Re: [DNG] Help with Spectre and Meltdown

On 01/18/2018 01:23 AM, Adam Borowski wrote: On Wed, Jan 17, 2018 at 10:03:46PM -0500,taii...@gmx.com wrote: According to wikipedia: "The pinebook cannot be run solely on free software now (December 2017), Sad to hear this. Because of this, I guess we should tell the ftpmasters that

Re: [DNG] Help with Spectre and Meltdown

On Wed, 17 Jan 2018, Cassandra of Troy wrote: > Much appreciated from lurker(s) as well as the OP. > > Looking forward to unplugging this live USB stick and reading my mail on > Jessie tomorrow morning. :) > > If any of you have the spare time to reply on or offlist, I value your > opinions on

Re: [DNG] Help with Spectre and Meltdown

On Wed, Jan 17, 2018 at 10:03:46PM -0500, taii...@gmx.com wrote: > According to wikipedia: > "The pinebook cannot be run solely on free software now (December 2017), Sad to hear this. Because of this, I guess we should tell the ftpmasters that atf-allwinner which I, seeing it's not going to be

Re: [DNG] Help with Spectre and Meltdown

On Tue, 16 Jan 2018 23:33:41 + jacksprat wrote: > I wanted to explore whether Devuan can provide a solution to the > Spectre/Meltdown fiasco. Is there a guide to what elements of Devuan > [jessie, ascii, ?] have been upgraded to address these issues? > > If I need to

Re: [DNG] Help with Spectre and Meltdown

On 17/01/18 23:00, jacksprat wrote: Thanks for the replies.  When I run the "spectre-meltdown-checker.sh" script [github.com/speed47 ] I see that even using a recent kernel [4.15-rc8] only Meltdown is covered. The two mitigations for Spectre [IBRS or kernel compiled

Re: [DNG] Help with Spectre and Meltdown

On 18/01/18 08:28, Hendrik Boom wrote: On Wed, Jan 17, 2018 at 09:25:19PM +0800, Tom Cassidy wrote: You can install the intel-microcode package. AMD processors have a similar amd-microcode package. https://packages.debian.org/intel-microcode It looks like the updated microcode with the

Re: [DNG] Help with Spectre and Meltdown

On Wed, Jan 17, 2018 at 10:14:13PM +0100, Adam Borowski wrote: > > > And I'm replacing my file server with one based on a MIPS processor. > > GnuBee? Yes. I'll see if it works when it gets here. -- hendrik ___ Dng mailing list Dng@lists.dyne.org

Re: [DNG] Help with Spectre and Meltdown

On 01/17/2018 05:17 PM, Dr. Nikolaus Klepp wrote: Am Mittwoch, 17. Januar 2018 schrieb Adam Borowski: [...] Grab a Pinebook. It's slow, but still faster than Raspberry Pi, and has two GB ram rather than one. For $89, you don't care that it's only a stop-gap before you can get a better one

Re: [DNG] Help with Spectre and Meltdown

It looks like the latest Firefox has mitigations in place for spectre and/or meltdown. Chrome will include them in the next update too I believe. https://blog.mozilla.org/security/2018/01/03/mitigations-landing-new-class-timing-attack/ > On 17 Jan 2018, at 23:00, jacksprat

Re: [DNG] Help with Spectre and Meltdown

On Wed, Jan 17, 2018 at 07:28:39PM -0500, Hendrik Boom wrote: > On Wed, Jan 17, 2018 at 09:25:19PM +0800, Tom Cassidy wrote: > > You can install the intel-microcode package. AMD processors have a similar > > amd-microcode package. > > > > https://packages.debian.org/intel-microcode > > > > It

Re: [DNG] Help with Spectre and Meltdown

On Wed, Jan 17, 2018 at 09:25:19PM +0800, Tom Cassidy wrote: > You can install the intel-microcode package. AMD processors have a similar > amd-microcode package. > > https://packages.debian.org/intel-microcode > > It looks like the updated microcode with the latest fixes is currently in >

Re: [DNG] Help with Spectre and Meltdown

on ARM alternative: ODROID C2 is a sub-100 pound/dollar single board computer like RaspberryPI3, but with 2 gbyte RAM and gigabit ethernet. it is a project as only Xubuntu is available as a ready-made Linux. I want one but can't afford time/effort. jacksprat

Re: [DNG] Help with Spectre and Meltdown

Am Mittwoch, 17. Januar 2018 schrieb Adam Borowski: > [...] > Grab a Pinebook. It's slow, but still faster than Raspberry Pi, and has two > GB ram rather than one. > > For $89, you don't care that it's only a stop-gap before you can get a > better one once such CPUs become available. Also, its

Re: [DNG] Help with Spectre and Meltdown

On 01/17/2018 02:15 PM, Cassandra of Troy wrote: Much appreciated from lurker(s) as well as the OP. Looking forward to unplugging this live USB stick and reading my mail on Jessie tomorrow morning. :) If any of you have the spare time to reply on or offlist, I value your opinions on whether

Re: [DNG] Help with Spectre and Meltdown

On Wed, Jan 17, 2018 at 03:27:16PM -0500, Hendrik Boom wrote: > On Wed, Jan 17, 2018 at 07:27:24AM +0100, marc wrote: > > Spectre has no patch in the conventional sense. But there > > are two types of things one can do: > > > > * Move to a processor which doesn't speculate :) with so many > >

Re: [DNG] Help with Spectre and Meltdown

On Wed, Jan 17, 2018 at 07:27:24AM +0100, marc wrote: > > Spectre has no patch in the conventional sense. But there > are two types of things one can do: > > * Move to a processor which doesn't speculate :) with so many > side effects. Processors found on the raspberry PI, for example, > are

Re: [DNG] Help with Spectre and Meltdown

Thanks for the replies. When I run the "spectre-meltdown-checker.sh" script [github.com/speed47] I see that even using a recent kernel [4.15-rc8] only Meltdown is covered. The two mitigations for Spectre [IBRS or kernel compiled with "retpoline" option with a retpoline-aware compiler] are harder

Re: [DNG] Help with Spectre and Meltdown

On Wed, Jan 17, 2018 at 09:25:19PM +0800, Tom Cassidy wrote: > You can install the intel-microcode package. AMD processors have a similar > amd-microcode package. > > https://packages.debian.org/intel-microcode > > It looks like the updated microcode with the latest fixes is currently in >

Re: [DNG] Help with Spectre and Meltdown

You can install the intel-microcode package. AMD processors have a similar amd-microcode package. https://packages.debian.org/intel-microcode It looks like the updated microcode with the latest fixes is currently in Debian testing so I guess you could grab it from there directly and install

Re: [DNG] Help with Spectre and Meltdown

Le 17/01/2018 à 13:59, vmlinux a écrit : On January 16, 2018 6:50:32 PM CST, KatolaZ wrote: [Snip] :: ::The only affected component is the kernel. Patch exist for jessie, ::AFAWN, there is no way to ::effectively patch Spectre. I haven't had time to actually read up on

Re: [DNG] Help with Spectre and Meltdown

On January 16, 2018 6:50:32 PM CST, KatolaZ wrote: [Snip] :: ::The only affected component is the kernel. Patch exist for jessie, ::AFAWN, there is no way to ::effectively patch Spectre. I haven't had time to actually read up on it, however, isn't there a micro code

Re: [DNG] Help with Spectre and Meltdown

On Wed, Jan 17, 2018 at 12:50:32AM +, KatolaZ wrote: [cut] > > The only affected component is the kernel. Patch exist for jessie, > ascii, and unstable, but only for Meltdown. AFAWN, there is no way to > effectively patch Spectre. > > The patch for Meltdown comes directly from Debian: > >

Re: [DNG] Help with Spectre and Meltdown

marc wrote on 17.01.2018 07:27: [...] > * Stop running code which you don't trust. That comes in two forms: > Don't enable javascript on your browser, and don't use cloud-based > systems or virtual hosts. Those things you don't want to do anyway > if you care about security. > > Not sure how

Re: [DNG] Help with Spectre and Meltdown

> I wanted to explore whether Devuan can provide a solution to the > Spectre/Meltdown fiasco. Is there a guide to what elements of Devuan > [jessie, ascii, ?] have been upgraded to address these issues? Spectre has no patch in the conventional sense. But there are two types of things one can

Re: [DNG] Help with Spectre and Meltdown

On Tue, Jan 16, 2018 at 11:33:41PM +, jacksprat wrote: > I wanted to explore whether Devuan can provide a solution to the > Spectre/Meltdown fiasco. Is there a guide to what elements of Devuan > [jessie, ascii, ?] have been upgraded to address these issues? > > If I need to move to ascii to