Adding this to #infosec
If you use Debian: you're not getting the recent Intel CPU bugfixes because Intel updated the firmware package's license to state that it's not redistributable.
If use Linux other than Debian and have the bugfixes: ask your maintainers why they're distributing software they're not legally allowed to.
And in any case: next time you purchase a CPU, evaluate whether AMD might be a better choice than Intel.
@tbr @stevelord @tek This seems to be untrue or at least a misunderstanding by Debain package maintainers: https://twitter.com/imadsousou/status/1030260566483496960
@djsumdog @stevelord @tek For those following along at home:
@tek @djsumdog @stevelord with my realist and cynic hat on, I'm going to say he most likely wanted to answer, but was stopped by corporate process. This one involves their legal department, I'd be very surprised if they manage to change anything within the next month. All the while there will be total and utter radio silence from anyone involved, including Imad.
Previous encounters? Who? Me?
Familiar with the SGX, PAVP, 4k bluray debacle? The post-production changes made to various chipsets which was rolled out to some, but not all platforms?
Brand new x299 chipsets (and it's $2000+ cpus) cannot play back a simple 4k bluray, so if you built a brand new system on that chipset, you wouldn't know it won't allow you to use a UHD r/w. No vendor is providing up-front info on this so they will have less trouble selling.
@tbr @stevelord @tek
Can't even effing play amazon, Google play, etc, on their native, inception platform, the PC browser, without a hardware dongle and why? Because they said so. Because you need to spend more money. Or you don't get access to the best looking copies of your legally purchased media, and it has nothing to do with hardware limitations.
@tbr @stevelord @tek
"evaluate whether AMD might be a better choice than Intel" - you mean the AMD that refuses to release any microcode updates at all to end users? Yes, I'm aware that you can get them "on the internet", but not from AMDs homepage, so AMD really does not look that great in that evaluation...
@tbr @stevelord @aidalgol @tek imho Intel is currently hit by most recent publications because they are a juicy target: known to have design defects and huge popularity. I've heard of a handful of research groups working on AMD currently because the easy Intel finds are done now. I guess this whole cpu bug rigmarole will go on for at least another three years with at most two months between new findings.
@tbr @stevelord @tek in terms of #FreeSoftware compatibility, some #AMD chips are equally worse than #Intel's. See https://www.fsf.org/blogs/sysadmin/the-management-engine-an-attack-on-computer-users-freedom , https://www.fsfla.org/ikiwiki/blogs/lxo/pub/who-is-afraid-of-spectre-and-meltdown and https://jxself.org/titanic.shtml .
A nice little Mastodon instance. Mild trolling encouraged (keep it local), but not required. Malicious behaviour is not tolerated. Follow Wheaton's law and you'll be fine.