Same here, but I'm not losing any sleep over it. All docs are encrypted, running ufw on the machine behind a NAT router. I'll wait till the proverbial dust settles a bit...
-
-
For the VAST MAJORITY of INFORMED users, nothing more than a Tempest in a Teapot!Windows no longer obstructs my view.
Using Kubuntu Linux since March 23, 2007.
"It is a capital mistake to theorize before one has data." - Sherlock HolmesComment
-
But... But... But... I Must Run Around In Circles, Scream And Shout: The World As We Know It Is OVER!!!!! Nothing Will Ever Be The Same Again!
Or at least that is what I read in the news reports. You don't think they might have got it wrong, do you? Or that they have an ulterior motive? Naah! It has to be a real disaster because they can't find better news to push out at us...
Kubuntu 24.11 64bit under Kernel 6.12.3, Hp Pavilion, 6MB ram. Stay away from all things Google...Comment
-
Here's mine from the latest script:
stuart@office:~$ sudo spectre-meltdown-checker
Spectre and Meltdown mitigation detection tool v0.28
Checking for vulnerabilities against running kernel Linux 4.13.0-26-generic #29~16.04.2-Ubuntu SMP Tue Jan 9 22:00:44 UTC 2018 x86_64
CPU is Intel(R) Core(TM) i7-6700K CPU @ 4.00GHz
CVE-2017-5753 [bounds check bypass] aka 'Spectre Variant 1'
* Checking count of LFENCE opcodes in kernel: NO
> STATUS: VULNERABLE (only 29 opcodes found, should be >= 70, heuristic to be improved when official patches become available)
CVE-2017-5715 [branch target injection] aka 'Spectre Variant 2'
* Mitigation 1
* Hardware (CPU microcode) support for mitigation: YES
* Kernel support for IBRS: NO
* IBRS enabled for Kernel space: NO
* IBRS enabled for User space: NO
* Mitigation 2
* Kernel compiled with retpoline option: NO
* Kernel compiled with a retpoline-aware compiler: NO
> STATUS: VULNERABLE (IBRS hardware + kernel support OR kernel with retpoline are needed to mitigate the vulnerability)
CVE-2017-5754 [rogue data cache load] aka 'Meltdown' aka 'Variant 3'
* Kernel supports Page Table Isolation (PTI): YES
* PTI enabled and active: YES
> STATUS: NOT VULNERABLE (PTI mitigates the vulnerability)
A false sense of security is worse than no security at all, see --disclaimerComment
-
this is exactly what I get as well ,,,,,,my question now is ,,,dose this mean that we are vulnerable to variant 1&2 but not 3 ,,,,,,or dose being protected from 3 give protection from the other 2 ??Originally posted by oshunluvr View Post
VINNYi7 4core HT 8MB L3 2.9GHz
16GB RAM
Nvidia GTX 860M 4GB RAM 1152 cuda cores
Comment
-
Vinny, my understanding is that these are separate(exploits)vulnerabilities and require separate fixes.
Still waiting to see the Spectre patches for my systems...
[edit] no exploits have been found (yet) (thanks oshunluvr)Last edited by TWPonKubuntu; Jan 17, 2018, 09:11 AM.Kubuntu 24.11 64bit under Kernel 6.12.3, Hp Pavilion, 6MB ram. Stay away from all things Google...Comment
-
I HAVE been pleading for people to volunteer but was shot down so I will not so post again, but THIS is why I have been so posting.
ARE YOU... a "probable" target for ANY of this...
NO.
There are a LOT of people who love to get onto forums and onto television to get face time...YES...IT / THEY / WHATEVER ARE,...ARE an ACTUAL problem that the manufacturers KNEW...notice the letter "E" ...about and chose to SCR@# YOU for YOUR MONEY...
THERE IS A WHOLE DISCUSSION about whether they "figured that this would be the reaction" and they could then use it to..."make money from BUSINESSES by "providing extra protection"...
OK...I have been explicitly told that my posting about this is not helpful but...here is my one last comment...
Look back... did I not PLEAD for volunteers MONTHS ago?
SOMETIMES ... the kid playing the video game outside the bar is the one person who "gets it"...
Sometimes...but not...we are NOW ...all about..."well if you can't do this or do that then I...I...in my infinite wisdom will not allow you into MY...SANCTUM SANCTORUM...
The master control program...
LIBERAL ELITIST AT A UNITED STATES UNIVERSITY...HYPER SOCIALIST COMMUNIST bunker financed by Putin...
and ...the oddballs... North Korea ... Iran... the DRUG CARTELS...
THEY LOVE THE WESTERN VIDEO IMAGERY.. the love the "handles"...
[img]
http://jimhillmedia.com/cfs-filesyst...2D00_500x0.jpg
[/url]
AND WHAT IS PITIFUl... is that there are many RICH PEOPLE in the United States that have been financing the... third world actors,... that SAY ...I don't believe that they BELIEVE it...they just want MONEY...who...SAY...that they are "for the people" while IGNORING the MILLIONS of people who were KILLED BY THE GUN by the COMMUNISTS...THE SOCIALISTS,.,.,,
UM THE CATHOLIC INQUISTION HAPPENED HUNDREDS of years ago,,,,,the SALT MINES IN RUSSIA were a few decades ago...
...by all of these people...but anyway...
I will not plead for volunteers again...
woodwillnotupsetthecartagainsmokeLast edited by woodsmoke; Jan 16, 2018, 09:17 PM.Comment
-
Woody,
We can (do) count on you to present an "off-the-wall" approach to a situation.
I admit that I fall in the category of "lacking the skills to solve this problem", hence I am waiting for those who DO have those skills to find a solution.
If I had a word of advice (unsolicited and worth every penny you pay for it), it would be to sit back and watch the floor show.
I'm finding out the views of many big companies, just by reading their published statements about the "Meltdown-Spectre" vulnerabilities.
I'm adjusting my opinions (and future buying habits) of the products made by those businesses. This will not be a waste of my time.
I raise a glass to you Woodsmoke, because you are not afraid to express you opinions.Kubuntu 24.11 64bit under Kernel 6.12.3, Hp Pavilion, 6MB ram. Stay away from all things Google...Comment
-
Vinny...
ummmm no...it was all known sixth months ago...and no "bad actor" has even made an attempt...
this is all a way for the "people who care about people who give them dollars" to...say..."WE CARE...WE...will take care of you because are...welll..."implication" YOU ARE STOOPID"...so...give US MORE MONEY...
And guess just WHO is MOST vulnerable...? the UNIVERSITIES...the colleges...and the poor public schools ( who are TOTALLY dependent upon ...federal "let us control you" funds and LOCAL funds..."
In SOME ways...these stupid LOCAL schools are the SAFEST...because...ummmm hate to say it...
Their ONLY EXPOSURE...is a Facebook and Twitter account...
those STOOPID local people...lol...
woodsmokeComment
-
TWP
here's a cuba libre to ya!!
woodhicsmokeComment
-
-
oshunluvr; My bad, I said exploits but meant vulnerabilities. Sometimes the mind doesn't do what the fingers tell it too...
Kubuntu 24.11 64bit under Kernel 6.12.3, Hp Pavilion, 6MB ram. Stay away from all things Google...Comment
-
-
acheron, thanks, that link contains a good explanation of the current state of the solutions being prepared.Kubuntu 24.11 64bit under Kernel 6.12.3, Hp Pavilion, 6MB ram. Stay away from all things Google...Comment
-
What are ".udeb" and ".ddeb"Originally posted by acheron View Post
I found 13 deb packages on this link:
https://launchpad.net/~canonical-ker...build/14241947
I am going to install
linux-image-extra-4.4.0-111-generic_4.4.0-111.134_amd64
(not the low-latency image) and the other 9 packages that don't have "low-latency" in their name.Last edited by GreyGeek; Jan 18, 2018, 05:34 PM."A nation that is afraid to let its people judge the truth and falsehood in an open market is a nation that is afraid of its people.”
– John F. Kennedy, February 26, 1962.Comment
Comment