Cruisers Forum
 


Reply
 
Thread Tools Search this Thread Rate Thread Display Modes
Old 06-01-2018, 07:04   #1
Registered User
 
rgleason's Avatar

Join Date: Mar 2012
Location: Boston, MA
Boat: 1981 Bristol 32 Sloop
Posts: 17,494
Images: 2
Processor Vulnerabilities

Notice from Norton: Meltdown and Spectre: Chip Vulnerabilities Could Facilitate Memory Leaks

Windows 7 does not have a patch as far as I know. The patches will slow the computing down.
rgleason is online now   Reply With Quote
Old 06-01-2018, 07:27   #2
Registered User

Join Date: Jul 2010
Location: Hannover - Germany
Boat: Amel Sharki
Posts: 2,535
Re: Processor Vulnerabilities

It is the greatest disaster of computer technology ever. Read here:
https://meltdownattack.com/meltdown.pdf
and
https://spectreattack.com/

Gerhard
CarCode is offline   Reply With Quote
Old 06-01-2018, 07:34   #3
Registered User
 
rgleason's Avatar

Join Date: Mar 2012
Location: Boston, MA
Boat: 1981 Bristol 32 Sloop
Posts: 17,494
Images: 2
Re: Processor Vulnerabilities

That it was known so long, while the Intel president, traded out of his stock options and had months to change the "rules" is totally criminal. Intel abandoned serving their customer base, an act Andy would not have tolerated.

Thanks Carcode. I will read it. Looks like we have to go all the way back to Atom processors to be safe.
rgleason is online now   Reply With Quote
Old 06-01-2018, 07:44   #4
Registered User

Join Date: Feb 2008
Boat: 2017 Leopard 40
Posts: 2,661
Images: 1
Re: Processor Vulnerabilities

It makes good headlines, and it’s a very serious design error, but it’s VERY difficult to exploit in a useful way. It would require sophisticated skills and computing power to reassemble the memory fragments into usable information. Criminal types wouldn’t see a good ROI so they’ll stick with ransomware, credit fraud and phishing. This is fodder for nation states and even then it would only be used on focused high value targets.

Bottom line, you and me should be more concerned about other stuff. Do your software and firmware updates and move on.

PS you can’t stick with old unsupported software forever.
SailFastTri is offline   Reply With Quote
Old 06-01-2018, 07:45   #5
Registered User
 
rgleason's Avatar

Join Date: Mar 2012
Location: Boston, MA
Boat: 1981 Bristol 32 Sloop
Posts: 17,494
Images: 2
Re: Processor Vulnerabilities

https://spectreattack.com/#faq-fix

https://www.axios.com/what-you-need-...522229386.html

Microsoft issued updates for Windows 10, Windows 8 and Windows 7 as well as for its Azure cloud operating system

As of Wednesday evening, Apple had yet to comment on how its products are impacted.

INtel has it's head in the sand!
Quote:
The costs: Despite how widespread the problem is, Intel says it doesn't expect any significant financial impact. Other potential costs will be born by software makers creating patches and those that may see a performance impact from the software patches needed to close the security hole. It's also possible class-action lawyers may see this as a prime opportunity to litigate.
rgleason is online now   Reply With Quote
Old 06-01-2018, 09:53   #6
Registered User

Join Date: Nov 2015
Location: Ireland
Posts: 466
Re: Processor Vulnerabilities

Quote:
Originally Posted by rgleason View Post

As of Wednesday evening, Apple had yet to comment on how its products are impacted.
Apple now say all Mac and iOS devices are affected too.

https://support.apple.com/en-us/HT208394
AedanC is offline   Reply With Quote
Old 06-01-2018, 10:03   #7
Moderator Emeritus
 
David M's Avatar

Cruisers Forum Supporter

Join Date: Sep 2007
Location: Eastern Tennessee
Boat: Research vessel for a university, retired now.
Posts: 10,406
Re: Processor Vulnerabilities

It's overblown. Google: "Intel overblown" and "Intel overreaction".
__________________
David

Life begins where land ends.
David M is offline   Reply With Quote
Old 06-01-2018, 12:43   #8
Registered User

Join Date: Jan 2011
Location: France/UK
Boat: Gib'Sea 402
Posts: 546
Re: Processor Vulnerabilities

I'm sure it is. My (limited) understanding is that to gather any data at all the undetected malware has to be virtually inside the processor. It's just not going to happen for the vast majority of users.
hoolie is offline   Reply With Quote
Old 06-01-2018, 12:57   #9
Registered User

Join Date: Feb 2010
Location: Tierra del Fuego
Boat: Phantom 19
Posts: 6,145
Re: Processor Vulnerabilities

And now everybody grab your tea, sit back, take a deep breath, update your browser for the, hard to exploit, stuff through Javascript when available during the next few days, and let the big cloud running guys do their job they started to do before you even heard the words Meltdown and Spectre for the first time. These are "disaster" for the cloud industry, of limited importance for the end user, certainly not more important than the other dozen we have seen in the last year, really.
nohal is online now   Reply With Quote
Old 06-01-2018, 14:21   #10
Registered User

Join Date: Oct 2014
Location: Netherlands
Boat: Halmatic 30
Posts: 1,101
Re: Processor Vulnerabilities

Quote:
Originally Posted by AedanC View Post
Apple now say all Mac and iOS devices are affected too.

https://support.apple.com/en-us/HT208394

Eben Upton (Raspberry PI):

"Meltdown and Spectre are examples of what happens when we reason about security in the context of that abstraction, and then encounter minor discrepancies between the abstraction and reality. The lack of speculation in the ARM1176, Cortex-A7, and Cortex-A53 cores used in Raspberry Pi render us immune to attacks of the sort."
verkerkbr is offline   Reply With Quote
Old 07-01-2018, 01:35   #11
Registered User

Join Date: Jul 2005
Location: Bellingham
Boat: Outbound 44
Posts: 9,319
Re: Processor Vulnerabilities

If you could sneak a program that exploits this vulnerability onto an OpenCpn user's machine you could capture the assembly code, reverse compile it and then publish the source code to O.
__________________
Paul
Paul L is offline   Reply With Quote
Old 23-01-2018, 03:55   #12
Registered User

Join Date: Jul 2010
Location: Hannover - Germany
Boat: Amel Sharki
Posts: 2,535
Re: Processor Vulnerabilities

Read this posting from Linus Torvalds to understand what **** is going on:
Linux-Kernel Archive: Re: [RFC 09/10] x86/enter: Create macros to restrict/unrestrict Indirect Branch Speculation

It seems he has lost his patience.

Gerhard
CarCode is offline   Reply With Quote
Reply

Thread Tools Search this Thread
Search this Thread:

Advanced Search
Display Modes Rate This Thread
Rate This Thread:

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Trackbacks are Off
Pingbacks are Off
Refbacks are Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
Manual Food Processor or Blender ? Skippa Cooking and Provisioning: Food & Drink 37 10-09-2017 21:52
For Sale: Blue Sky Solar IPN ProRemote Display / Processor rabend Classifieds Archive 4 02-08-2011 19:53
For Sale: Blue Sky Solar IPN ProRemote Display / Processor rabend Classifieds Archive 2 22-07-2011 20:19
B&G H2000 Paddlewheel Processor Input svBeBe Marine Electronics 0 28-03-2011 05:41
GNSS Vulnerabilities and Solutions 2009 Conference, Baska, Krk Island, Croatia satnavigator Navigation 8 06-04-2009 02:02

Advertise Here


All times are GMT -7. The time now is 19:36.


Google+
Powered by vBulletin® Version 3.8.8 Beta 1
Copyright ©2000 - 2024, vBulletin Solutions, Inc.
Social Knowledge Networks
Powered by vBulletin® Version 3.8.8 Beta 1
Copyright ©2000 - 2024, vBulletin Solutions, Inc.

ShowCase vBulletin Plugins by Drive Thru Online, Inc.