-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256
On Tue, Dec 06, 2016 at 05:02:52AM -0500,
Tai...@gmx.com wrote:
> I would like to request that you not include purism laptops on your list of
> compatible devices as they are a dishonest company ran by incompetent
> people, endorsing them gives expert level credit to their claim that one day
> somehow they will get intel to open up ME/FSP. (I like how they count "freed
> operating system" on their list, and many other things that other
> people/companies did)
>
> There is nothing special about their laptop it is simply a crappy quanta/oem
> type rebrand[1]. They could have went with an AMD (one without PSP) or ARM
> chipset and actually had open source firmware and no ME/PSP, I can't
> understand why they chose intel.
Take a look here:
https://www.qubes-os.org/news/2016/07/21/new-hw-certification-for-q4/
The certified hardware for Qubes 3.x is mostly about just compatibility,
not trustworthiness. The main criteria is about providing hardware
configuration that work with Qubes OS, and not changing it in
incompatible way in future revisions (like it happens with some brands -
for example next revision get Broadcom wifi poorly supported on Linux).
In hardware certification for Qubes 4.x we want to have something more.
Not only hardware being compatible, but also as trustworthy as
realistically possible. This "realistically" currently means we can't
expect not including Intel ME, unfortunately. But for example we can
require open source BIOS - and we do.
In the current state of Librem laptops I see no way how they could be
certified for Qubes 4.x. Even though Coreboot support for it exists,
Purism is apparently not interested in integrating it and selling
machines with Coreboot installed by default. That's fine - it's their
choice to not pursue trustworthy hardware, but that also means no
certification for Qubes 4.x.
- --
Best Regards,
Marek Marczykowski-Górecki
Invisible Things Lab
A: Because it messes up the order in which people normally read text.
Q: Why is top-posting such a bad thing?
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2
iQEcBAEBCAAGBQJYRqpjAAoJENuP0xzK19csARUH/2hE7yyxeIO+IAyk+a4/pc5L
32yICU/vOh69F0BLVnAp4j4aEdW71ua6Leh3HSs1OzS7mp/WVBXmGUUfDSJ83jjj
khmkDv9bnJB8VR8n2pEYYQeQIPyKbjVFS8pzXUyd44aD2A7X3a0pa513Vic0AMtY
tG2DX2QVXgo7/FCRaWVhQHu6nZ7CB/aqiGsPy5zWLLKgC/miPIqlRTX1he5LckHD
WgR/e0p+1MOXrZOc8BG8lvflCzK/1PRR0AVxJuYpG6u+qFDRlapVO9pN7pOq7I4V
sOoGVnWmOyYtIcvhJXDfLFZVR+Aqtv5QVebkvGztJf4UBNGbQMi67/nw5w5KgnA=
=bMkF
-----END PGP SIGNATURE-----