From mboxrd@z Thu Jan  1 00:00:00 1970
Return-Path: <discuss-bounces@spectrum-os.org>
X-Spam-Checker-Version: SpamAssassin 3.4.3 (2019-12-06) on atuin.qyliss.net
X-Spam-Level: 
X-Spam-Status: No, score=-1.5 required=3.0 tests=ALL_TRUSTED,
	FREEMAIL_FORGED_FROMDOMAIN,FREEMAIL_FROM,HEADER_FROM_DIFFERENT_DOMAINS,
	MAILING_LIST_MULTI autolearn=unavailable autolearn_force=no
	version=3.4.3
Received: by atuin.qyliss.net (Postfix, from userid 496)
	id 7D3338337; Sun, 14 Jun 2020 20:24:31 +0000 (UTC)
Received: from [127.0.0.1] (localhost [IPv6:::1])
	by atuin.qyliss.net (Postfix) with ESMTP id E21DC830C;
	Sun, 14 Jun 2020 20:24:21 +0000 (UTC)
Received: by atuin.qyliss.net (Postfix, from userid 496)
	id C1B538305; Sun, 14 Jun 2020 20:24:20 +0000 (UTC)
Received: from localhost (localhost [IPv6:::1])
	by atuin.qyliss.net (Postfix) with ESMTP id A9BC282DF
	for <discuss@spectrum-os.org>; Sun, 14 Jun 2020 20:24:18 +0000 (UTC)
Content-Type: text/plain; charset="utf-8"
MIME-Version: 1.0
Content-Transfer-Encoding: 7bit
Subject: Re: High level design and other related projects
From: =?utf-8?q?infokiller_=E2=80=8B?= <joweill@icloud.com>
To: discuss@spectrum-os.org
Date: Sun, 14 Jun 2020 20:24:18 -0000
Message-ID: <159216625861.15924.9215742282344612016@localhost>
In-Reply-To: <87k10bcgy1.fsf@alyssa.is>
References: <87k10bcgy1.fsf@alyssa.is>
User-Agent: HyperKitty on https://spectrum-os.org/
Message-ID-Hash: BVT2FVUIZZUVUKHQEWFR24OK5HW3HOJD
X-Message-ID-Hash: BVT2FVUIZZUVUKHQEWFR24OK5HW3HOJD
X-MailFrom: joweill@icloud.com
X-Mailman-Rule-Misses: dmarc-mitigation; no-senders; approved; emergency; loop; banned-address; member-moderation; header-match-config-1; nonmember-moderation; administrivia; implicit-dest; max-recipients; max-size; news-moderation; no-subject; suspicious-header
X-Mailman-Version: 3.3.1
Precedence: list
List-Id: General high-level discussion about Spectrum <discuss.spectrum-os.org>
Archived-At: <https://spectrum-os.org/lists/hyperkitty/list/discuss@spectrum-os.org/message/BVT2FVUIZZUVUKHQEWFR24OK5HW3HOJD/>
List-Archive: <https://spectrum-os.org/lists/hyperkitty/list/discuss@spectrum-os.org/>
List-Help: <mailto:discuss-request@spectrum-os.org?subject=help>
List-Post: <mailto:discuss@spectrum-os.org>
List-Subscribe: <mailto:discuss-join@spectrum-os.org>
List-Unsubscribe: <mailto:discuss-leave@spectrum-os.org>

Great, happy to see that you considered all of these options and everything you say makes sense.
Speaking of Whonix, you may be interested in a recent discussion about hardening a Linux desktop [1]. Since Spectrum is designed to be compartmentalized using VMs, this mainly applies to hardening
individual VMs, which is probably less significant than making sure the inter VM communication is secure, but nonetheless may be useful.

[1] https://forums.whonix.org/t/fixing-the-desktop-linux-security-model/9172