-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 On 2017-01-03 13:01, 'James Funkhauser' via qubes-users wrote: > I would like to start saving up for a desktop that will run 4.0 out > of the box. Price isn't really an issue; what's important is that I > have a computer that meets all the standards necessary for running > 4.0. I have looked at the HCL list, but none of the machines have > been tested with 4.0 (which I understand, given that it is still in > alpha). Would it be sufficient to just get a machine with one of the > processors listed in the ark.intel link on your site's "Minimum > requirements for 4.x" page? Or could I even just replace my current > processor with one of those listed there? > > Otherwise, if anyone can point me toward a machine (or better yet, a > few different machines) that will meet all the necessary > requirements, run the OS with sufficient hardware isolation, etc., I > would be most grateful. Thanks in advance for your time.
There are a few different levels of compatibility. The highest is Qubes-certified hardware. Unfortunately, I'm not aware of any machines that meet all the certification requirements for Qubes 4.x.[1] But this shouldn't be too surprising, given that those requirements are exceptionally stringent and intentionally aspirational. The second level is the recommended requirements.[2] The fast SSD and Intel IGP requirements are mainly about convenience and compatibility (e.g., avoiding the troubleshooting hassles of discrete graphics cards). A TPM is required for AEM, but if you don't plan on using AEM, then it's not necessary. A non-USB keyboard or multiple USB controllers is required if you wish to have a dedicated USB qube and to use it safely, since otherwise it would control your keyboard (and either your keyboard controls dom0, or you don't control dom0). The lowest bar is the minimal requirements.[2] Even the minimal requirements for 4.x are quite secure, since they now include VT-d and VT-x (which weren't minimally required in previous Qubes releases). VT-d is required for isolating devices (e.g., networking, USB),[3] and VT-x is required for running certain kinds of VMs (e.g., Windows).[4] This should be relatively easy to achieve, but you have to attend to more than just the CPU's properties. For example, it's not enough that the CPU alone supports VT-d. The motherboard has to support it also. [1] https://www.qubes-os.org/news/2016/07/21/new-hw-certification-for-q4/ [2] https://www.qubes-os.org/doc/system-requirements/#qubes-release-4x [3] https://www.qubes-os.org/doc/user-faq/#can-i-install-qubes-on-a-system-without-vt-d [4] https://www.qubes-os.org/doc/user-faq/#can-i-install-qubes-on-a-system-without-vt-x - -- Andrew David Wong (Axon) Community Manager, Qubes OS https://www.qubes-os.org -----BEGIN PGP SIGNATURE----- iQIcBAEBCgAGBQJYbBZAAAoJENtN07w5UDAwqCcP/2A1mBh+EuUzNJYyF30xmj6D 5Kbt18QBw3jXf1wD9qJQtaio2eEgoskeMPU7eWvHbrr1/xFIe974oXda25ZmDj0T lCrVBtCuomnZH82A+lA7ckVH/i4K4X1Wf73KNENFhpYd62i95HwZNSuQgU9MpsB3 makuaAg9mfmnlxrsz0k9rK2XQERaeZlToq1vvW1os85O9H6XQxOYYR9cOvg0EqdJ VScVcPVuUCqQtElNuwAIiNKKGqS0kijuCA53HbhvnST8HGy83cdz2T9Ag0wyPB8L y/2KxEBVlPGwEFIeMfYSNfVZF97ZKmOSMFGVD5rQO+A4pHBpBgvzV3/aM1+OH4BE iIR/ecudmGMvoRQVQ9aA7reQO5qSU4oeVgMOTuMs81VNHMzIeCap9G5GUSU6Lshk UPM9Y8gGAXlno5pYEoBPz94A1d3j/op0vtI+huSlV8KMbepHU84z8fz9xgh2zRkc /EsNkHwjqfs8dZ+GAiG6xeuVaOmlhib6YR+75/0zIJ/bZklH+VWK3K5z59M3uoCb AuXHf72uuRWVaGJa3l+ShrHiCAotcQVeop1c9OYPPbo3TWcJXbs0A9NNmXfWGd3I 1cnzxISw6PoDQcGpH4Tmdb9jPujfT4EybLkUGZ0Xgtbb17Y3qvE4RWoE1aHy0j+0 5KUVQgEh/ZwZBW9IZGN+ =m5/i -----END PGP SIGNATURE----- -- You received this message because you are subscribed to the Google Groups "qubes-users" group. To unsubscribe from this group and stop receiving emails from it, send an email to qubes-users+unsubscr...@googlegroups.com. To post to this group, send email to qubes-users@googlegroups.com. To view this discussion on the web visit https://groups.google.com/d/msgid/qubes-users/55e1d319-12ba-977f-3901-bcaa34179d3f%40qubes-os.org. For more options, visit https://groups.google.com/d/optout.
