[–]▶ No.908567>>908620 >>908941 >>909319 >>911508 >>925377 [Watch Thread][Show All Posts]
From the aritcle:
News has just started spreading that researchers have sighted another eight Spectre like vulnerabilities in Intel processors, all resemble Spectre, four of them are critical. The new vulnerabilities are grouped and named as Spectre-ng. The newly discovered vulnerabilities would make it really easy to exploit a host from a simple VM.
German c't / Heise reports and breaks the news today, as the new vulnerabilities have not been made public just yet. There would be 'no doubt' that these are real vulnerabilities. While technical details are missing, the attack scenarios resemble close to what the Spectre vulnerabilities are.
Currently, most at risk are shared hosting providers, once you have access to your rented server-container, you could exploit the processor to retrieve secure data. All eight vulnerabilities share the same design problem that the "Meltdown and Spectre" vulnerabilities detailed as well - they are, so to speak, Spectre Next Generation ergo Spectre NG. c't mentions they have concrete information about Intel's processors and their patch plans. However, there are some indications that other processors are affected as well, at least some ARM CPUs are also vulnerable to some extent. Further research into whether and to what extent the AMD processor architecture is vulnerable at (if at all), is not yet known.
Intel is reportedly actively and nervously working on Spectre NG patches behind the scenes; other patches are developed in collaboration with the operating system manufacturers (Microsoft / Linux etc). When exactly the first Spectre NG patches and firmware updates will become available is not yet clear. According to information, Intel is planning at least two patch waves: a first one should start in May; a second is currently scheduled for August. For at least one of the Specter NG patches is already a specific date as it was Google's Project Zero that has found one of the vulnerabilities, on May 7 - the day before the Windows Patchday - the 90-day warning period expires. So it's likely that when the first patch would be released for Microsoft Windows. Microsoft is preparing CPU patches: they appear to be in the form of optional Windows updates, and not so much microcode updated (firmware). The PC motherboard and server manufacturers probably need too long for BIOS updates.
Intel classifies four of the Specter NG vulnerabilities as "high-risk"; which in Intel language is translated as: super dangerous. The danger of the other four is rated as medium. According to c't/Heise, Specter-NG risks and attack scenarios are similar to those of Specter - with one exception. C't calls the Intel vulnerabilities and their procs a Swiss Cheese due to the many security holes.
https://archive.fo/T71fQ
https://www.guru3d.com/news-story/eight-new-spectre-variant-vulnerabilities-for-intel-discovered-four-of-them-critical.html
▶ No.908573>>908576 >>908888 >>909693 >>937434
Does it matter when 99% of regular computer users are running crapware?
Does it matter when phones are running google os, soon fuschia, on arm?
IT DOESN'T MATTER
to them the very few people who care are not important, times when minority could change anything are long gone, at least two thousand years
▶ No.908576
>>908573
>Currently, most at risk are shared hosting providers,
it matters when the jews start having data leaked and loose money.
▶ No.908579>>908582 >>908643 >>908810 >>909058 >>934607
Support RISC-V!
When lowRISC comes out I'm buying. Will make a little NAS with one.
https://riscv.org/
http://www.lowrisc.org/
There's also HiFive, but it's 1000 bucks. It does have 8GB ECC ram though which is unique for a SBC
https://www.sifive.com/products/hifive-unleashed/
▶ No.908581
Things like this is the reason why I have to disable Javascript and shit ton of other Web technologies. I will buy the RPI 4 when it comes out and replace my current computer with it.
▶ No.908582
>>908579
>There's also HiFive
It's a proprietary chip unlike lowrisc
▶ No.908584
Hahahahaha, the ride never ends!
▶ No.908614
▶ No.908620>>908790
>>908567 (OP)
What in the actual fuck is an Intel in CY+3.
▶ No.908643
>>908627
Schway.
>>908579
I'm might try a dev board for the lowrisc, have they said anything about a price tag on the thing? I'm liking what I'm seeing so far.
▶ No.908653>>908692
>>908627
What is the elephant book?
▶ No.908692>>909003
>>908653
It's the User's Guide.
▶ No.908790
Cool.
>>908620
A miserable pile of backdoors.
▶ No.908792
>>908627
Is that a USB stick plugged in next to the red digit display?
▶ No.908805
when they make the patch to fix it, they will introduce new backdoors
so CIA has access to your PCs always
▶ No.908810>>908840
▶ No.908840>>909324
>>908810
No. Backdoors can be inserted but never hidden.
▶ No.908941>>909646 >>909882
>>908567 (OP)
Bump, looks like AMD's back on the menu boys!
I wonder if Intel's been sneaking these in on purpose to make it easy to assault VM farms?
▶ No.909003
>>908692
It's weird because I actually used an Osborne 1 in the early 80's, and don't remember that elephant book. Instead it had a couple binders, and the pages were printed on cardstock. Pretty fucking high quality stuff, and never saw anything like it again. Even my Amstrad CPC's manual was just regular paper in a ring-bound manual. Same with Amiga 500.
Oh, and those Osborne books had everything from learning to get around in the shell and batch programming, using Wordstar and Supercalc, all the way to BASIC and assembly language programming (including explanation of all opcodes, memory layout, etc.)
▶ No.909051
▶ No.909055>>909364
>>908627
tfw your PSP is faster than that computer
▶ No.909058
>>908579
Has anyone got HDMI, X-windows working on it yet?
▶ No.909319>>909401 >>926663
>>908567 (OP)
How could a processor be this bad? No wonder there's so many update on linux kernel lately.
▶ No.909326
▶ No.909343
Why are grayhats not using these against elite pizzahosts?
I cant believe such small sites like pingpong pizza and dr.pong are on dedicated server hosts just for their masonic cabal cannibals.
Intel must be in on it.
▶ No.909364>>909521
>>909055
>being this new
Most microcontrollers are faster than that computer.
▶ No.909401
>>909319
>"bad"
Implying these aren't extremely clever backdoors which have enabled the gathering of countless petabytes of intelligence.
▶ No.909406>>909522
Step one:
>don't run proprietary third party binary code on your machine
Step two:
>Spectre btfo
▶ No.909521
>>909364
That is, my PSP inside of my Ryzen.
▶ No.909522>>909767
>>909406
Also you have to refuse to use any machines that run 3rd party binaries on the same machines as have your data. So no cloud for you (unless it's already encrypted - then it's not as big of a deal, but they could still possibly find out file dates, which could be used for intimidation purposes).
▶ No.909632
sister thread:
>>>/pol/11552103
▶ No.909646>>909649 >>909864
>>908941
5 bucks says if AMD gains the upper hand, they will pull a Jewtel and jack up their prices to the sky.
Do you honestly expect AMD to be any different from Jewtel?
▶ No.909649
>>909646
I'm completely fine with them commanding a market price for their products, even if this means having it jacked up skywards because there's no competition. As long as they don't engage in Intelaviv-style jewry like artificial limitations on processors' instruction set extensions, needlessly breaking mobo compatibility or locking clocks on all but the highest-end "unlocked" premium processor model.
▶ No.909693
▶ No.909767>>909839
>>909522
>Using (((cloud))) in any form other than remote disk for locally mounted encrypted partition in current year
We facebook now, yay! I fucking love technology!
▶ No.909839
>>909767
Technologe loves you too up your ass.
▶ No.909864
>>909646
no. I don't believe AMD is inherently better than Intel, but a balance must be maintained to keep them in check. Right now, the balance has been lost.
▶ No.909882>>911633
>>908941
Yes! Remember to always buy AMD
▶ No.911483
Intel said they'd have a fix by this week at first, but it turns out it's been delayed for at least another two weeks.
Intel's such a hot mess. Sell your stock now!
▶ No.911500
>>908888
Not a waste of quads for once.
▶ No.911508
>>908567 (OP)
>New Generation
Neon Genesis.
▶ No.911633
>>909882
I want to fug amada
▶ No.917079
Did Intel finally get around to fixing Spectre yet?
▶ No.917137>>917160
▶ No.917160
>>917137
>literal pedophile faggot calling other people faggots
▶ No.925148
So is Incel going to fix any of these issues or are they baked too deep into the hardware?
▶ No.925377>>925593
>>908567 (OP)
>Intel classifies four of the Specter NG vulnerabilities as "high-risk"; which in Intel language is translated as: super dangerous.
What the fuck?
▶ No.925593>>934694
>>925377
Welp time to haul out the old G5 Powermac.
▶ No.926663
>>909319
>processor runs tasks out of order
>turns out if you tell it to read protected memory while the processor is running a privileged task from an unprivileged task it'll just read it
It's shit's a backdoor.
The NSA is probably having a funeral for one of their favorites, but don't worry, there are many others.
▶ No.934607>>934693
>>908579
Going to order a Talos II Lite soon, screw Incel.
▶ No.934693>>935245
>>934607
>AMD isn't a thing...
▶ No.934694
>>925593
The POWER Macs were shown to be vulnerable to Specter-class vulns as well.
▶ No.935245>>935269
>>934693
>x86
Still botnet.
▶ No.935269>>935299 >>935358
>>935245
>LARPnigger
Still retarded
so I can make cute assertions too
▶ No.935299
>>935269
Yeah but yours aren't based on any facts, unlike his. Because you're a fucking Intel shill.
▶ No.935358>>935443
>>935269
What are SMM and PSP?
▶ No.935425
Can someone design a modernish libre CPU and get Zeloof to make it already, I'm sick of this crap
▶ No.935443>>935452 >>935462
>>935358
PSP is based on ARM TrustZone and has nothing to do with x86-64 itself. Stay a LARPNigger
▶ No.935452>>937778
>>935443
You're a massively salty shill. The PSP is located in every AMD processor since 2012. x86 cuckolds are so fucking weak that they let other processor archetechtures into their own processors. Not to mention that x86 is bloated to shit with old instructions from the 8086 that don't even function properly (like AAA) and Intel is forced to keep their bugs to maintain compatablitly.
https://www.youtube.com/watch?v=lR0nh-TdpVg
▶ No.935462>>935698
>>935443
ARM is shit
AMD is better for x86 and is still inferior to ARM
▶ No.935698
>>935462
> D-don't bin your Intel goy
> t. cianigger
▶ No.935707>>935710 >>935726
Hello /tech/ my name is Shlo...err...Jerry and I'm here to give you tech tips how to secure your Intel box! Unplug the network cable. What's that, your box is a notebook? Open 'er up and disconnect the WiFi antenna from the mainboard! Easy as taking a shekel from a newborn jew! What's that, your box is a server? I don't see the problem in this case. Servers are meant to serve information are they not? In fact your purpose is to serve a higher purpose, goy. Shek ke ke ke ke ke!
▶ No.935710
>>935707
Weak copypasta. Make it a bit more subversive will ya?
▶ No.935726
>>935707
Don't put a punchline six words into the joke, retard
▶ No.937434
>>908573
>massive hardware security flaws don't matter because Joe Average's WoW character isn't important
Hahahaha Intel shill's latest tack. What a bunch of failures.
▶ No.937778
>>935452
>PSP is the same as IME
wrong