On Wed, Jan 3, 2018, at 2:35 PM, Russell Coker via luv-main wrote:
https://www.fool.com/investing/2017/12/19/intels-ceo-just-sold-a-lot-of-stoc...
https://www.theregister.co.uk/2018/01/02/intel_cpu_design_flaw/
Lev just tweeted the above links. This is annoying, it means rebooting all systems with Intel CPUs for which security is important and also ongoing performance loss for all modern systems with Intel CPUs.
People who care about performance not security (EG gamers and people who mostly do compiles) could run in a less secure mode (run an old kernel or maybe a newer kernel patched to turn off this security feature).
As long as they *never* run interpreted code, e.g. JavaScript, then *maybe* that's okay. Even if you're mostly doing compiles, you do trust the MMU to isolate those processes, so you probably need the fix too.