On 12/30/2016 08:25 PM, HiringQubesExperts wrote:
The problem is that this laptop will have to be somewhat mobile, while
having atleast the performance to act as a decent hypervisor for everyday
use. (will be running qubes). I was thinking about a 12-16gb ram quad core
with integrated Intel Iris 5xx graphics. Single (Opal 2.0) SSD would be
sufficient, as long as its 256-512gb. This would mean that I would be
forced to use one of the newer intel chipsets, are these really so flawed
that you would recommend against them?
What about an mobile xeon based platform? Think something like Xeon Intel®
Xeon® Processor E3-1515M v5
<https://ark.intel.com/products/93358/Intel-Xeon-Processor-E3-1515M-v5-8M-Cache-2_80-GHz>
.
Would you guys really say that modern intel processors can not be trusted
enough for situations where very high security is required ?
By the way, what about intel Vpro? I heard this has some kind of backdoor
in it? Some even stating there is a 3g cellular backdoor in it, but I find
this hard to believe. Could someone give me some further explanation on
these matters?
Lets say that I lose the laptop requirement, and go for something that acts
as a server that I ssh into with my dedicated remote client, what would my
possibilities be in that case?
Seems to me there is actually no high performance open-source hardware
available that is truly open-source and secure....
That just makes me sad when I think about it. Oh, and the Power8 Talos
project is doomed, there funding failed big time, so thats not an option
neither.
Hope to get some more input on this matter.
HQE
Like I said you could simply buy a POWER8 server from IBM or a TYAN
Palmetto, they have free firmware out of the box and start at 3K - the
talos project is simply a regular workstation motherboard but there
isn't anything stopping you from using a POWER server as a workstation.
Before you say that 4K is expensive, you are getting quite a lot more
bang for your buck with that than with intel.
Did you listen to anything we have been saying? SE drives are bullshit.
New intel/amd is for idiots, they have ME/PSP and so they can't be
trusted, coreboot on new intel is just a shimloader layer because of FSP.
vPro is a module addon to intel ME, it provides corporate manageability
features which can include remote de-activation via an integrated or
pci-e wireless modem.
A secret 3g modem chip is impossible, the physics of it just don't make
any sense and you can't hide something like that.
Damn dude I really wanna know what you need all this security for.
--
You received this message because you are subscribed to the Google Groups
"qubes-devel" group.
To unsubscribe from this group and stop receiving emails from it, send an email
to [email protected].
To post to this group, send email to [email protected].
To view this discussion on the web visit
https://groups.google.com/d/msgid/qubes-devel/44412ba2-f892-b149-9432-acba019909dc%40gmx.com.
For more options, visit https://groups.google.com/d/optout.
