SUMMARY GNOME has a USBGuard integration (https://wiki.archlinux.org/title/USBGuard#GNOME_integration) that gives protection against physical attacks like Evil Maid. It would be great to see KDE have parity here.
What kind of integration are you wanting, specifically? What does thew GNOME integration look like?
I've only used the CLI version so am not sure how GNOME's version works other than it's description. For an easy-to-use GUI integration for KDE however it'd be great if it had the following features: - A System Settings>Hardware>Removable Devices submenu for USBGuard configuration - A button to enable USBGuard and generate a ruleset based on the currently attached USB devices (equivalent to `usbguard generate-policy > /etc/usbguard/rules.conf`) - `usbguard-daemon.conf` converted to radio buttons/dropdown menus and other buttons to easily edit that file - `usbguard-rules.conf` also converted to various buttons to make editing it easier - Desktop notification whenever a USB device gets attached, saying that it either did allow/block/reject the device based on USBGuard rules
Thanks. Looks like we have an opportunity to leapfrog GNOME here, as their support appears to be quite rudimentary.
To add on the previous comments, GNOME currently has a toggle in their system settings allowing to block any newly connected USB device when the lock screen is active on top of a few other hidden dconf behaviors, as usual with them. I believe the lock screen behavior is of particular interest (maybe enough to even ship it enabled by default?) as it's low maintenance and high impact: * It protects against evil maids, obviously. * It also protects against law enforcement (or similar) agencies keeping devices indefinitely powered on until they find a kernel exploit to break in, such as iPhones with Graykeys.