First of all: I am not very familiar with Whonix or Kicksecure; just found it the other day. I thought: Let’s harden my Debian-Server with Kicksecure. But looking at the Dependency-List, it feels like adding more attack surface (especially DRM on a CLI-Install).
Have there been considerations
to remove python3-pyqt5 from repository-dist?
to provide a minimal-version that only installs the packages absolutely necessary? (no OpenVPN, no LVM, … - everything that doesn’t automatically make the system more secure is out)
GUI version was in a different package before but in order to have fewer packages it was merged. Conflicting optimization goals. (Fewer packages vs more fine grained package split for more customization / minimal.)
Most minimal (therefore also most difficult use case, most support intensive) doesn’t have a dedicated maintainer. Even CLI as currently is hasn’t. Lack of manpower.
Instead of kicksecure-cli consider kicksecure-dependencies-cli or pick and choose packages from that.
kicksecure-dependencies-cli certainly has room for improvement. For example openvpn could be moved to kicksecure-packages-recommended-cli. Not even “recommended”.
Description: Recommended packages for Kicksecure CLI
A metapackage, which installs packages, which are useful for
command line interface (CLI) Kicksecure.,
Feel free to remove if you know what you are doing.
Just useful pre-installed for some users that don’t want / can’t to connect using clearnet / without VPN before for installation for that package. CLI could move towards more minimal / more difficult to use.
Will probably happen later.
There’s none. Perhaps mistaken a similar name?
Packages such as python3-pyqt5, openvpn don’t increase attack surface if not actively used unless suid (not the case) or invoking the threat model “trust as few Debian maintainers as possible”, which isn’t sustainable.
If someone is interested, this gives a nice Dependency view (had to search a long time for that):
apt install -s -o Debug::pkgDepCache::AutoInstall=true --no-install-recommends kicksecure-cli 2>&1 | less
I agree that OpenVPN for example is not much of a problem. But having it as a hard dependency fells like too much clutter for a Server. Is my assumption correct that nearly all effort is put into Whonix GUI (anonymitiy) and a Server is on the opposing side (Non-GUI, non-anonymity). Is there interest in seperating Kicksecure more? And having Servers as a Target for the OS? (I maybe do some one-time contribution if there is interest - my time management is bad so don’t count on that though)
Thanks for your work even though it feels not suitable for my usecase!