Linux CPU Security Exploit

What's Up With Eskimo's Community!

Moderators: Nanook, carl

Post Reply
User avatar
Nanook
Posting Freak
Posts: 335
Joined: Tue Jun 25, 2013 10:08 pm
Location: Shoreline
Zodiac:
Contact:

Linux CPU Security Exploit

Post by Nanook » Tue Mar 26, 2019 6:25 pm

Warning!!!! This security exploit has not been widely published but it IS actively being exploited. Someone caused my server that houses our customers /home directories to spontaneously reboot trying to exploit it. Fortunately the kernel logged their attempts. See: https://www.kernel.org/doc/html/latest/ ... /l1tf.html In our cause I performed measurements on system load, web page loading times and latency with and without this CPU feature turned off and in our case it made no measurable difference so I turned it off with: echo 'off' > /sys/devices/system/cpu/smt/control. I put this in /etc/rc.local which is enabled on our machines for this and some other adjustments.



Post Reply

Who is online

Users browsing this forum: No registered users and 61 guests