Hello! We are running our annual fundraising. Please consider making a donation if you value this freely available service or want to support people around the world working towards liberatory social change - https://riseup.net/donate
-[QubesOS](https://www.qubes-os.org/) has some downsides such as computational power required to run every single process as a VM and it throttles the host. Outdated templates are a huge issue with qubes. Not to mention the difficulty of routing xen via tor on the main host. For these reasons, Whonix even started [Whonix-Host](https://www.whonix.org/wiki/Whonix-Host) which is the same idea of this project. Albeit, they've been slow with their implementation.
- How would someone compromise PlagueOS?
- To fully compromise the host, one would have to find a way to exploit the running VM, perform a sandbox escape from libvirt, find a way to exploit some running process or create a reverse shell from the unprivileged user, then break credentials for the admin account, which requires the use of doas for privilege escalation. We have stringent apparmor profile on libvirt (kvm). We also have developed a bwrap sandbox for libvirt, however process execution of the VMs took a substantial performance hit.
- Can regular GNU/Linux applications be installed?
- Applications are heavily restricted with this build and must be installed with `doas` privilege escalation with the `admin` account. The security of this OS follows a strict hypervisor usage model; installing applications breaks the [usage model](https://git.arrr.cloud/WhichDoc/plagueOS/wiki/Home#proper-usage) and should be conducted at the user's own risk.
- Is there an offline installation?
- An offline installer is a planned feature; however this will not be available in the immediate future. For best use, an installation via ethernet is advised.
- Are there hardware limitations?
- There is not specific hardware that is required to run PlagueOS. As a whole, we recommend having at least 8GB of RAM for the guests (VMs), however this is not required. Old hardware can run the base install in an efficient manner. We should note that ARM architectures are not currently supported.
