Qubes OS

From Trezor Wiki
Jump to: navigation, search

Qubes OS is a security-focused desktop operating system that aims to provide security through isolation.

To get Trezor running under Qubes OS, you'll need to perform the following:

in Dom0:

sudo vim /etc/qubes-rpc/policy/trezord-service

add this line:

$anyvm $anyvm allow,user=trezord,target=sys-usb

in sys-usb:

Create the directory:

/usr/local/etc/qubes-rpc

open trezord-service in an editor:

sudo vim /usr/local/etc/qubes-rpc/trezord-service

add this line:

socat - TCP:localhost:21325

mark the file as executable:

chmod +x /usr/local/etc/qubes-rpc/trezord-service

in any AppVM that has networking:

sudo vim /rw/config/rc.local

add this line (note the "&" at the end):

socat TCP-LISTEN:21325,fork EXEC:"qrexec-client-vm sys-usb trezord-service" &

You only have to install the Trezor Bridge and Udev rules in the sys-usb service VM, and not in every AppVM where you want to use the device.

Like Trezor? Get one here!
Retrieved from "https://wiki.trezor.io/index.php?title=Qubes_OS&oldid=60797"