Skip to content
View in the app

A better way to browse. Learn more.

Unraid

A full-screen app on your home screen with push notifications, badges and more.

To install this app on iOS and iPadOS
  1. Tap the Share icon in Safari
  2. Scroll the menu and tap Add to Home Screen.
  3. Tap Add in the top-right corner.
To install this app on Android
  1. Tap the 3-dot menu (⋮) in the top-right corner of the browser.
  2. Tap Add to Home screen or Install app.
  3. Confirm by tapping Install.

Intel Security Vulnerabilities on New Build

Featured Replies

Hello,

 

What are the implications of the numerous Intel vulnerabilities that have come out the past 2 years?  I need to build a new server soon, and am concerned about the Intel security vulnerabilities.

 

I'm using the server mostly for a media and backup server.  I have OpenVPN configured, along with Plex and Nextcloud routed through a reverse proxy.  

 

How concerned should I be with my current Intel server and any future LGA2011/2011-3 server I build?

 

Thank you, any help would be appreciated.

12 minutes ago, aidenpryde said:

How concerned should I be with my current Intel server and any future LGA2011/2011-3 server I build?

In my opinion, about as much as you worry about getting hit by a meteorite on any given day.

 

Yes, these are all security vulnerabilities.  Are they likely?  Probably not.  They are proof of concepts.  Are they even likely on a home server?  Really doubtful.

 

Sure, in *theory* a piece of malicious software that manages somehow to get itself and installed on your server (very remote odds to begin with) would technically be able to discern through very careful timings the contents of memory (not hard drives, but RAM).  But would that information actually be useful?  Once again extremely unlikely.

 

These mitigations when push comes to shove are most for data centers because it would allow (in theory) someone to rent out time on a VM running on a server and be able to discern the data that another company has on their VM running on that same server.

 

Intel's recommendation to completely disable hyperthreading is to render yourself safe is ignored by everyone.

 

Personally, I disable all the mitigations for these security concerns that aren't handled via micro-code.  I'd rather have the speed of my processor back to what it's supposed to be.

 

But, if you are a member of ISIS, the Black Panthers, or (god forbid) the Mickey Mouse Club then it might not be a bad idea to use all the mitigations and also disable hyperthreading as the NSA obviously has their fingers on you.  They are the ones after all who are responsible for the most malicious piece of software ever (Stuxnet)

Archived

This topic is now archived and is closed to further replies.

Account

Navigation

Search

Search

Configure browser push notifications

Chrome (Android)
  1. Tap the lock icon next to the address bar.
  2. Tap Permissions → Notifications.
  3. Adjust your preference.
Chrome (Desktop)
  1. Click the padlock icon in the address bar.
  2. Select Site settings.
  3. Find Notifications and adjust your preference.