Re: [qubes-users] WHERE is VT-D implemented..?
WHERE is VT-D implemented..? Intel VT-d is a hardware virtualization feature and it is implemented in hardware. Xen uses Intel VT-d. Xen does not call it Intel VT-d, instead Xen uses the more general term IOMMU (I/O MMU). For the rest look at Zrubi's answer. -- You received this message because you are subscribed to the Google Groups "qubes-users" group. To unsubscribe from this group and stop receiving emails from it, send an email to qubes-users+unsubscr...@googlegroups.com. To post to this group, send email to qubes-users@googlegroups.com. To view this discussion on the web visit https://groups.google.com/d/msgid/qubes-users/92ad550b-27cc-49ea-bb1f-269dd2756c57%40googlegroups.com. For more options, visit https://groups.google.com/d/optout.
Re: [qubes-users] WHERE is VT-D implemented..?
On 09/20/2016 02:44 AM, neilhard...@gmail.com wrote: > WHERE is VT-D protection against DMA attacks implemented..? VT-D is implemented in Xen and it is actually protecting PCI passtrough feature: https://wiki.xen.org/wiki/Xen_PCI_Passthrough Because Qubes using Xen, all the VM's are protected against DMA attacks, however most of the VM's are not even affected by DMA attacks, only the ones having PCI device assigned. (sys-net and sys-usb by default) -- Zrubi -- You received this message because you are subscribed to the Google Groups "qubes-users" group. To unsubscribe from this group and stop receiving emails from it, send an email to qubes-users+unsubscr...@googlegroups.com. To post to this group, send email to qubes-users@googlegroups.com. To view this discussion on the web visit https://groups.google.com/d/msgid/qubes-users/6dacb497-f561-c5bd-3801-b0f22378a8c7%40zrubi.hu. For more options, visit https://groups.google.com/d/optout.
[qubes-users] WHERE is VT-D implemented..?
Quick question. WHERE is VT-D protection against DMA attacks implemented..? Is it implemented at a particular VM, such as "sys-net" or "sys-firewall" Or is this just built-in to the entire Qubes system regardless of which VM you are using..? If I were to run something like wget google.com within "sys-net" terminal Would that be protected by VT-D..? Thanks -- You received this message because you are subscribed to the Google Groups "qubes-users" group. To unsubscribe from this group and stop receiving emails from it, send an email to qubes-users+unsubscr...@googlegroups.com. To post to this group, send email to qubes-users@googlegroups.com. To view this discussion on the web visit https://groups.google.com/d/msgid/qubes-users/28354a3a-a7bc-4d91-8d21-76f4201f30e2%40googlegroups.com. For more options, visit https://groups.google.com/d/optout.