• Off Topic

  • Selecting a performance PC for linux

Hello! Please advise me on the choice of components for a working home PC. I don’t play games, I don’t watch movies, I don’t edit anything. I need a modern, productive machine for years to come, with an emphasis on security from backdoors and hardware attacks. I use 2 4K monitors.
Need a build with good linux compatibility and virtualization. I don’t want nvidia, in my experience poor compatibility with linux and wayland. AMD likes it better as a video card and as a processor. AMD video card has an open sorce driver. my monitors support AMD’s FreeSync technology.
There are no risks with intel ME. AMD PSP can be disabled in UIFI often and it has less vulnerabilities.
the possibility of coreboot installation is welcome, but the hardware must not be outdated
Definitely not a Gigabyte motherboard, there are backdoors, written many times in the media.
good compatibility with qubes os is desirable

Under virtual machines need a productive processor and 64 gb of RAM DDR5.
Legacy ports are not needed (VGA, DVI, PS/2). Backlighting is not needed. built-in sound card, microphone, bluetooth, wifi and hdd 2.5 are NOT needed. I already have the nvme and sata SSD’s.
The case I like is Fractal Design Era 2, I haven’t even looked into the others.
Some processors, such as AMD Ryzen 7000 series, support memory encryption technology - its presence is relevant for me.
usb 3.2 and usb-c ports needed
Support from 2pcs nvme m2 PCIe 4.0

chatGPT advised:
1 Processor: AMD Ryzen 9 7950X
Supports AMD Memory Guard technology for memory encryption.

  1. Motherboard: ASUS TUF Gaming X670E-PLUS Or ASRock X670E Taichi Carrara.

  2. RAM: Kingston FURY Beast DDR5 64GB (2x32GB)
    Or Samsung DDR5 64 GB (2x32 GB) 4800 MHz
    ECC Registered

  3. Cooling system: Noctua NH-L12S
    or water cooling: Corsair iCUE H100i Elite Capellix (240mm)
    NZXT Kraken X53 (240mm)
    Arctic Liquid Freezer II 240

    Graphics card: AMD Radeon RX 6600 or AMD Radeon PRO W6600
    Power Supply: Corsair SF750 Platinum - 750W, 80 PLUS Platinum

please advise, please, on the final choice of the assembly and adjustments to the assembly from chatgpt, perhaps there is not an optimal option there

    vitalize with an emphasis on security from backdoors and hardware attacks

    For this you'll need to wait for a Pixel laptop with GrapheneOS on it. Currently, there's no other options if you need proper security.
    The rest of what you wrote sounds like a nice performance oriented computer, but you won't get security from it, at least it won't be even close to a Pixel phone.

      vitalize

      This will not work out.

      1. Desktop PCs, especially with retail Mainboards, provide no serious to very basic protection. Both for local and remote attacks
      2. Most retail Computer Cases lack physical security features
      3. Retail Mainboards are completely atrocious, because they provide pretty much nothing besides Secure Boot & TPMs. Both are fundamentally flawed concepts and not even remotely comparable to what modern Google Pixels or iPhones offer. Besides, these Mainboards receive UEFI updates only for a short time. Not even the packaging gets sealed, no matter which brand or model. So the manufacturers are not even pretending to provide secure products.

      Your best bet would be a Dell Precision Tower right now, but they only come with Intel 14. Gen Intel CPUs. You would also need to check that your unit of choice comes with the 1000W PSU.

        1. If you think that Gigabytes has built-in backdoor then I would suggest to stay away from the gaming line of Asus. Its gaming features seems to have a UEFI component (or I had a rootkit) and for the product I had from them I can tell you that some bios settings that should be present in the BIOS were only available with that armoury crate .. in Windows. And bare minimum firmware support. If you can find the words "linux support" in their other lines of products you just made a rare find!
        2. I could be wrong as encrypted memory support is poorly advertised but I am pretty sure that only their ryzen PRO support encrypted memory. I don't even know if they are available for retail sale. I have only seem them in a few product from Hp and Lenovo. At least some of their laptops, if that suit your threat model.
        3. One company that comes to mind is System76. But just like any other suggestion you would have to do your own homework.
        4. If you plan on using virtual functions make sure that what you buy support them. The chip might support it but the BIOS might not. Or vice-versa. If that somethings that matter to you you might need a FirePRO.
        5. AMD also has EPYC 4004 series processor, and you might be able to get a motherboard that doesn't have integrated audio. ASROCK, Supermicro and few others make motherboard for them.
        6. Why not a mac?

        I forgot. Don't take encrypted memory support for granted. The processor might but some BIOS might not. And you might want to double check that the feature(s) you plan to use out of encrypted RAM is supported by the distro and hypervisors and so on.

        For me it’s the safety and performance of the system that matters.
        I want to use a full desktop computer, not a laptop. I already have laptops, but for home use a full-fledged computer is better.
        I don’t like apple operating system: ios , mac, I don’t want to use them ever.
        Choosing between windows or linux, definitely I will choose linux.
        I want to buy new components for my computer with emphasis on security and excellent compatibility with linux and preferably qubes OS. I am not well versed in hardware and computer hardware so I am looking for help here.

        I will buy a Pixel laptop with GrapheneOS when it is released and available for sale. Currently
        moment I want to build a productive, modern home computer for daily work.
        I will be using multiple virtual machines luks encryption.
        I do not need legacy hardware support. If there is hardware support for RAM encryption , this feature could be useful for me.
        I am leaning more towards choosing AMD system components. I am asking for help in finding a complete computer build that better fits my criteria. thank you.

        What Molasses said.

        If AES throughput is an important factor then look at the specifications and choose your cpu carefully. If you are lucky a benchmark already exist. If you have a specific question about a specific motherboard then I would suggest to contact the motherboard vendor.

        To me it look like your mind is already made up, short of this or that ryzen 9, and this ASUS TUF Gaming X670E-PLUS Or ASRock X670E Taichi Carrara.