My thoughts exactly. I usually read what the media says ("AAAAAHHHH! REPLACE ALL COMPUTERS TODAY!") and know that the reality is more like "Keep Calm And Patch On!"
Paul H. Tarver Tarver Program Consultants, Inc.
-----Original Message----- From: ProfoxTech [mailto:profoxtech-bounces@leafe.com] On Behalf Of Alan Bourke Sent: Friday, January 05, 2018 2:28 AM To: profoxtech@leafe.com Subject: Re: [NF] Meltdown and Spectre CPU Flaw Information
These exploits are nasty but if they've been in Intel chips ever since they started implementing out-of-order execution in 1995 then surely if there was a serious real-world threat we would have seen it long ago?
-- Alan Bourke alanpbourke (at) fastmail (dot) fm
On Thu, 4 Jan 2018, at 7:46 PM, Ken Dibble wrote:
Virtually everything we do here involves HIPAA-sensitive information, but we have very robust perimeter defenses. I'm much more concerned about a potential 30%+ performance loss in systems that are constantly used by nearly a hundred people every day.
The exploit allows VMs to go into the memory space of other VMs. Very bad. Unless you don't have any sensitive info that needs to stay that way.
--
rk
-----Original Message----- From: ProfoxTech [mailto:profoxtech-bounces@leafe.com] On Behalf Of Ken Dibble Sent: Thursday, January 04, 2018 1:35 PM To: profoxtech@leafe.com Subject: Re: [NF] Meltdown and Spectre CPU Flaw Information
I just can't wait to see what it's going to do to my highly virtualized network--if I ever decide to let it through. Probably a smaller version of what it's already started to do to some commercial cloud systems.
Windows Automatic Updates: Just Say No. (TM)
Also, kudos to Microsoft for shipping their patches a week early, and spontaneously rebooting idle Windows workstations while people were freaking out over the new exploits. Good job!
On Thu, Jan 4, 2018 at 12:27 PM, Ken Dibble krdibble@stny.rr.com
wrote:
Hi folks,
Ask Woody has a very thorough report on this, with links to more information.
We all need to be fully informed about this; it is going to affect everybody.
Ken Dibble www.stic-cil.org
[excessive quoting removed by server]