Most likely it does not require to risk burning a billion-dollar-iME-backdoor to screw you… if anyone is that interested. Which I doubt.
Bro idk if you was trynna be funny with that one but I’m dead LOL
Why are we talking about me so much anyway? It’s YOUR pc, it’s YOUR data they’re gonna be looking at, potentially against your will, and it’s YOUR freedom that will be infringed. I don’t wanna tell you what to do… at this point I’m only still here because you seem to underestimate the technology and I wanna at least make sure you’re not deluding yourself on purpose… in which case I would have to insist some more that you snap out of it.
I love how you call my conclusions amateurish but you don’t seem to know much more than I do about the nitty gritty details of this thing, or am I wrong? At least I have conclusions. Perhaps it’s the wrong conclusion (and I hope to god it is), but it’s the only one I’ve been able to come up with. Your conclusion is just “idk and idc”, which would be completely understandable if it weren’t for the fact that you’re using Qubes. Qubes didn’t just run into you! You found Qubes because you were looking for something. That’s why I can’t accept that you just don’t care about your privacy.
I think the point you were trying to make about the vacuum and the community is that anyone around me can come get me at any time, is that correct? If so then yes, at least for now that’s all I have to worry about. Physical assailants and zero-day exploits. That’s how it has always been, those have always been the two things you can’t defend against. But now in the era of IME/PSP, the glowies can do with the click of a single button what may at one time have required a dedicated surveillance operation, and YOU are subsidizing that commodity for them and against you. NOW do you see the problem or do I gotta go buy more stims?
Nope, unlike you my “idc”'s are based on obvious quantitative estimations based on current data, and you are spreading unfounded FUD. If you think that if we assume iME backdoor to exist it is a matter of “single button” or could be done unnoticed on broad target sweep, it is you deluding yourself. Give a second thought. Do lower and upper bound estimations. Just stop panicking and start thinking. When you start evaluating the “adversary economics” in numbers instead of assuming that evil guys have unlimited capabilities you can see much more clearly. Yet it is completely offtopic here, let’s move to another thread.
You have plenty of cases to learn on: Snowden, Pegasus, 0day brokers, operation manuals for known government spyware – how different agencies and different countries handle it. Do your homework.
I didn’t read the entire thread after this, but I just want to point out that old hardware that no longer receives microcode updates will be exposed to known vulnerabilities like QSB-081. So, it’s not as though the trade-off is just between old hardware without ME and new hardware with better performance.
I have exactly this setup all working perfectly well. The only difference is that my are Kingston FURY Renegade instead. I even managed to get the 4090 graphics card working with passthrough.
Are you using this setup as a server, since our motherboard (Z690-A)as many server capabilities?
We also have several GPUs at work like the NVIDIA TITAN V, RX 7900 XTX, 4090 etc… But I never tried to run Qubes Os with those graphics card! From a personal perspective, I don’t have the need to put an external GPU on that setup.
The VM takes about 3 minutes to boot. But othen than that, it feels near native. I haven’t done much testing, though. Intensive graphics workloads seem to run fine as well.
I had the exact question a few weeks ago. I settled on the Tuxedo Infinitybook 14 pro. It does not come cheap but includes a intel 12th gen CPU with 6 performance cores, 8 efficiency cores, up to 64GB of ram and an optional 3050. My first impression is VERY good, as Tuxedo laptops are literally built for linux.
It could be that Xen’s dynamically shifting your VM’s vcpus to a E-core. See this thread for optimization of 12/13th gen core processors.
Also, please provide some more information about 11th gen that your are referencing. For example, was it i9-11900K, or i5-1135G7? That does make a difference.
Indeed, great machines. These are mostly Clevo based. Quote from an older forum post: “Nearly every new Linux laptop (which isn’t a rebadged Lenovo, Dell or HP) is made by Clevo. System76 (Colorado), ZaReason (California), Station X (UK), Entroware (UK), ThinkPenguin (New Hampshire), Slimbook (Spain), VantPC (Spain) and Tuxedo Computers (Germany) all use Clevo base models. The companies that make their own Linux laptops are Purism (California), PINE64 (China/California), Star Labs (UK) and Dell (US).” NovaCustom is missing from that list. Using Coreboot is a good start. Tuxedo InfinityBook S15 Gen6 has Coreboot (atm might be the only Coreboot laptop from Tuxedo).
Right now high end Linux laptops use up to 96 GB RAM. Thinkpads had already four-five years ago up to 128 GB RAM. But it’s good to see those Linux machines are getting better (ten years ago the landscape looked completely different in this respect).
)
Will keep you guys informed.