spectre-meltdown-checker
linux
Our great sponsors
spectre-meltdown-checker | linux | |
---|---|---|
14 | 980 | |
3,806 | 170,074 | |
- | - | |
7.4 | 10.0 | |
2 months ago | 3 days ago | |
Shell | C | |
- | GNU General Public License v3.0 or later |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
spectre-meltdown-checker
- Linux Mint: It use mitigation of intel cpu bug?
- Package to Notify/check for Kernel Vulns?
-
Spectre Meltdown Checker gives summary of 1 red in Debian but 0 red in Fedora 36.
I tried the latest SMC from https://github.com/speed47/spectre-meltdown-checker and all were in green. :-)
-
AutoPWN Suite | I've created a python script you can use to scan your systems for vulnerabilities.
How is this project different spectre-meltdown-checker?
-
Can a laptop from 2012 be a viable home server?
OpenBSD will disable all but the first thread on any Intel processor by default. I'm assuming that these models are too old to have microcode updates addressing the Spectre exploits (Meltdown, Foreshadow, Fallout, Zombieload, RIDL etc.), and disabling SMT/HT might be the most secure thing to do by default.
This script produces a good assessment of Spectre problems for a wide variety of CPUs. I know that they are difficult to exploit, and the mitigations are disabled by many because of their performance impact.
https://github.com/speed47/spectre-meltdown-checker
-
Intel Finds Bug in AMD's Spectre Mitigation, AMD Issues Fix
You can confirm the status of the mitigations using InSpectre for Windows, or Spectre & Meltdown Checker if you're on a unix based system.
-
What kernel parameters do you use?
You can run https://github.com/speed47/spectre-meltdown-checker
-
Any opinion about NUC as home server?
He's probably referring to the class of vulnerabilities checked by this script: https://github.com/speed47/spectre-meltdown-checker. It's not just Intel CPUs that were affected, AMD and ARM also have some vulnerabilities (I just ran it on an ARM v7 to see) although maybe not as many.
-
How can secure the host from the guest using virt manager?
utilise microcode updates (should be by default, check)
- Spectre and Meltdown Checker
linux
-
Linus Torvalds adds arbitrary tabs to kernel code
These are a bit easier to see what's going on:
https://github.com/torvalds/linux/commit/d5cf50dafc9dd5faa1e...
https://github.com/torvalds/linux/blob/d5cf50dafc9dd5faa1e61...
Unfortunately Github doesn't have a way to render symbols for whitespace, but you can tell by selecting the spaces that the previous version had leading tabs. Linus changed it so that the tokens `default` and the number e.g. `12` are also separated by a tab. This is tricky, because the token "default" is seven characters, it will always give this added tab a width of 1 char which makes it always layout the same as if it were a space no matter if you use tab widths of 1, 2, 4, or 8.
- Show HN: Running TempleOS in user space without virtualization
-
PfSense Software Embraces Change: A Strategic Migration to the Linux Kernel
There was also a Gentoo effort to run atop FreeBSD[0]. The challenge of course is that afaik none of the BSD kernel ABIs are considered stable. The stable interface is the BSD libc. That said, with binfmt_misc, I don't see a reason you couldn't just run (at least some) FreeBSD binaries on Linux with a thin syscall translation layer (rather something like qemu-system) and then your layer hooked via binfmt_misc. I'm not aware of anyone who has done this for FreeBSD, but prior efforts existed as alternate binfmts for SysVr4/5 ELF binaries[2]. Either way would take some elbow grease, but you *might* even be able just reuse binfmt_elf and just have a new interpreter for FreeBSD elf.
[0] https://wiki.gentoo.org/wiki/Gentoo_FreeBSD
[1] https://docs.kernel.org/admin-guide/binfmt-misc.html
[2] https://github.com/torvalds/linux/blob/master/fs/binfmt_elf....
-
Improvements to static analysis in GCC 14
> The original less-than check was deemed incorrect
It was only deemed incorrect because of an information leak. Not because it's a valid use-case for user space to copy smaller portions of *hwrpb into user space. https://github.com/torvalds/linux/commit/21c5977a836e399fc71...
- Linus Torvalds accepts a merge commit to the Linux kernel
-
TinyMCE (also) moving from MIT to GPL
Correct. And the combined work needs to carry the MIT license text and copyright attributions for the MIT software authors. With binary distribution it must also be overt, not hidden in some source code drop, but directly accompanying the binary.
Many people who talk about relicensing never credit the MIT developers or distribute the MIT license text. "Because it's GPL now."
I don't think that you believe that, but many developers do.
Some don't see the need for source code scans for Open Source compliance, because the license.txt says GPL, so it's GPL. Prime example is the Linux kernel. There is code under different licenses in there, but people don't even read https://github.com/torvalds/linux/blob/master/COPYING till the end ("In addition, other licenses may also apply.") and conclude it's simply GPL 2 and nothing else.
Also be aware that sublicensing is not the same as relicensing.
-
Linus Torvalds is looking for a more modern GUI editor
> Does he have something against it?
He notoriously hates GNU Emacs, yes.
https://marc.info/?m=122955159617722
https://github.com/torvalds/linux/blob/master/Documentation/...
-
The Linux Kernel Prepares for Rust 1.77 Upgrade
So If we would only count code and not comments, it is only 9489 LoC Rust. Which would be about 0.03% and if we take all lines and not only LoC it would be around 0.05%
[0] https://github.com/XAMPPRocky/tokei
[1] https://github.com/torvalds/linux/commit/b401b621758e46812da...
-
Proposed Windows NT sync driver brings big Wine/Proton performance improvements
AIUI fsync is built on futex_waitv which has been upstreamed. So this has to be more than that.
https://github.com/torvalds/linux/commit/a0eb2da92b715d0c97b...
-
Tell HN: GitHub no longer readable without JavaScript
git clone --no-checkout --depth 1 https://github.com/torvalds/linux.git $dir
What are some alternatives?
intel-undervolt - Intel CPU undervolting and throttling configuration tool
zen-kernel - Zen Patched Kernel Sources
awesome-unix - All the UNIX and UNIX-Like: Linux, BSD, macOS, Illumos, 9front, and more.
DS4Windows - Like those other ds4tools, but sexier
Brace - Toolkit compatible with multiple Linux distros that allows for installation of handpicked applications, along with corresponding configs that have been tuned for reasonable privacy and security.
winapps - Run Windows apps such as Microsoft Office/Adobe in Linux (Ubuntu/Fedora) and GNOME/KDE as if they were a part of the native OS, including Nautilus integration.
systemd - The systemd System and Service Manager
Open and cheap DIY IP-KVM based on Raspberry Pi - Open and inexpensive DIY IP-KVM based on Raspberry Pi
KTweak - A no-nonsense kernel tweak script for Linux and Android systems, backed by evidence.
serenity - The Serenity Operating System 🐞
mg - Micro (GNU) Emacs-like text editor ❤️ public-domain
DsHidMini - Virtual HID Mini-user-mode-driver for Sony DualShock 3 Controllers