Why isnât the fact that it even exists evidence enough for youâŠ? Why do you need me to show you the bad when there is already a distinct lack of good?
Here letâs take a step back and make sure weâre even talking about the same thing. As far as Iâm aware, IMEâŠ
âŠis a little system-on-a-chip type situation that lives entirely inside your CPU, that
âŠknows everything you type, everything you see, everything you hear, everything you say
âŠcan directly tap into your RAM, your VRAM, your network traffic
âŠeven has functionality to extract encryption keys from stuff you are actively de/encrypting,
âŠand then send it all back to whoever remotely activated the system, and to put a cherry on top
âŠit is able to do all of this when your computer is turned off.
It probably took them millions of dollars to develop this mf⊠and then they want to tell us itâs all for the sake of tech support and easing remote system administration or some crap like that? Bro TEAMSPEAK LOL. How can you defend this? How can you see this as anything but a state-level troll and a vile attempt to usurp freedom and privacy away from the people of the internet?
And no I didnât know about TAO till I bravesearchâd it just now⊠alright so do YOU know how their principles and decisions are made? So you work for them or something? Do you glow in the dark by chance? Must be nice if so.
Iâve seen that comic before LOL, letâs talk about digital vs. physical security. The manâs data in the comic had medium digital security but poor physical security. What if you have high digital AND physical security measures in place, except that your system has IME/PSP? Everything else you did goes out the window, just because you wanted a higher FPS in roblox or whenever eBay finally runs out of pre-IME legacy parts. Why do you want to put up with that giant achilles heel on hardware that YOU paid forâŠ?
It is not about âphysicalâ security. It is about adequate threat models. You better focus on OPSEC and⊠do you live in vacuum? Do you communicate within a closed community of think-alike individuals who follow the same rules? Did you personally screen every person there? Most likely it does not require to risk burning a billion-dollar-iME-backdoor to screw you⊠if anyone is that interested. Which I doubt. So get some peace of mind, relax and let other people buy a more powerful computer if they want to. Why donât you buy a cluster of physically separated rPiâs then? It would be more secure than Qubes, if you think the security is above all and usability does not matter.
Also you need to take time to understand how things work (both how iME works and how your adversary operates) before jumping into amateurish (emotional, unbalanced, costly and ineffective) conclusions about what is best to protect yourself. Way before you start to dictate them to others as a universal truth.
Most likely it does not require to risk burning a billion-dollar-iME-backdoor to screw you⊠if anyone is that interested. Which I doubt.
Bro idk if you was trynna be funny with that one but Iâm dead LOL
Why are we talking about me so much anyway? Itâs YOUR pc, itâs YOUR data theyâre gonna be looking at, potentially against your will, and itâs YOUR freedom that will be infringed. I donât wanna tell you what to do⊠at this point Iâm only still here because you seem to underestimate the technology and I wanna at least make sure youâre not deluding yourself on purpose⊠in which case I would have to insist some more that you snap out of it.
I love how you call my conclusions amateurish but you donât seem to know much more than I do about the nitty gritty details of this thing, or am I wrong? At least I have conclusions. Perhaps itâs the wrong conclusion (and I hope to god it is), but itâs the only one Iâve been able to come up with. Your conclusion is just âidk and idcâ, which would be completely understandable if it werenât for the fact that youâre using Qubes. Qubes didnât just run into you! You found Qubes because you were looking for something. Thatâs why I canât accept that you just donât care about your privacy.
I think the point you were trying to make about the vacuum and the community is that anyone around me can come get me at any time, is that correct? If so then yes, at least for now thatâs all I have to worry about. Physical assailants and zero-day exploits. Thatâs how it has always been, those have always been the two things you canât defend against. But now in the era of IME/PSP, the glowies can do with the click of a single button what may at one time have required a dedicated surveillance operation, and YOU are subsidizing that commodity for them and against you. NOW do you see the problem or do I gotta go buy more stims?
Nope, unlike you my âidcâ's are based on obvious quantitative estimations based on current data, and you are spreading unfounded FUD. If you think that if we assume iME backdoor to exist it is a matter of âsingle buttonâ or could be done unnoticed on broad target sweep, it is you deluding yourself. Give a second thought. Do lower and upper bound estimations. Just stop panicking and start thinking. When you start evaluating the âadversary economicsâ in numbers instead of assuming that evil guys have unlimited capabilities you can see much more clearly. Yet it is completely offtopic here, letâs move to another thread.
You have plenty of cases to learn on: Snowden, Pegasus, 0day brokers, operation manuals for known government spyware â how different agencies and different countries handle it. Do your homework.
I didnât read the entire thread after this, but I just want to point out that old hardware that no longer receives microcode updates will be exposed to known vulnerabilities like QSB-081. So, itâs not as though the trade-off is just between old hardware without ME and new hardware with better performance.
I have exactly this setup all working perfectly well. The only difference is that my are Kingston FURY Renegade instead. I even managed to get the 4090 graphics card working with passthrough.
Are you using this setup as a server, since our motherboard (Z690-A)as many server capabilities?
We also have several GPUs at work like the NVIDIA TITAN V, RX 7900 XTX, 4090 etc⊠But I never tried to run Qubes Os with those graphics card! From a personal perspective, I donât have the need to put an external GPU on that setup.
The VM takes about 3 minutes to boot. But othen than that, it feels near native. I havenât done much testing, though. Intensive graphics workloads seem to run fine as well.
I had the exact question a few weeks ago. I settled on the Tuxedo Infinitybook 14 pro. It does not come cheap but includes a intel 12th gen CPU with 6 performance cores, 8 efficiency cores, up to 64GB of ram and an optional 3050. My first impression is VERY good, as Tuxedo laptops are literally built for linux.
It could be that Xenâs dynamically shifting your VMâs vcpus to a E-core. See this thread for optimization of 12/13th gen core processors.
Also, please provide some more information about 11th gen that your are referencing. For example, was it i9-11900K, or i5-1135G7? That does make a difference.