Re: [qubes-users] AMD? threadripper / ryzen?
On Monday, April 30, 2018 at 8:13:55 PM UTC-7, tai...@gmx.com wrote: > I would get a KCMA-D8 ($315) or KGPE-D16 ($415) they check all your > boxes and more - they are what all the experts use, leah rowe from > libreboot paid for them to be ported to coreboot-libre a few years ago. > D16 max 192GB RAM with 32 cores, and it also has OpenBMC support, two > separate usb controllers (btw you need breakout cables for second > controller/more ports) etc. thanks. it was hard to wade through AMDs docs on this. but it uses ddr3 ram. do you know if these are subject to rowhammer (bit flipping) attacks? is this the hardware you use? didnt think to mention it because all modern hardware uses ddr4. > I would get a unicomp keyboard with trackpad, as then you have input > devices where the firmware can't be internally flashed like most > keyboards can. how hard is it to maliciously flash a mouse or keyboard? my concern was other malicious devices being plugged in when im not looking. or other devices, like someone elses thumb drive etc. stuff i dont want touching dom0. > > and before anyone suggests it, no, im not porting xen to talon. > *Talos 2 > It seems you have read my other posts? in that case why do you ask? I > have already answered all these questions many times. the subject of porting qubes to talos comes up often in these threads. if anything, arm is probably more viable. its cheaper in both cost and power usage, and more versatile. arm laptops are finally being pushed by microsoft. they'll probably lock these to windows, but it means other vendors can take advantage of the manufacturing scale to make cheap open hardware. > I am pleased you are smart enough to avoid the fraudulent companies out > there. i think of it more as conflicting interests. spewing bs about it even though ITL and google keep calling them out on this is still better for their bottom line than disabling or open sourcing. why? we may never know. but if they're not going to tell us, then they deserve all the speculation they get :) cant wait till technology progresses to the point where we can just print out our own hardware. of course, then we have to trust the printer. trusting trust and countering not trusting trust? theres a riddle in there somewhere https://www.schneier.com/blog/archives/2006/01/countering_trus.html -- You received this message because you are subscribed to the Google Groups "qubes-users" group. To unsubscribe from this group and stop receiving emails from it, send an email to qubes-users+unsubscr...@googlegroups.com. To post to this group, send email to qubes-users@googlegroups.com. To view this discussion on the web visit https://groups.google.com/d/msgid/qubes-users/09fd717c-9642-4026-b445-add31743e790%40googlegroups.com. For more options, visit https://groups.google.com/d/optout.
Re: [qubes-users] AMD? threadripper / ryzen?
On 04/30/2018 08:09 PM, pixel fairy wrote: > ready to ditch intel on desktop (and maybe laptop if anyone has a good > recommendation) > > my understanding is that some amd lines dont have PSP or any such equivalent > to intelME or AMT. The older stuff like socket g34 and c32. > about to jump down the rabbit hole of figuring this out. > > has anyone tried ryzen or threadripper? They have PSP - impossible to disable it just like ME. > is there another line worth looking at? > > what im looking for, > > * no psp, ME, amt etc > * no speculative execution vulnerabilities (at least no known ones) You gotta install the latest microcode updates anyways it seems so a 43xx/63xx CPU is what to get with the boards I mentioned. > * at least 32gigs of ram (yes, i actually use that) > * at least 8 cores or threads. > * ps2 mouse/keyboard or more than 1 usb bus. I would get a KCMA-D8 ($315) or KGPE-D16 ($415) they check all your boxes and more - they are what all the experts use, leah rowe from libreboot paid for them to be ported to coreboot-libre a few years ago. D16 max 192GB RAM with 32 cores, and it also has OpenBMC support, two separate usb controllers (btw you need breakout cables for second controller/more ports) etc. The PS/2 security idea thing is from idiots who have no idea what they are doing, using PS2 sends all your keystrokes out on the ground wire as I have mentioned previously. I would get a unicomp keyboard with trackpad, as then you have input devices where the firmware can't be internally flashed like most keyboards can. > gpu support for tensorflow would be nice, but will probably make a second, > dedicated box when that time comes. > > free bios support (coreboot, libreboot etc) would be nice too. > > and before anyone suggests it, no, im not porting xen to talon. *Talos 2 It seems you have read my other posts? in that case why do you ask? I have already answered all these questions many times. > a laptop like the above would be awsome if its light and has good battery > life, but thats not something im going to hold my breath for. The G505s has 4 cores and 16GB RAM, the FT3 platform is the last and best x86_64 laptop platform without PSP/ME that supports IOMMU, open init for ram/cpu etc. There are a few FT3 coreboot laptops but this is the best supported/most popular. I am pleased you are smart enough to avoid the fraudulent companies out there. -- You received this message because you are subscribed to the Google Groups "qubes-users" group. To unsubscribe from this group and stop receiving emails from it, send an email to qubes-users+unsubscr...@googlegroups.com. To post to this group, send email to qubes-users@googlegroups.com. To view this discussion on the web visit https://groups.google.com/d/msgid/qubes-users/ae81b3cc-b94b-de6d-ecf2-a204ecdbe80c%40gmx.com. For more options, visit https://groups.google.com/d/optout. 0xDF372A17.asc Description: application/pgp-keys
[qubes-users] AMD? threadripper / ryzen?
ready to ditch intel on desktop (and maybe laptop if anyone has a good recommendation) my understanding is that some amd lines dont have PSP or any such equivalent to intelME or AMT. about to jump down the rabbit hole of figuring this out. has anyone tried ryzen or threadripper? is there another line worth looking at? what im looking for, * no psp, ME, amt etc * no speculative execution vulnerabilities (at least no known ones) * at least 32gigs of ram (yes, i actually use that) * at least 8 cores or threads. * ps2 mouse/keyboard or more than 1 usb bus. gpu support for tensorflow would be nice, but will probably make a second, dedicated box when that time comes. free bios support (coreboot, libreboot etc) would be nice too. and before anyone suggests it, no, im not porting xen to talon. a laptop like the above would be awsome if its light and has good battery life, but thats not something im going to hold my breath for. -- You received this message because you are subscribed to the Google Groups "qubes-users" group. To unsubscribe from this group and stop receiving emails from it, send an email to qubes-users+unsubscr...@googlegroups.com. To post to this group, send email to qubes-users@googlegroups.com. To view this discussion on the web visit https://groups.google.com/d/msgid/qubes-users/31b8ee2d-393b-4e5c-a9ab-6788002432f7%40googlegroups.com. For more options, visit https://groups.google.com/d/optout.
