Posts: 188
Threads: 32
Joined: Aug 2017
Reputation:
0
(02-28-2018, 02:51 PM)trinidad link Wrote: https://wiki.ubuntu.com/SecurityTeam/Kno...wn/TechFAQ
I doubt microcode updation will ever appear for anything older than Skylake, and though Intel is already facing over 30 litigations I expect class actions to branch out to include OEMs Dell, HP, Lenovo, and Asus. We've only just begun in Linux with retpoline and it's going to be an application by application case instance without microdode updation for older CPUs. Worse off MS is riddled with potential sleeper applications and the Spring update is probably going to kill off hordes of current Windows 10 users on machines older than Skylake who will find themselves unable to connect to their financial institutions.
TC
Thanks for all this info, some of which I think (!) I understand, a bit.
I'm using 2 laptops. My i5 CPUs are pre-Skylake ... not sure about the meaning of microcode issues, but I think you're saying it may become a serious problem for those on pre-Skylake cpu computers. Soon?
I use an i5 laptop (1) (single partition) windows 7 ( to run windows-based cad) and so far this year I've not had to go online with it and I don't intend to.
But it does get some files transferred to it (on SD cards or usb) from my i5 linux Lite laptop (2) (dual-boot) which I use online - Firefix & Chromium. I'm not sure if a Windows bug can get onto LL (2) then over to the other laptop (1) running win7?
Longer term - should I be putting money in a piggy-bank for a new computer? Or could I fit new CPU?
SN. I hope my reply has been useful - click Thank on the left.
Posts: 682
Threads: 98
Joined: Apr 2014
Reputation:
0
(02-28-2018, 02:51 PM)trinidad link Wrote: https://wiki.ubuntu.com/SecurityTeam/Kno...wn/TechFAQ
I doubt microcode updation will ever appear for anything older than Skylake, and though Intel is already facing over 30 litigations I expect class actions to branch out to include OEMs Dell, HP, Lenovo, and Asus. We've only just begun in Linux with retpoline and it's going to be an application by application case instance without microdode updation for older CPUs. Worse off MS is riddled with potential sleeper applications and the Spring update is probably going to kill off hordes of current Windows 10 users on machines older than Skylake who will find themselves unable to connect to their financial institutions.
TC
So what are we saying here please? Are we saying, even with the patches from the recent Kernel update for LL, because of thepre skylake CPUs, our older machines are still vulnerable even when J's test reports no vulnerabily.
I.e ALL older hardware is now "junk" if used "online".
Can not the anti virus / malware boys evolve their products to screen for "code" that would exploit these vulnerabilities.?
Very confused as to what all this will mean for the average user. Does it mean online shopping/ banking etc is potentially now a nono!! ??
2006 - HP DC7700p ultraslim Desktop Intel 6300 cpu 4GB Ram LL3.8 64bit.
2007 - Fujitsu Siemens V3405 Laptop 2 GB Ram LL3.6 32bit. Now 32bit Debian 9 + nonfree.
2006 - Fujitsu Siemens Si1520 Laptop Intel T720 cpu 3GB Ram LL5.6 64 Bit
2014 - Fujitsu Siemens Lifebook E754 Intel i7 4712MQ 16GB Ram LL6.6
2003 - RETIRED Toshiba Satellite Pro A10 1 GB RAM LL2.8 32bit
Posts: 1,511
Threads: 140
Joined: Mar 2016
Reputation:
0
The link below is one of the better explanations of the retpoline mitigation.
https://support.google.com/faqs/answer/7625886
This link is the "claimed" status of Intel's micocode updation which should be taken sceptically not optimistically.
https://newsroom.intel.com/wp-content/up...idance.pdf
This is from my 5year old AMD A8 HP.
https://imgur.com/a/bWhLr
TC
All opinions expressed and all advice given by Trinidad Cruz on this forum are his responsibility alone and do not necessarily reflect the views or methods of the developers of Linux Lite. He is a citizen of the United States where it is acceptable to occasionally be uninformed and inept as long as you pay your taxes.
Posts: 1,511
Threads: 140
Joined: Mar 2016
Reputation:
0
News
1) Well Intel has made stable microcode available now as far back as Sandy Bridge, however OEM's Dell and HP are still lagging behind in the implementations. Microsoft continues to be ahead of the curve on the whole issue though the latest updations have install issues as well due to the lagging OEM implementations. I have succeeded with a couple of W10 Dell Sandy Bridge boxes but it cannot be done without resorting to the CLI so everyday users are unlikely to install the mc mitigations.
2) New security studies from AMD are dismal for some of their CPU's. See the link below.
https://www.amdflaws.com/
3) Being a regular Debian user I am a bit spoiled when it comes to updates. Debian stable is slow and methodical about such things. But I also use both Ubuntu and LL where update schedules are far denser and hectic. I have to remind myself that so many of the current issues are linked to S/M and Intel. Ubuntu has been on top of the issues since they began and the devs have worked very hard to deal with the changes for their users. Updation was not always so intense with Linux in general, but it is good to remember that Linux is a community and as such more in touch with its own reality in more diverse ways than any corporate entity could ever hope to be. It is discouraging what corporate OEMs have done to everyday people, but it is wonderful to watch the Linux community respond.
TC
All opinions expressed and all advice given by Trinidad Cruz on this forum are his responsibility alone and do not necessarily reflect the views or methods of the developers of Linux Lite. He is a citizen of the United States where it is acceptable to occasionally be uninformed and inept as long as you pay your taxes.
Posts: 188
Threads: 32
Joined: Aug 2017
Reputation:
0
Trinidad - thanks for keeping us up-to-date!! Much appreciated.
SN. I hope my reply has been useful - click Thank on the left.
Posts: 188
Threads: 32
Joined: Aug 2017
Reputation:
0
Hi Jerry,
for me your post is blank. Maybe my firefox settings are detecting something considered insecure and blocking it.
SN. I hope my reply has been useful - click Thank on the left.
Posts: 1,849
Threads: 21
Joined: Sep 2015
Reputation:
0
(03-29-2018, 09:46 PM)Searchernow link Wrote: Hi Jerry,
for me your post is blank. Maybe my firefox settings are detecting something considered insecure and blocking it.
It's an image, I can see... maybe slow loading or FF??
(03-29-2018, 02:39 AM)Jerry link Wrote: ![[Image: O4EHqi3.png]](https://i.imgur.com/O4EHqi3.png)
LL4.8 UEFI 64 bit ASUS E402W - AMD E2 (Quad) 1.5Ghz - 4GB - AMD Mullins Radeon R2
LL5.8 UEFI 64 bit Test UEFI Kangaroo (Mobile Desktop) - Atom X5-Z8500 1.44Ghz - 2GB - Intel HD Graphics
LL4.8 64 bit HP 6005- AMD Phenom II X2 - 8GB - AMD/ATI RS880 (HD4200)
LL3.8 32 bit Dell Inspiron Mini - Atom N270 1.6Ghz - 1GB - Intel Mobile 945GSE Express -- Shelved
BACK LL5.8 64 bit Dell Optiplex 160 (Thin) - Atom 230 1.6Ghz - 4GB-SiS 771/671 PCIE VGA - Print Server
Running Linux Lite since LL2.2
Posts: 508
Threads: 55
Joined: Jan 2015
Posts: 3,237
Threads: 125
Joined: Jul 2014
Reputation:
0
Loading quickly for me on Firefox and Opera browsers.
![[Image: X5qGkCg.png]](http://imgur.com/X5qGkCg.png)
![[Image: 0op1GNe.png]](http://i.imgur.com/0op1GNe.png)
![[Image: LgJ2mtP.png]](http://i.imgur.com/LgJ2mtP.png)
![[Image: vLZcFUE.png]](https://imgur.com/vLZcFUE.png)
![[Image: lrUHro3.jpg]](http://i.imgur.com/lrUHro3.jpg)