cheers,
u.