[qubes-users] Re: Qubes with newer hardware and error messages still safe enough?
Thx all! For my purpose i am satisfied. Struggling now with VPN installation... > Nice setup. I have an 2950x under the tree waiting for qubes for my kiddo. :-) Next year i give a try and update my CPU and Bios with AMD Ryzen 3000 Series and much more cores. -- You received this message because you are subscribed to the Google Groups "qubes-users" group. To unsubscribe from this group and stop receiving emails from it, send an email to qubes-users+unsubscr...@googlegroups.com. To post to this group, send email to qubes-users@googlegroups.com. To view this discussion on the web visit https://groups.google.com/d/msgid/qubes-users/10292cf2-61a5-46ef-abb7-107e3d67a459%40googlegroups.com. For more options, visit https://groups.google.com/d/optout.
[qubes-users] Re: Qubes with newer hardware and error messages still safe enough?
Nice setup. I have an 2950x under the tree waiting for qubes for my kiddo. TPM is only used for the Anti-Evil Maid feature. You can read up on it and if your threat model includes such an attack or not. Tip, the deal breaker decision: you loose sys-usb, USB isolation, if you enable AEM because it has to be attached to dom0. (Well, last I used it with R3.2 that was). My personal threat model are random USB sticks I use in various work a double client computers. So I'd rather have the USB isolation than AEM, IMO. But each person should review their own threat models. That's why we love qubes. Tai's valid concerns is that AMD has implemented a remote system monitoring and maintenance utility that remote sys admins use to manage the system, same as Intel ME (now called vPro I think that had wider and wireless adoption). Intel's ME can be neutered to still pass TLS validation given the right hardware (or like me, disable the NIC port and change the vPro wireless device from 9265 to a non-vPro 9260). However, there is no such disabling for AMD - mostly because no one has tried. And no, disabling it in your bios does not turn it off. -- You received this message because you are subscribed to the Google Groups "qubes-users" group. To unsubscribe from this group and stop receiving emails from it, send an email to qubes-users+unsubscr...@googlegroups.com. To post to this group, send email to qubes-users@googlegroups.com. To view this discussion on the web visit https://groups.google.com/d/msgid/qubes-users/67a8430f-067f-41fe-9e1d-ea1732406205%40googlegroups.com. For more options, visit https://groups.google.com/d/optout.
[qubes-users] Re: Qubes with newer hardware and error messages still safe enough?
Hi. thx for your answers!! @ Sphere result hvm:'yes' iommu:'yes' slat:'yes' tpm:'unknown' remap:'yes' it seems everything works fine. thank you very much for the link. i will report the results to qubes-users email @ Tseng Wynn after update kernel-latest it didn#t boot correctly. i tried it already a few weeks ago and had to install qubes from the scratch. @ Taiidan thx. interesting. do you have some keywords for the search to get more infos? -- ps i have an ASRock TPM Modul (TPM2-S). would it be a good idea to install on mainboard? i am a little cautious as its running now. -- You received this message because you are subscribed to the Google Groups "qubes-users" group. To unsubscribe from this group and stop receiving emails from it, send an email to qubes-users+unsubscr...@googlegroups.com. To post to this group, send email to qubes-users@googlegroups.com. To view this discussion on the web visit https://groups.google.com/d/msgid/qubes-users/a576ad06-44af-403b-8093-900098d96c5c%40googlegroups.com. For more options, visit https://groups.google.com/d/optout.
[qubes-users] Re: Qubes with newer hardware and error messages still safe enough?
stefanne...@gmail.com於 2018年12月13日星期四 UTC+8上午4時56分35秒寫道: > New to Qubes with basic Linux knowledge i installed successfully a desktop > system with follwing configuration: > > Qubes 4.0, CPU Ryzen 5 2400G, MB ASRock B450 Pro4, GPU Radeon R7 370, 32 GB > RAM > > I can update templates and install appvms without issues. Everything works. > > My question is now: On Boot screen i get some error messages (see following > screen). Possibly there is a lack of safety i can not estimate. Everything > works but under the surface i did not know if it is as safe as it should be. > Are there some basic tests which should be made? Or is it enough when the > system works? Try installing kernel-latest and kernel-latest-qubes-vm on dom0 to see if the error messages disappeared? -- You received this message because you are subscribed to the Google Groups "qubes-users" group. To unsubscribe from this group and stop receiving emails from it, send an email to qubes-users+unsubscr...@googlegroups.com. To post to this group, send email to qubes-users@googlegroups.com. To view this discussion on the web visit https://groups.google.com/d/msgid/qubes-users/a5d40a4b-49be-4ea9-b490-f44f8f77%40googlegroups.com. For more options, visit https://groups.google.com/d/optout.
