Jump to content

Spectre and Meltdown

D_ManXX2

By D_ManXX2,
in General Discussion

Recommended Posts

Halstrom

Halstrom

Posted
Posted

Yeah its Intel's fault....
Next time there's a car accident lets sue the guy who invented the wheel......

God forbid anyone should ever suggest the hackers are to blame...............

bicobus

bicobus

Posted
Posted

If the maker of the lock that equips your door had made it so anybody could enter regardless of being in possession of the key, it's not the fault of whomever try the door knob.

Imperfection

Imperfection

Posted
Posted

This is probably one of the best write ups I have seen and covers a great deal about Spectre and Meltdown across all os platforms, worth the read.

https://blog.barkly.com/meltdown-spectre-patches-list-windows-update-help#windows-updates

 

EDIT:

This was also posted this morning from Nvidia:

We believe our GPU hardware is immune to the reported security issue. As for our driver software, we are providing updates to help mitigate the CPU security issue.

http://nvidia.custhelp.com/app/answers/detail/a_id/4611

 

 

Guest

Guest

Posted
Posted
8 hours ago, Benmc20 said:

Don't trus Intel on this one, they usually deny anything. Trust independant security ressearchers instead.

Don't trust them either, they lie and deny too

Halstrom

Halstrom

Posted
Posted
On ‎19‎/‎01‎/‎2018 at 7:17 AM, bicobus said:

If the maker of the lock that equips your door had made it so anybody could enter regardless of being in possession of the key, it's not the fault of whomever try the door knob.

Well that's pretty much every door lock in existence, most can be picked. I guess the guy who tries the door knob and walks out with your stereo isn't at fault...............

 

bicobus

bicobus

Posted
Posted
3 hours ago, Halstrom said:

Well that's pretty much every door lock in existence, most can be picked. I guess the guy who tries the door knob and walks out with your stereo isn't at fault...............

 

Yeah, there is a difference between an infraction (picking a lock) and opening a door with a faulty lock by simply trying the knob in the right way (2 ups, 1 down and open). One leave traces, the other do not. For all intent and purpose, you may just have left the door open.

 

In the case of meltdown and specter, they don't leave traces. It is entirely silent, as the purpose is to copy data you won't know if that ever happened. In this case, it's not your stereo being stolen but that all the document pertaining to you as an individual has been copied. Your identity could be stolen, and if that happens there is nothing you can do against that.

 

Spectre and meltdown potential are chilling, because unmitigated nobody's data is safe. But who am I kidding, Equifax happened and nobody really gives a crap.

Captain Cobra

Captain Cobra

Posted
Posted
5 hours ago, Halstrom said:

Well that's pretty much every door lock in existence, most can be picked. I guess the guy who tries the door knob and walks out with your stereo isn't at fault...............

 

A much better analogy for Meltdown would be a bouncer who lets everyone into a club without even checking IDs first.

  • 1 month later...
Rokabur

Rokabur

Posted
Posted

I really hate that this happened. I need some help because even after searching around I'm still confused by some things. I'm pretty sure the Microsoft patch has been downloaded and that I do have the registry key but is the value of the key supposed to be 0 or 1? COMODO firewall can't seem to handle it because the latest update causes Windows to permanently hang when logging into my profile so I'm constantly having to click no to COMODO constantly wanting to download the update. Also, when searching around it was stated to download an OEM firmware update, but it never stated exactly what I'm supposed to download.

Sladen2019

Sladen2019

Posted
Posted

The anti virus that you use should set the registry key automatically. The antivirus itself may have needed to be updated first before it has the ability to set it.

If you insist on setting the registry key yourself, you can refer to this link at Webroot. It has detailed instructions and also has a downloadable reg key that you can simply double click to set. https://answers.webroot.com/Webroot/ukp.aspx?pid=12&app=vw&vw=1&login=1&json=1&solutionid=2837

 

The OEM update you are referring to is the update for the BIOS. Companies like Asus, Dell, HP etc have the patches. However the first round of patches were pulled due to many problems people were having and its been suggested by Microsoft and Intel to not use them. There is a 2nd round currently in the works and may already be available for some newer generation CPUs.

 

There is a free utility called Inspectre that you can use, that will tell you if you are currently properly protected against Spectre and Meltdown.

https://www.grc.com/inspectre.htm

 

About your computers hanging, you will probably have to take that up with Comodo in their forum.

http://forums.comodo.com/

Kaldor Draigo

Kaldor Draigo

Posted
Posted

seems inspectre says im good with the meltdown but not the spectre and my performance is slow buti dont trust what it says

Sladen2019

Sladen2019

Posted
Posted

The Microsoft patch helps for dealing with Meltdown, but comes with a varying degree of performance cost. Inspectre says that your performance is slow because it notices that you have the patch and its effects applied. 

 

Spectre is basically fixed by applying a BIOS update, which may or may not yet be available for your setup. It too will come with an additional performance hit.

 

Inspectre also comes with the ability to disable the fixes, in case you ever feel like having the performance back. You would then be unsecure again of course, but you can always use Inspectre to re enable it.

Rokabur

Rokabur

Posted
Posted
19 hours ago, Sladen2019 said:

The anti virus that you use should set the registry key automatically. The antivirus itself may have needed to be updated first before it has the ability to set it.

If you insist on setting the registry key yourself, you can refer to this link at Webroot. It has detailed instructions and also has a downloadable reg key that you can simply double click to set. https://answers.webroot.com/Webroot/ukp.aspx?pid=12&app=vw&vw=1&login=1&json=1&solutionid=2837

 

The OEM update you are referring to is the update for the BIOS. Companies like Asus, Dell, HP etc have the patches. However the first round of patches were pulled due to many problems people were having and its been suggested by Microsoft and Intel to not use them. There is a 2nd round currently in the works and may already be available for some newer generation CPUs.

 

There is a free utility called Inspectre that you can use, that will tell you if you are currently properly protected against Spectre and Meltdown.

https://www.grc.com/inspectre.htm

 

About your computers hanging, you will probably have to take that up with Comodo in their forum.

http://forums.comodo.com/

Ugh, I usually ask for help here because I have a registered account. That and after about 2-3 days of waiting for an answer before checking I'd forget about COMODO. What is with these programs? First Avira caused my PC to hang on shutting down and now COMODO firewall will cause my PC to hang on logging into the desktop if I install the latest update. Anybody that could possibly recommend a good free replacement for COMODO firewall?

Sladen2019

Sladen2019

Posted
Posted
24 minutes ago, Rokabur said:

Ugh, I usually ask for help here because I have a registered account. That and after about 2-3 days of waiting for an answer before checking I'd forget about COMODO. What is with these programs? First Avira caused my PC to hang on shutting down and now COMODO firewall will cause my PC to hang on logging into the desktop if I install the latest update. Anybody that could possibly recommend a good free replacement for COMODO firewall?

Windows comes with a firewall and your router/modem probably comes with a hardware firewall also. Most people don't need a 3rd party firewall. Try without it for awhile.

Hayleyrose2323

Hayleyrose2323

Posted
Posted
On 1/18/2018 at 3:57 PM, Halstrom said:

Yeah its Intel's fault....
Next time there's a car accident lets sue the guy who invented the wheel......

God forbid anyone should ever suggest the hackers are to blame...............

It's both there faults, simple.

  • 3 months later...
Rokabur

Rokabur

Posted
Posted

I know this is kind of a necro but has their been any updates as to if/when there will be firmware updates? Using the InSpectre program shows I still have no Spectre protection and searching around I can't find any info regarding there being any updates available. Going to newsroom.intel.com/wp-content/uploads/sites/11/2018/04/microcode-update-guidance.pdf

says/shows that the CPU I have is at Production status and that Intel has authorized customers to use the microcode update in a production environment yet I still can't find any info about if anything is actually available.

  • 1 month later...

Archived

This topic is now archived and is closed to further replies.

Go to topic listing

  • Recently Browsing   0 members

    • No registered users viewing this page.
×
×
  • Create New...