Re: [qubes-users] Qubes 4.0 on high(er) end workstations?
Hi!:) Thanks for the information. Do you have irс? Because of stupid mails, you have to write here with thousands of different accounts, I think it would be more convenient to communicate there. I have been using Qubes on laptops for three years and apart from creating firmware, nothing can be done about it. Decided to collect a workstation on your advice (x220, coreboot/heads) I want to use virtualization at full capacity Advise the video card? Is it RX580? I just bought : 2x CPU AMD-OPTERON-16-Core-6276 ~80 bucks :)) ASUS KGPE-D16 - 170 bucks will she make noise at home? I have a passive cooling of the house, radiators - is it good idea? Is it hard to attach a video card to hvm? I am installing it myself at home, I work in a data center, and for example I was surprised when I found out that the motherboard Supermicro has the same spi chipsets (winbond, micron, macronix) how much memory is needed for the first time? 32-64gb? Fucking IBM (Power9) is too expensive. last hope is ASUS KGPE-D16. Thanks :)) -- You received this message because you are subscribed to the Google Groups "qubes-users" group. To unsubscribe from this group and stop receiving emails from it, send an email to qubes-users+unsubscr...@googlegroups.com. To post to this group, send email to qubes-users@googlegroups.com. To view this discussion on the web visit https://groups.google.com/d/msgid/qubes-users/09824e80-8c0a-4b58-8d1f-f2b729b92e52%40googlegroups.com. For more options, visit https://groups.google.com/d/optout.
Re: [qubes-users] Qubes 4.0 on high(er) end workstations?
I have many posts on this but since you have an .edu and made a long post yourself here are two great options. You wanna assemble stuff yourself which is pretty easy - I did my first at age 12 and it worked on the first power on. Libre motherboards that work with qubes 4: * KCMA-D8 (90 used on fleabay from china) and one or two 8 core socket C32 4386 opteron CPU's plus ECC RDIMM RAM in 8GB sticks (for 64 total) or 16gb (for 128 total) * KGPE-D16 ($130 on fleabay brand new) and one or two 16 core 6386 CPU's or 8 core 6328 CPU's (60 on fleabay brand new) which supports up to 192GB RAM. Since they support libre firmware it doesn't matter that you are getting used hardware although I believe newegg still has the KGPE-D16 if you must have new hardware. Both support Crossfire xDMA and IOMMU-GFX for gaming or cad in a VM, all the devices have their own IOMMU groups and it supports ACS. The D8 and D16 are the last and best owner controlled x86 motherboards and they support coreboot-libre or libreboot, and also OpenBMC for secure libre remote access with the ASMB4 or ASMB5 chip - it comes with the new in box KGPE-D16 but they also crop up time to time on fleabay for a few bucks. I would say that TPM's/AEM is a not needed if you implement kernel/initramfs code signing in grub as a coreboot payload, set the write lock bit on the flash chip and then put a lock on your case but if you still want a TPM it has a header for a v1.2 device make sure to buy a supported model. Other options are the Raptor Computing Systems Libre Firmware OpenPOWER systems such as the TALOS 2 and the more affordable Blackbird which are the future of owner controlled computing[1] although currently qubes/xen doesn't have a POWER port so you would have to use POWER-KVM which arguably is better security wise than xen+black boxed x86 junk and again is the future not a dead platform. I am an expert on this topic, let me know if you need any help and if you think my advice is patron-grade. [1]x86 is dead freedomwise, both AMD and intel have a variety of anti-features that make you just a licensee not an owner - OpenPOWER is the only owner controlled performance CPU arch luckily it is now more affordable than equivilant x86 performance enterprise hardware and you get more features+freedom :D It is impossible to disable ME/PSP or make libre firmware for a new gen x86 system. -- You received this message because you are subscribed to the Google Groups "qubes-users" group. To unsubscribe from this group and stop receiving emails from it, send an email to qubes-users+unsubscr...@googlegroups.com. To post to this group, send email to qubes-users@googlegroups.com. To view this discussion on the web visit https://groups.google.com/d/msgid/qubes-users/febf11d7-74fe-63fc-142a-02f3ae7009a7%40gmx.com. For more options, visit https://groups.google.com/d/optout.
[qubes-users] Qubes 4.0 on high(er) end workstations?
I had attempted to upgrade my HP machine at home to R4.0 a while back and ran into a VT-d related message about reassignable interrupts not being found, yet I do have the VT-d enabled in bios. I never had any indication while running R3.2, or before, that there was any issue with the VT-d functionality. No bios upgrades are available from the manufacture and I can't really afford to be without a functional machine should I need to spend time trying work out why, or to force an upgrade. Since support for R3.2 will at some point be deprecated, I thought I should start doing some investigation for some new hardware while I have a chance and before I am pressured to move forward. If I stand up a new machine I will be better able to investigate any issues on the older machine later. The selection of laptops looks good on the HCL, and there has been quite a bit of discussion on various options. But it would appear that there are very few Desktop machines on the Qubes 4.0 HCL list have been fully tested and are green all the way across. In fact the one machine that is green all the way across for R4.0 just happens to be my own HCL report, for my work desktop system. Even then its difficult to compare the relative computational power that each entry has without searching for each machines specs, one by one. The CPU identifier, if specified, might give a relative ranking, thought the number or cores, ram, Ghz, and disks are notably absent thus it hard to rank them. Since my old and outdated Dell Optiplex 990 seems to be the only game in town, I'm therefore stuck looking at the Dell Optiplex 7050, but then I don't have any particular loyalty to Dell. I don't mind building a system from scratch using a good motherboard, if I had to, but it seems the motherboards listed on the HCL are even less well tested for R4.0 than the desktop systems are. Not a single board on that list is even running R4.0! So, I figured I should just ask here, What high end R4.0 systems work for you? What Desktop systems are fairly high end (Cores, GB's DRAM, ample disk storage bays, multiple monitors) that are working well under R4.0? Are there *any* systems with a tested TPM setup capable of the Anti-Evil-Maid configuration that have not yet made it onto the HCL? Or is it only laptops that are doing this? I could force a laptop work if it is both dockable and can come with enough Dram/Disk space, but then I would never undock it, and thus I would be paying big $$$ for something I'm not even planning to use it for. Oh, if there is something running good out there, and it passes all the tests under R4.0, please consider helping to update the HCL with R4.0 machines that actually work! Its always nice to know which ones to avoid, but knowing what works is a much better way to go. Thank you for your consideration. Steve. -- You received this message because you are subscribed to the Google Groups "qubes-users" group. To unsubscribe from this group and stop receiving emails from it, send an email to qubes-users+unsubscr...@googlegroups.com. To post to this group, send email to qubes-users@googlegroups.com. To view this discussion on the web visit https://groups.google.com/d/msgid/qubes-users/8f8fcf40-1024-61ec-d63d-43f068d511d7%40jhuapl.edu. For more options, visit https://groups.google.com/d/optout.
