From a debian-11-minimal I created the following templates:
ks-16-firefox
:
debian-11-minimal ---> ks-16-minimal ---> ks-16-firefox
debian-11-firefox
:
debian-11-minimal ---> debian-11-firefox
The only difference between these two templates are the following packages:
hardened-malloc
haveged
jitterentropy-rngd
kicksecure-qubes-cli
security-misc
The other packages, including qubes-u2f
, have been installed in both templates.
For practicality, I then created a DispVM Template for debian-11-firefox
and another for ks-16-firefox
.
The problem is that if I launch firefox-esr
in a DispVM based off of ks-16-firefox
, u2f authentication with a yubikey doesn’t work. However, with the same settings and website, everything works fine in the DispVM based off of debian-11-firefox
.