Thank you for the reply.
I sense the qubes team isn't really interested and I would be better off using Debian for my primary OS. I've had this vision since the 90's of booting a qubes like OS and then running various OSes in VMs however this is all useless without GPU passthrough. Security is great but not when it gets in the way of being useful. I need useful or I have to buy two separate computers systems. I believe the risks are acceptable using PCI passthrough. Those that need more security don't have to use PCI passthrough. One less qubes user saying how great it is.
I wish the best for qubes and the team.
My last reply. Since I will not feed the anger.
Rather than attack the messenger maybe you should stop and consider what I wrote. I am not a fan of Stevie B. or M$. And you were not helpful in my opinion.
If you really want security then you should power down the system and bury it where only you can find it and then maybe it would be secure but I doubt it.
;)
Cheers!
John
Hi Jackie,
Thank you for the nice reply.
I will check out the qubes-users list.
I've been following qubes for a long time, since the beginning I believe. Qubes is my dream after all. I've heard all of the security arguments over the years and you are correct there is always a trade off between usability and security. It ranges from almost no security (M$) to burying the computer in the ground. :)
I would respectfully suggest the developers consider supporting PCI-passthrough. It isn't just GPUs that are useful for PCI-passthrough, passing the SATA and USB controllers can also be very useful. Passing the PCI device can eliminate much of the OS overhead. When enabling or using this feature a warning could be issued to the qubes admin of the security risk. I assume the developers and team want people using their work. By including this as a feature qubes will be used on more systems. The more systems qubes runs on the more support qubes will receive from the community. I see this as a win win for qubes and the community.
In the past I had not the time however If the team is interested I am willing to offer my support for PCI-passthrough. I could help filter PCI-passthrough support between users and developers or even other ways.
Based on the last two replies I will likely try qubes with PCI-passthrough. However I am leery of future operability since this isn't currently supported or encouraged. So I am having trouble making a leap in this direction.
John
> I should just say:
> RTFM.
>
> But let me share some details:
>
> Qubes is supporting PCI-passthrough from the very first release.
> That is how the sys-net using your network devices.
>
> Later releases extended this for USB buses -> now the default install
> creating a sys-usb Qube for you.
>
> What is not working (out of the box) is passing VGA devices.
> Because this is a different beast.
> Read the docs, and the previous discussions (on qubes-users) about
> this if you really interested...
>
> And honestly, I believe if you would ever try Qubes OS, you would not
> start this thread at all.
>
> Peace.
> - --
> Zrubi
<snip>
So if I understand correctly, PCI device passthrough is supported but not GPU because it can be hacked and compromise the host?
While more difficult or perhaps not mature yet, well maybe not, other PCI devices (USB, SATA drives, etc.) can also be hacked.
So it appears security isn't the problem so it must be complexity although users are getting it working because zen supports it.
I am sure I am not the only one that would like GPU passthrough working without all of the headaches.
No more suggestions or discussions from me. I just asked the question because I wanted to see if this community had changed. I am going back to lurking, sorry for the bother.
Blessings
John
This windows-gaming passthrough thread isn't isolated to the Qubesmailing list, other OS projects have seen the same manipulativeargumentation.
sorry for my inconvenience but what does that in particular mean? maybe my english skills are to bad or its too late at night. wait, its actually morning.... :D
i am one of those guys who gets an nearly mint used p52s with an unused Quadro P500 Graphics.... didnt tried any steps to accomplish passtrough because i have no need till today.but i have to admit it would be nice to have a "render" or "hashing" qube ready :D
i would fund also development, but i agree also, this shouldnt be priority for now...
qubes in general deserves to get funded & supported in any way. i think setting the right priorities over all these years constantly is why qubes can be used reliable and consistant. still a lot to do i guess :D qubes changed a lot of my workflows with ease. it makes such efficient use, in a lot of ways, of recent technology, that has grown mature over the years.
thanks!