Qubes is garbage

  • 🇵🇦 Nuestro primer dominio localizado está en español en kiwifarms.pa. Our first localized domain is on Spanish on kiwifarms.pa.
  • Want to keep track of this thread?
    Accounts can bookmark posts, watch threads for updates, and jump back to where you stopped reading.
    Create account
Destacado
StolenWindows

StolenWindows

kiwifarms.net
Registrado
1 de Ago, 2025
I already mentioned this in the Linux thread, but I think this subject deserves a thread of its own, because people still seem to think that installing Qubes on a "fully Libre'd Thinkpad" is going to magically solve their problems.

1.) Only GNU w/ kernel hardening and Guix are any good. Qubes is good for security, but not for privacy (since everything runs in isolated VMs, such as work, banking, browsing and development with each getting its own domain, which makes it prone to metadata leaks). Arch is just a woke version of Gentoo. Manjaro is just trash that wants to be Windows.
2.) And even while it might be more compartmentalized than, say, GNU, however BIOS/UEFI is completely independent of Qubes OS. Qubes cannot protect or harden the BIOS directly, since it operates below the OS level. So if an attacker gains access to the BIOS, they can still modify the boot process, potentially bypassing Qubes entirely (for example, loading a rootkit or altering boot configurations). Contrast this with GNU, which uses Coreboot as a FOSS replacement for BIOS and UEFI.
3). Is not compatible with RISC-V/POWER9 architecture anyways.

Don't listen to NSA agent Edward Snowden. Once a glownigger, always a glownigger. He sold his soul and now he's trying to act like a "cybersecurity expert" LMAO. Also, even if you scrub the hardware backdoors in the chip, other things are still untouched, such as the proprietary display, the proprietary hard drive (which even if it were open source, you'd still need Faraday protection to prevent sidechanneling) and so on. It really shows you how much of a scam all of this is. The closest thing to a completely open source workstation that's on the market now is the SiFive HiFive Unmatched and Unleashed Single Board Computers (SBCs). They're desktop quality, but even they employ blobs of their own, since no desktop level SBCs are fully open source yet (just raspberry pi-sized SBCs and that's it, such as BeagleV Ahead/Starlight, Milk-V, lowRISC/OpenTitan and probably more).
 
Counterargument: you don't need the level of schizophrenia where even your drive controller is open source if you're not the #1 most wanted on Interpol for child trafficking or some other heinous crime.

Also, how do you trust that there's no supply chain attack in the manufacturing of the device? How can you be sure that what you have 100% matches the open source schematics? How can you be sure no backdoors got slipped in?

And if you were to reject all tech as none of it can be 100% pure, how will you protect yourself from spy satellites, CCTV monitoring, as well as other people's smartphones that actively spy on everyone 24/7? How will you obtain all the resources needed to survive is it requires contact with civilization? How will you earn money if that requires being around compromised tech? Even Ted K couldn't avoid it when he lived in his cabin.
 
Slav Power dijo:
Counterargument: you don't need the level of schizophrenia where even your drive controller is open source if you're not the #1 most wanted on Interpol for child trafficking or some other heinous crime.

Also, how do you trust that there's no supply chain attack in the manufacturing of the device? How can you be sure that what you have 100% matches the open source schematics? How can you be sure no backdoors got slipped in?

And if you were to reject all tech as none of it can be 100% pure, how will you protect yourself from spy satellites, CCTV monitoring, as well as other people's smartphones that actively spy on everyone 24/7? How will you obtain all the resources needed to survive is it requires contact with civilization? How will you earn money if that requires being around compromised tech? Even Ted K couldn't avoid it when he lived in his cabin.
Presiona para expandir...
Well I'm just talking computers here. You can pop the board in a debugger (like a SiFive HiFive1 Rev B) and examine the source code yourself (although a lot of this stuff is on Github).
 
Hellwalker dijo:
Thank god I'm not retarded enough to believe that I ever needed something like Qubes in the first place!

Seriously, though. How the fuck is any of this a concern to anyone who isn't already on an FBI hit list?
Presiona para expandir...
Why, so you can be cataloged and have all your data (family photos, call logs, etc) wind up in the hands of people you don't know and whose intentions you don't know? Lmao. Yeah, good goy, here's a shekel for you. The gubmint are flawless. If you have nothing to hide you have nothing to fear from corporate surveillance. Go buy an iPhone and get buck broken like the good little niggercattle you are.
 
StolenWindows dijo:
Why, so you can be cataloged and have all your data (family photos, call logs, etc) wind up in the hands of people you don't know and whose intentions you don't know?
Presiona para expandir...
You don't need to be this schizophrenic to avoid it. And if you are that schizophrenic, then chances are you don't have any family photos or call logs to care about.
 
Slav Power dijo:
You don't need to be this schizophrenic to avoid it. And if you are that schizophrenic, then chances are you don't have any family photos or call logs to care about.
Presiona para expandir...
What's the disadvantage to avoiding troontech? You might actually learn something new. But whatever, that's your perogative, I guess.
 
StolenWindows dijo:
What's the disadvantage to avoiding troontech? You might actually learn something new. But whatever, that's your perogative, I guess.
Presiona para expandir...
My "pejorative" is that you are mentally deranged and Richard Stallman himself would disagree with you and say that your approach is excessive and if you were to tell people to do just that you'd be driving them away from free software. I mean, you could send him an e-mail and ask him yourself, but I guess you don't want anyone to disagree with you so you won't.
 
Slav Power dijo:
My "pejorative" is that you are mentally deranged and Richard Stallman himself would disagree with you and say that your approach is excessive and if you were to tell people to do just that you'd be driving them away from free software. I mean, you could send him an e-mail and ask him yourself, but I guess you don't want anyone to disagree with you so you won't.
Presiona para expandir...
So fucking what? Gentoo's approach to software freedom is "excessive". If you welcome blobs and nonfree garbage you might as well start using Windows. Plus, Gentoo has a much smaller attack surface than Qubes.
 
StolenWindows dijo:
So fucking what? Gentoo's approach to software freedom is "excessive". If you welcome blobs and nonfree garbage you might as well start using Windows. Plus, Gentoo has a much smaller attack surface than Qubes.
Presiona para expandir...
There are government satellites watching you 24/7 and everyone around you has either an Android smartphone or an iPhone in their pockets. You have no privacy and never will no matter how many free code you download precompiled as you, like every other schizo, doesn't actually read through the millions of lines of code to make sure it's safe.

Enjoy dealing with your super turbo libre shitheap that can barely browse the modern Internet. Normal people will just install Mint and will be way better off in terms of privacy while also having all the privacy benefits they'd ever need.
 
So this schizo is advocating for creating such a unique fingerprint that he glows like the sun? Cool, next thread please.
 
Slav Power dijo:
There are government satellites watching you 24/7 and everyone around you has either an Android smartphone or an iPhone in their pockets. You have no privacy and never will no matter how many free code you download precompiled as you, like every other schizo, doesn't actually read through the millions of lines of code to make sure it's safe.

Enjoy dealing with your super turbo libre shitheap that can barely browse the modern Internet. Normal people will just install Mint and will be way better off in terms of privacy while also having all the privacy benefits they'd ever need.
Presiona para expandir...
Lol. Gentoo runs way smoother than Qubes on a wiped Thinkpad lmao. But you wouldn't know that anyways. Skyrim is for the nords.
 
The argument seems to be bouncing back and forth between security and anonymity here, which is annoying because the thread topic looked like it was about security.

Ignoring all the schizoing by this guy Qubes has always seemed a pretty heavyweight security OS solution honestly. Anyone who's wanted by the FBI really shouldn't be daily driving one or another OS anyway, and also I've always felt like its counterintuitive for a guy like Snowden to reveal what he's actually primarily using but that guy has always felt like a open secret in terms of being a "wanted criminal" (he could also be lying, maybe he just runs Wubuntu in Russia 🤔).

Security and Privacy (and anonymity) are kind of at odds with one another. If you truly want one you're probably giving up the other in some way, and if your use case deals with US state level threat actors then I would not take the advice of random retards on kiwi farms anyway. There's never going to be a 100% secure hardware solution unless you fabricate every component yourself up to and including the software stack.
 
Slav Power dijo:
There are government satellites watching you 24/7 and everyone around you has either an Android smartphone or an iPhone in their pockets. You have no privacy and never will no matter how many free code you download precompiled as you, like every other schizo, doesn't actually read through the millions of lines of code to make sure it's safe.
Presiona para expandir...
Sad but true, if they want to fuck you over, they will
 
Quebes isn't for lay people and end users, or even remotely normal nerds. It's for glowniggers. Serious schizos and autists with ties to various communities and then the shizo larpers and educational/academic types.

The project idea is to be specialized for that one single laptop in the field for an all-in-one-nigger-on-the-run LARP situation. Hotel to airport to safehose to cafe to dead drop to interrogation room, etc. Everything untrusted.

This is why they poo poo desktops on the HCL and in general. If you aren't running at least 64GB of RAM on your state of the art taxpayer funded laptop what are you even doing here?

Without the glownigger training and undocumented libraries of reference you are basically just going to lock yourself out of your keyboard and mouse and probably expose yourself. Or just encrypt your system in a way that you cannot unencrypted it without help or loose all your critical and personal files that you're supposedly running Quebes in the first place to protect.

People shit all over TAILS all the time for various past controversies. It's not great when misktaes are made but overall a good sign because people actually use it. Not many such occasions with Quebes within the community. Its more of a purity movement & thought experiment and those are highly prone to intel agency exploitation.
 
The powers that be love people like the OP here. Any normal person reading this will think anyone who gives a crap about privacy is some schizophrenic retard completely disconnected from reality. Normal people don't want to be associated with that, so they spite OP by gladly continuing life as nigger cattle.

Deriding people who don't use a 10 year old ThinkPad with custom BIOS, neutered Intel ME and kernel nobody has heard of will not encourage anybody to ditch Gmail, OneDrive or their iPhone.

One wonders what horrors are on his hard drive that he feels the need to guard himself against every three letter agency like he's the next Julian Assange.
 
Destacado
Debes iniciar sesión o registrarte para responder aquí.
Atrás
Top Abajo