From 37151260fed8a8fcd547e40fa55c34809a3cdf37 Mon Sep 17 00:00:00 2001
From: Joanna Rutkowska <joanna@invisiblethingslab.com>
Date: Fri, 9 Apr 2010 08:57:06 +0000
Subject: [PATCH] UserFaq changed

---
 UserFaq.md | 14 ++++++++++++++
 1 file changed, 14 insertions(+)
 create mode 100644 UserFaq.md

diff --git a/UserFaq.md b/UserFaq.md
new file mode 100644
index 00000000..720c2296
--- /dev/null
+++ b/UserFaq.md
@@ -0,0 +1,14 @@
+---
+layout: wiki
+title: UserFaq
+permalink: /wiki/UserFaq/
+---
+
+Qubes User's FAQ
+================
+
+### Q: Can I install Qubes on a system without VT-d?
+
+Yes you can. You can even run a netvm but, of course, you will not benefit from DMA protection for driver domains. So, on a system without VT-d, everything should work the same, but there is no real security benefit of having a separate netvm, as the attacker can always use a simple DMA attack to go from netvm to Dom0.
+
+The above is in theory -- in practice, if you have a broken network card driver and try to run it in a netvm on a system without VT-d, it might crash your system. This might happen e.g. if the driver is not properly using DMA-API.