Groups | Search | Server Info | Keyboard shortcuts | Login | Register
| From | Arne Babenhauserheide <arne_bab@web.de> |
|---|---|
| Newsgroups | gnu.hurd.help |
| Subject | Re: Combining Hurd and Qubes OS for security reasons? Possible? |
| Date | 2015-12-23 09:20 +0100 |
| Message-ID | <mailman.431.1450858855.843.help-hurd@gnu.org> (permalink) |
| References | <CAB=Lj3T9dABDCnfiPFmui45WdZSVvpGs6rMX=PBVR6O94Es-Ug@mail.gmail.com> <CAB=Lj3T9C+fMQm=dLy6OV2zwBE2DpX61+9KV6QCveRjiSABMOQ@mail.gmail.com> <20151222173416.GA13375@shattrath> |
[Multipart message — attachments visible in raw view] - view raw
Am Dienstag, 22. Dezember 2015, 18:34:16 schrieb Richard Braun: > On Tue, Dec 22, 2015 at 06:05:07PM +0100, David Renz wrote: > > Unless one would be using an open-hardware/openBIOS based system, I don't > … > Not being able to easily update firmwares isn't acceptable nowadays. > Having code running on the hardware is actually perfectly acceptable, > as long as you are aware and accept that these are small systems of > their own. Taking out all the details in-between it sounds like you pretty much agree (at least on the big picture). If the code on the hardware is a small system of its own, then it should be free software, which means it would run openBIOS. > In the case of ACPI though, I'm not sure whether IOMMUs actually > enforce access verification in system management mode, but if it > does, a properly implemented multi-server system with IOMMU > hardware should be able to provide a high level of security > despite those shortcomings. So you mean that with the Hurd it might be possible to get a trusted system despite having some unfree components? Best wishes, Arne
Back to gnu.hurd.help | Previous | Next | Find similar
Re: Combining Hurd and Qubes OS for security reasons? Possible? Arne Babenhauserheide <arne_bab@web.de> - 2015-12-23 09:20 +0100
csiph-web