| General > General Technical Chat |
| Goodbye Windows, Hello Linux [advice needed for a Linux workstation at home] |
| << < (42/46) > >> |
| bd139:
Worth reading this on virtualization as well at a lower level: https://en.wikipedia.org/wiki/Popek_and_Goldberg_virtualization_requirements |
| eugenenine:
--- Quote from: RoGeorge on January 17, 2019, 03:24:47 pm ---1. Which one would you choose as a home desktop? --- End quote --- Slackware --- Quote from: RoGeorge on January 17, 2019, 03:24:47 pm ---3. I don't like to reinstall too often, yet I want the latest gimmicks, too. Which one to pick for the long run --- End quote --- Slackware |
| technix:
--- Quote from: RoGeorge on January 29, 2019, 10:55:32 am ---Indeed, some of the recent CPUs doesn't have virtualization. As an example, my former i3 doesn't have it: https://ark.intel.com/products/77488/Intel-Core-i3-4160-Processor-3M-Cache-3-60-GHz- That i3 is not so old, it was launched in 2014 and discontinued in 2017. During the same period of time, and with the same socket, its biggest brother i7 have VT-d/VT-x capabilities. --- End quote --- I think you can find used Xeon E3-1230v3 and Xeon E3-1231v3 out there. Those chips will work on most motherboards that supports your i3-4160 and support VT-x. That was a popular chip for upper mainstream builds in 2014-2015, being almost equivalent to i7-4790 non-K but costs just slightly above i5-4690K. You will need a graphics card though since that Xeon chip does not have integrated graphics, but as of now used RX 480, RX 580 and GTX 1060 6GB card are fairly cheap, since cryptocurrency miners are dumping them after the cryptocurrency crash. |
| RoGeorge:
I found there is a running service called Firmware Update (fwupd) on my Ubuntu10.18. Fedora should have fwupd, too, but didn't checked. (https://en.wikipedia.org/wiki/Fwupd) If I understood it right , this service seems exactly the kind of thing that I don't like, don't need, and don't want. Updating firmware online is the last thing I wish to be possible from the OS level. Even worst, some updates are NOT DIGITALLY SIGNED, and NOT VERIFIABLE. Just a random example (for my Logitech wireless mouse): https://fwupd.org/lvfs/device/cc4cbfa9-bf9d-540b-b92b-172ce31013c1 That LVFS web page states clearly that there is NO security and NO possibility to check the firmware for that wireless receiver. This is what the Security section for that mouse firmware update is saying: - Added to the LVFS by Logitech - Update is not cryptographically signed - Firmware cannot be verified after flashing - Virus checked using ClamAV Other way said, there is no security whatsoever. Not only that it trust online updates from a 3rd, but there is no way for me to check if that firmware blob really is from Logitech or not. This looks to me like a big security flaw, just waiting for the shit to hit the fan. Did I got it right? Is fwupd a running service, installed by default, that can reach all my hardware, and change firmware inside various pieces of hardware without letting me know? And those changes can be pushed from the Internet, by default? And are not digitally signed, and not even verifiable in any way? This can not be true, what am I missing here? :-// |
| bd139:
AFAIK fwupd just checks for firmware updates then puts files in the right place. UEFI secure boot takes care of the signing stuff. From a user perspective PolicyKit controls access to specific updates as well. |
| Navigation |
| Message Index |
| Next page |
| Previous page |