[SOLVED] AMD allegedly has its own Spectre-like security flaws
SlackwareThis Forum is for the discussion of Slackware Linux.
Notices
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
It's not that AMD doesn't have problems, it's just that it has been blown *WAY* out of proportion by some person(s) looking for fame or money.
The ability to install a rootkit in the hardware is way out of proportion?
Just imagine that your computer will be hacked indifferent how many times you reinstall the operating system and what you use, or how careful you will treat your hard-drives with a 10Kg hammer...
OK, those vulnerabilities are not exactly for script-kiddies, but I bet that the Men in Black from the honorable Three Letters Companies would not be so happy that those things became public.
Last edited by Darth Vader; 03-21-2018 at 02:08 PM.
Distribution: Debian Sid AMD64, Raspbian Wheezy, various VMs
Posts: 7,680
Rep:
Quote:
Originally Posted by Darth Vader
The ability to install a rootkit in the hardware is way out of proportion?
Just imagine that your computer will be hacked indifferent how many times you reinstall the operating system and what you use, or how careful you will treat your hard-drives with a 10Kg hammer...
OK, those vulnerabilities are not exactly for script-kiddies, but I bet that the Men in Black from the honorable Three Letters Companies would not be so happy that those things became public.
Motherboards are cheaper than storage so, if you're paranoid, check your firewall* logs and make you choice?
*ARM device, etc...
The ability to install a rootkit in the hardware is way out of proportion?
Did you miss the part where it said, "require administrative access to the system"?
Quit sensationalizing it. Honestly IMO you have a "The end is nigh" attitude about everything and anything and it gets boring.
Sure Windows might have some issues there, but *less likely* with Linux as long as you follow the common sense guidelines. Unless you are handing out your root password. I'm not saying impossible, just *less likely*.
Plus, I don't know about you, but I have a decent firewall (70,000+ blocked & updated nightly), a decent host file (724,000+ lines) and I don't give out my root password.
The real issue that I see is that the only things not being updated for these hardware level exploits are "older" routers and modems that after what a few years the manufacturer refuses to push firmware updates (Linksys).
Did you miss the part where it said, "require administrative access to the system"?
Quit sensationalizing it. Honestly IMO you have a "The end is nigh" attitude about everything and anything and it gets boring.
Sure Windows might have some issues there, but *less likely* with Linux as long as you follow the common sense guidelines. Unless you are handing out your root password. I'm not saying impossible, just *less likely*.
Plus, I don't know about you, but I have a decent firewall (70,000+ blocked & updated nightly), a decent host file (724,000+ lines) and I don't give out my root password.
The real issue that I see is that the only things not being updated for these hardware level exploits are "older" routers and modems that after what a few years the manufacturer refuses to push firmware updates (Linksys).
Why you insists on Linux, its administration rights and on-line attacks? That's bullshit.
Just imagine a rogue guy visiting ONE TIME in a night a whatever office, booting ONE TIME the manager's computer from a live system (instant administrative rights), then installing an basically undetectable hardware rootkit or keylogger. That's industrial espionage, and could well happen.
Also, could happen some rogue guy to visit your hotel room, where you leave your laptop, doing the same things. And if happened that you are part of some nasty anti-governmental organization in particular countries, that can ends with you (and others) as client(s) of a firing squad. Shit happens.
Last edited by Darth Vader; 03-21-2018 at 04:06 PM.
Just imagine a rogue guy visiting ONE TIME in a night a whatever office, booting ONE TIME the manager's computer from a live system (instant administrative rights), then installing an basically undetectable hardware rootkit or keylogger. That's industrial espionage, and could well happen.
Also, could happen some rogue guy to visit your hotel room, where you leave your laptop, doing the same things. And if happened that you are part of some nasty anti-governmental organization in particular countries, that can ends with you (and others) as client(s) of a firing squad. Shit happens.
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.
