[Fsuk-manchester] Follow-up: MFS Meeting. Tue, 16 January. "Meltdown and

fsuk-manchester

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[Fsuk-manchester] Follow-up: MFS Meeting. Tue, 16 January. "Meltdown and

From:	Michael Dorrington
Subject:	[Fsuk-manchester] Follow-up: MFS Meeting. Tue, 16 January. "Meltdown and Spectre"
Date:	Sun, 28 Jan 2018 13:04:07 +0000
User-agent:	Mozilla/5.0 (X11; Linux i686 on x86_64; rv:52.0) Gecko/20100101 Thunderbird/52.5.2

On 09/01/18 20:44, Michael Dorrington wrote:
> Please feel free to forward this to those that would welcome it.
> 
> You can subscribe to the Manchester Free Software mailing list at:
> https://lists.nongnu.org/mailman/listinfo/fsuk-manchester
> 
> * Event: Manchester Free Software's January Meeting
> 
> * Talk: Meltdown and Spectre
> * Speaker: Michael Dorrington
> 
> * Date: Tuesday, 16th January 2018 (3rd Tuesday of the month)
> * Start time: 19:00
> * Finish time: 20:30 (social in Madlab until 21:00)

The fallout from Meltdown and, especially, Spectre continues.  This
includes predictions that Moore's Law (exponential growth in computing
power) will end:

https://www.theregister.co.uk/2018/01/24/death_notice_for_moores_law/

Post-meeting exercises for <s>the reader</s> participants (based on talk):

* How much physical RAM does your computer have?

* How much 'swap' does your computer have?

* Use lscpu (from `util-linux` package), or look in /proc/cpuinfo, to
see what "flags" your CPU has?
** Which CPU flags are to do with memory virtualisation / isolation?
(WARNING: time consuming question)

* Run:
  uname -a
  to find your current running kernel.

* Run
  zgrep CONFIG_PAGE_TABLE_ISOLATION -- /boot/config*
  to see if your running kernel has KPTI enabled.

* Run the `spectre-meltdown-checker` to see what your computer's
vulnerability level is.  On Debian, can be installed via backports:
** https://packages.debian.org/stretch-backports/spectre-meltdown-checker
*** https://backports.debian.org/Instructions/

Other topics discussed include the use of public Wi-Fi.  The Mozilla
Foundation has some safety advice on it:

https://advocacy.mozilla.org/en-US/safety/public-wifi

You might also want to checkout:

* https://noscript.net/
* https://www.eff.org/https-everywhere
* https://www.eff.org/observatory

Any preference on next month's talk?

M.
MFS Chair.

-- 
FSF member #9429
http://www.fsf.org/register_form?referrer=9429
http://www.fsf.org/about
"The Free Software Foundation (FSF) is a nonprofit with a worldwide
mission to promote computer user freedom and to defend the rights of all
free software users."

signature.asc
Description: OpenPGP digital signature

[Prev in Thread]

Current Thread

[Next in Thread]

[Fsuk-manchester] MFS Meeting. Tue, 16 January. "Meltdown and Spectre", Michael Dorrington, 2018/01/09
- [Fsuk-manchester] Reminder: MFS Meeting. Tue, 16 January. "Meltdown and Spectre", Michael Dorrington, 2018/01/15
- [Fsuk-manchester] Follow-up: MFS Meeting. Tue, 16 January. "Meltdown and Spectre", Michael Dorrington <=

Prev by Date: [Fsuk-manchester] Reminder: MFS Meeting. Tue, 16 January. "Meltdown and Spectre"
Previous by thread: [Fsuk-manchester] Reminder: MFS Meeting. Tue, 16 January. "Meltdown and Spectre"
Index(es):
- Date
- Thread