From 01363043c7a5ea791f5e0454edf1325f31edfbd0 Mon Sep 17 00:00:00 2001
From: unman <unman@thirdeyesecurity.org>
Date: Tue, 31 May 2016 00:48:15 +0000
Subject: [PATCH 1/4] Create running-tails.md

Document running Tails under Qubes as per https://github.com/QubesOS/qubes-issues/issues/1343
---
 privacy/running-tails.md | 73 ++++++++++++++++++++++++++++++++++++++++
 1 file changed, 73 insertions(+)
 create mode 100644 privacy/running-tails.md

diff --git a/privacy/running-tails.md b/privacy/running-tails.md
new file mode 100644
index 00000000..2f5434f5
--- /dev/null
+++ b/privacy/running-tails.md
@@ -0,0 +1,73 @@
+---
+layout: doc
+title: Running Tails in Qubes
+permalink: /doc/running-tails/
+redirect_from:
+- /doc/running-tails
+---
+
+Running Tails in Qubes
+============================
+
+Tails is the amnesic incognito live system. It aims are preserving privacy and anonymity.
+
+To run Tails under Qubes:
+
+1.  Read about [creating and using HVM qubes](https://www.qubes-os.org/doc/hvm/)
+
+2.  Download and verify Tails from http://tails.boum.org in a qube, (saved as "/home/user/Downloads/tails.iso" on qube "isoVM" for purposes of this guide).
+3.  Create a HVM
+
+  - in Manager, click VM menu and select "Create VM"
+  - Name the new qube - "Tails"
+  - Select "HVM"
+  - Configure networking
+  - Click "OK" to create new HVM.
+
+4.  Open dom0 Konsole and start Tails:
+
+        qvm-start Tails --cdrom=isoVM:/home/user/Downloads/tails.iso
+
+5.  Configure Tails at start up.
+
+6.  Once the Tails qube has started, configure networking in the qube.
+
+  -  Check the IP address allocated to the qube - either from GUI Manager, or ```qvm-ls -n Tails``` in Konsole. (E.g. 10.137.1.101 with gateway 10.137.1.1)
+  -  In the Tails qube, open systems menu in top-right corner. Select "Wired Settings", and change  IPv4 configuration from "Automatic (DHCP)" to "Manual".
+  -  Enter the Address:   10.137.1.101  in our example.
+  -  Enter the Netmask:   255.255.255.0  
+  -  Enter the Gateway:   10.137.1.1  in our example.
+  -  Enter DNS:           10.137.1.1  in our example.
+  -  Click "Apply". You should now see "Connected".
+
+7.  Use Tails as normal.
+
+## Usage Notes
+
+###Display issues:
+**Black screen on start up.**
+
+This was reported with earlier versions of Tails: I believe the problem is now fixed.
+If you do encounter this problem, you can try to constrain display settings by appending vga codes to the Tails boot parameters.
+(If you do not know the codes, append vga=999, and a helpful prompt will appear.)
+
+N.B Tails 2.3 does not appear to honour the vga code.
+
+**Window extends beyond bottom of screen.**
+
+This seems to arise because Tails sizes to the height of the screen, but there is a title bar at the top of the window.
+Either remove the title bar altogether, or move the window upwards using ALT+drag.
+
+###Persistent Volume
+The persistence tools will not work because Tails has not been launched from USB.
+The HVM disk(s) can be configured and mounted from within Tails to provide persistent storage. 
+
+###Shutdown
+The Tails qube will not shut down cleanly.
+Kill it from the GUI Manager or ```qvm-kill Tails``` in Konsole.
+
+###Security
+You will probably want to implement [MAC spoofing](https://www.qubes-os.org/doc/anonymizing-your-mac-address/).
+
+Read [the warnings](https://tails.boum.org/doc/advanced_topics/virtualization/) from the Tails team about operating in a virtual machine.
+While the Qubes security model mitigates most of the risks identified, traces of the Tails session may remain on the disk.

From 452c04f5870707bc9a7bab304fe47ad292692ce7 Mon Sep 17 00:00:00 2001
From: Andrew David Wong <adw@qubes-os.org>
Date: Mon, 30 May 2016 19:34:36 -0700
Subject: [PATCH 2/4] Rename file and page

---
 privacy/{running-tails.md => tails.md} | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)
 rename privacy/{running-tails.md => tails.md} (98%)

diff --git a/privacy/running-tails.md b/privacy/tails.md
similarity index 98%
rename from privacy/running-tails.md
rename to privacy/tails.md
index 2f5434f5..c3962395 100644
--- a/privacy/running-tails.md
+++ b/privacy/tails.md
@@ -1,7 +1,7 @@
 ---
 layout: doc
 title: Running Tails in Qubes
-permalink: /doc/running-tails/
+permalink: /doc/tails/
 redirect_from:
 - /doc/running-tails
 ---

From c82e8929ac80e0e526292539e27af7bc8d3d1e31 Mon Sep 17 00:00:00 2001
From: Andrew David Wong <adw@qubes-os.org>
Date: Mon, 30 May 2016 19:37:32 -0700
Subject: [PATCH 3/4] Fix formatting and typo

---
 privacy/tails.md | 29 +++++++++++++++--------------
 1 file changed, 15 insertions(+), 14 deletions(-)

diff --git a/privacy/tails.md b/privacy/tails.md
index c3962395..8227fed8 100644
--- a/privacy/tails.md
+++ b/privacy/tails.md
@@ -9,20 +9,21 @@ redirect_from:
 Running Tails in Qubes
 ============================
 
-Tails is the amnesic incognito live system. It aims are preserving privacy and anonymity.
+Tails is the amnesic incognito live system. Its aims are preserving privacy and anonymity.
 
 To run Tails under Qubes:
 
 1.  Read about [creating and using HVM qubes](https://www.qubes-os.org/doc/hvm/)
 
-2.  Download and verify Tails from http://tails.boum.org in a qube, (saved as "/home/user/Downloads/tails.iso" on qube "isoVM" for purposes of this guide).
+2.  Download and verify Tails from http://tails.boum.org in a qube, (saved as `/home/user/Downloads/tails.iso` on qube "isoVM" for purposes of this guide).
+
 3.  Create a HVM
 
-  - in Manager, click VM menu and select "Create VM"
-  - Name the new qube - "Tails"
-  - Select "HVM"
-  - Configure networking
-  - Click "OK" to create new HVM.
+    - in Manager, click VM menu and select "Create VM"
+    - Name the new qube - "Tails"
+    - Select "HVM"
+    - Configure networking
+    - Click "OK" to create new HVM.
 
 4.  Open dom0 Konsole and start Tails:
 
@@ -32,13 +33,13 @@ To run Tails under Qubes:
 
 6.  Once the Tails qube has started, configure networking in the qube.
 
-  -  Check the IP address allocated to the qube - either from GUI Manager, or ```qvm-ls -n Tails``` in Konsole. (E.g. 10.137.1.101 with gateway 10.137.1.1)
-  -  In the Tails qube, open systems menu in top-right corner. Select "Wired Settings", and change  IPv4 configuration from "Automatic (DHCP)" to "Manual".
-  -  Enter the Address:   10.137.1.101  in our example.
-  -  Enter the Netmask:   255.255.255.0  
-  -  Enter the Gateway:   10.137.1.1  in our example.
-  -  Enter DNS:           10.137.1.1  in our example.
-  -  Click "Apply". You should now see "Connected".
+    -  Check the IP address allocated to the qube - either from GUI Manager, or ```qvm-ls -n Tails``` in Konsole. (E.g. 10.137.1.101 with gateway 10.137.1.1)
+    -  In the Tails qube, open systems menu in top-right corner. Select "Wired Settings", and change  IPv4 configuration from "Automatic (DHCP)" to "Manual".
+    -  Enter the Address:   10.137.1.101  in our example.
+    -  Enter the Netmask:   255.255.255.0
+    -  Enter the Gateway:   10.137.1.1  in our example.
+    -  Enter DNS:           10.137.1.1  in our example.
+    -  Click "Apply". You should now see "Connected".
 
 7.  Use Tails as normal.
 

From c6e6a9c29c70739808951bad73097549eb361bcf Mon Sep 17 00:00:00 2001
From: Andrew David Wong <adw@qubes-os.org>
Date: Mon, 30 May 2016 19:38:31 -0700
Subject: [PATCH 4/4] Add Tails entry

---
 doc.md | 1 +
 1 file changed, 1 insertion(+)

diff --git a/doc.md b/doc.md
index a6f55777..4d77fd14 100644
--- a/doc.md
+++ b/doc.md
@@ -94,6 +94,7 @@ Privacy Guides
 --------------
 
  * [Whonix for Privacy & Anonymity](/doc/whonix/)
+ * [Running Tails in Qubes](/doc/tails/)
  * [Anonymizing your MAC Address](/doc/anonymizing-your-mac-address/)
  * [TorVM](/doc/torvm/)
  * [Martus](/doc/martus/)