Re: Post : INTEL’S SECURITY FLAW IS NO FLAW
techlists at phpcoderusa.com
techlists at phpcoderusa.com
Thu Jan 11 08:41:47 MST 2018
While this article may not be factual, it is completely within the realm
of possibilities. This is a huge problem and there may be HUGE
consequences.
What I'd like to know is how these issues persisted for over 20 years
without detection. I assume Intel, AMD and the other chip manufactures
have some really smart people on staff. Given that, how did these
issues, that are basic to the CPU functionality, become built in without
detection (or functionality left out). How is it that some guy reading
the CPU manual discovered he could trick the CPU into spilling it's
cache so he can have access to other programs data. How is it that
under certain circumstances Kernel memory can be accessed giving away
the store.
I've read these issues may have persisted as far back as 1995. How does
that happen? How does an army of engineers miss this for 23 years? How
do you explain that?
That means lots of people came and went. There should have been lots of
QA... for 23 years.
How does this happen? Only two ways I can see 1) sloppy work, or 2)
intentionally.
We all know that every phone call and electronic message is stored in
Government warehouse(s). We have all heard that it is possible to
function our cellular phones remotely so others can spy on us. And there
is much more....
If this was done for the Gov. Maybe it was done for national security
-- not meant to be used against U.S.citizens. Maybe it was done (if
intentional) to give the Gov the ability to spy on our adversaries.
Maybe it started out innocently.
The bottom line is we have a HUGE problem that will take years to work
though. And we have a HUGE question of how did this persist for 23
years without detection?
On 2018-01-10 22:03, Steve Litt wrote:
> On Wed, 10 Jan 2018 09:39:54 -0700
> techlists at phpcoderusa.com wrote:
>
>> Hi,
>>
>> Who knows if this is true, however here it is:
>>
>> https://www.reddit.com/r/CBTS_Stream/comments/7pb7pv/intels_security_flaw_is_no_flaw/?st=jc9a2mp7&sh=7ef2e2c1
>
> I would hope people smart enough and possessing enough knowledge of
> logic to program computers would have the smarts and logic not to pass
> along "information" like this, even with the "who knows if this is
> true" disclaimer. I didn't see one reference to a remotely credible
> source, and I saw an obvious political agenda in both the article and
> the comments.
>
> I went up the URL to https://www.reddit.com/r/CBTS_Stream/ and still
> saw nothing but drivel from wannabe poser internet journalists making
> up unsupported pseudo-speculations. No different from the tabloids at
> the checkout line, except probably less credible.
>
> Passing along a URL to a sewer site like this is a disservice to all,
> and lowers your credibility, "who knows if this is true" not
> withstanding. I hope nobody passes this further, because it's almost
> certainly just plain bullshit.
>
> SteveT
>
> Steve Litt
> December 2017 featured book: Thriving in Tough Times
> http://www.troubleshooters.com/thrive
> ---------------------------------------------------
> PLUG-discuss mailing list - PLUG-discuss at lists.phxlinux.org
> To subscribe, unsubscribe, or to change your mail settings:
> http://lists.phxlinux.org/mailman/listinfo/plug-discuss
More information about the PLUG-discuss
mailing list