Life without Windows or OS X

GNU/Linux is quite possibly the most important free software achievement since the original Space War, or, more recently, Emacs. It has developed into an operating system for business, education, and personal productivity. GNU/Linux is no longer only for UNIX wizards who sit for hours in front of a glowing console. Are you thinking about switching to Linux and want to learn how to use it? Have you been using GNU/Linux for some time and want to learn even more? This is the place for you.

Friday, January 12, 2018

Insecurity at the heart of modern CPU: Spectre and Meltdown

On 2 January 2018, news broke of about security flaws in ALL modern processors. Known inside the chip and software industry since the middle of 2017. But Linux developers are not happy about either problem. They were not kept in the loop, and they had to rush patches out to mitigate the security holes So the first fix left Ubuntu users with new problems. Some were finding their Ubuntu 16.04 LTS Xenial Xerus unbootable after installing the Linux kernel update (linux-image-4.4.0-108-generic) containing the Meltdown fix.

I think Intel needs to really needs to admit that they have issues instead of trying to spin everything. Why didn't they make sure speculation doesn't happen across protection domains? I mean are Intel engineers knowingly selling flawed products to the public? And one of the most confusing parts for me is that there are two vulnerabilities that affect similar things. Meltdown patches are available for Linux systems but this Spectre?  It may be impossible to guard against it entirely without replacing hardware.

I'm not an expert on SoCs or CPUs so this post is more of a rant.


Post a Comment

<< Home