home.social

#mitigations — Public Fediverse posts

Live and recent posts from across the Fediverse tagged #mitigations, aggregated by home.social.

  1. I get that people scoff at the idea of disabling cpu , saying that the performance impact isn't big enough to bother, but on some architectures, like AMD Zen1, setting `mitigations=off` in the kernel command line is literally a night and day difference. It's like I have a whole new machine once I enabled it on my thinkpad C13.

  2. For folks building systems with a more paranoid , do you use any "slub_debug" features beyond "slub_debug=ZF" (redzoning and verification) for security flaw ?

    e.g. "slub_debug=P" has been superseded by "init_on_alloc=1 init_on_free=1"...

    The flags are listed here:
    docs.kernel.org/mm/slub.html

  3. Boyanton et al, 2022: Supposing that a concurrent diagnosis of #pharyngitis & presence of the microbe constitutes a case of group A #Streptococcus pharyngitis (GAS-P), after early #COVID19 #mitigations, GAS-P diagnoses came down by 81.6%.
    reddit.com/r/COVIDZero/comment

  4. @Empathy1st There’s a swarm here already, & until we address air quality, and preemptively wearing #masks, reducing the public health services load, #variants will outmanoeuvre #Vaccine development..

    ..we’re reaching the point where we have no alternative but to also examine the basis of our immune systems aren’t we? Like, lower intestine walls & their interactions with microbes, with a view to immune fortification. An extra layer on the ‘Swiss cheese’ model of #mitigations. #Fibre #prebiotic

  5. Knowledge base of #exploit #mitigations available across numerous operating systems, architectures and applications and versions by @nccgroupinfosec

    github.com/nccgroup/exploit_mi

  6. Things get really fun with treewide Linux kernel changes when you trip over imported code from external projects. Cleaning up fake flexible arrays continues in the ACPICA project:
    github.com/acpica/acpica/pull/

  7. A look at the impact of mitigations for Spectre & Cie.

    phoronix.com/scan.php?page=art

    It hurts deeply :( Does it really make sense to have those mitigations enabled on a personal computer? I get it for VMs in cloud, but at home?

    #linux #mitigations #performance #spectre #redplotline

  8. Our #hackerspace @chaospott is planning a series of #CTF challenges based on #FreeBSD VMs with custom prepared images to teach about #vulnerabilities and #mitigations in the 64-bit #x86 #microarchitecture, what an #OS has to take care of, and so on. Quite exciting! ✨👩🏻‍💻✨