Hacker News
new
|
past
|
comments
|
ask
|
show
|
jobs
|
submit
login
jnordwick
on Jan 11, 2018
|
parent
|
context
|
favorite
| on:
Meltdown Update Kernel doesnt boot
Unless you are running remote code there is no reason to patch.
_jcwu
on Jan 11, 2018
[–]
This is wrong and bad advice. All you need is a remote code execution vulnerability in PHP or so.
Only don't patch if your server is isolated and not connected to the internet.
nitrogen
on Jan 11, 2018
|
parent
|
next
[–]
RCE is already kind of game over though. If you have RCE on the server, you can probably get to everything interesting without having to go through a slow side channel.
jnordwick
on Jan 11, 2018
|
parent
|
prev
[–]
If you have a remote exploit, there are much bigger issues to worry about. And since this is a timing issue, I'm not even sure that would be enough.
Guidelines
|
FAQ
|
Lists
|
API
|
Security
|
Legal
|
Apply to YC
|
Contact
Search:
