Qubes has flexible arch [1] which should make it easy to port to whatever other VMM or container technology... [1]https://blog.invisiblethings.org/2013/03/21/introducing-qubes-odyssey-framework.html …
-
-
... except at this moment I don't see anything comparably strong (arch-wise) as Xen, still. Do you?
2 replies 0 retweets 1 like -
-
Replying to @BenLaurie @bcrypt
Did you try it? Can it run Linux drivers? Linux Apps? Support modern hardware, including S3 sleep? Properly parse DMAR and setup VT-d?
3 replies 0 retweets 2 likes -
Replying to @rootkovska @bcrypt
BTW, "can run Linux drivers" is not top of my list for "is secure". Can run Linux apps, tho, coz you can run Linux as a guest. Allegedly.
1 reply 1 retweet 0 likes -
Running Linux drivers is not a problem as long as you don't put them in the kernel, & enforce IOMMU on the hardware they drive.
1 reply 0 retweets 0 likes -
Replying to @RichFelker @BenLaurie and
That's actually what I have in mind for my eventual kernel replacement - drivers are heavily sandboxed user processes linked to fake Linux.
5 replies 1 retweet 4 likes -
QNX drivers were user processes. I really liked that model.
3 replies 0 retweets 0 likes -
Replying to @BenLaurie @RichFelker and
True. You could crash TCP/IP stack on QNX and it would simply carry on running.
1 reply 0 retweets 0 likes -
Replying to @timb_machine @BenLaurie and
True or not, that's something of an aside. Protocol implementations and hardware drivers are completely separate things...
2 replies 0 retweets 0 likes
...unless you have a broken monolithic kernel architecture that lumps them all together. =)
-
-
Thanks. Twitter will use this to make your timeline better. UndoUndo
-
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.