RSS Feed
  1 user browsing Discussion: tomman | 2 guests | 2 bots  
Main » Discussion » Computer Hardware News
Pages: First Previous 1 2
Posted on 19-08-30, 01:13 am
Secretly, I'm Derpy Hooves

Post: #381 of 400
Since: 10-29-18

Last post: 12 hours
Last view: 2 hours
...that video, because I'm on my phone now when I'm supposed to be asleep for the past two and a half hours.

And even then, I'd sooner watch Kamen Rider, and that's on Sunday.
Posted on 19-08-30, 02:28 am
Custom title here

Post: #664 of 695
Since: 10-30-18

Last post: 15 hours
Last view: 21 min.
User is online
Posted by KoiMaxx
Posted by CaptainJistuce
Posted by Kawa
Well I know what I'll be watching in a couple hours!
Power Rangers?

The Movie?
I was thinkin' Beast Morphers, actually.

Just in case you thought something could EVER be straightforward, and needed someone to dash your hopes across the rocky shoals of harsh reality.
Posted on 19-09-01, 05:28 am
Custom title here

Post: #667 of 695
Since: 10-30-18

Last post: 15 hours
Last view: 21 min.
User is online
Posted by Kawa

And even then, I'd sooner watch Kamen Rider, and that's on Sunday.

How do you feel about the new show being called Kamen Rider 01? It just seems needlessly confusing to me.

Just in case you thought something could EVER be straightforward, and needed someone to dash your hopes across the rocky shoals of harsh reality.
Posted on 19-09-01, 07:01 am
Loves the whole world and all its' sights and sounds

Post: #383 of 400
Since: 10-29-18

Last post: 12 hours
Last view: 2 hours
I have no strong feelings on that one way or the other. I do have strong feelings on the naming scheme of 01's finishers, all positive.
Posted on 19-09-11, 10:49 am
Custom title here

Post: #689 of 695
Since: 10-30-18

Last post: 15 hours
Last view: 21 min.
User is online
Another day, another Intel processor vulnerability.
This time it only hits Xeons, but it lets attackers copy data from the CPU cache out over the network, using a feature called Data-Direct I/O(DDIO) and Remote Direct Memory Access(RDMA).

RDMA does what it says. It allows one computer to have direct memory access to another computer, instead of simply limiting DMA to peripherals attached to the computer.
And what is DDIO, you ask? It is DMA on steroids. It lets hardware attached to a computer have direct memory access to the processor's cache.




Basically, the conversation went like this...

Security researchers: "DMA is a vulnerability, albeit a very useful one from a performance standpoint. You probably shouldn't just let any random piece of hardware take a DMA channel, certainly not without asking first."

Intel: "But what if DMA could get outside main memory and into the CPU? Wouldn't that give it EVEN BETTER PERFORMANCE?"

Security: "Maybe, but the vulnerability would be far worse."

Intel: "And we could let OTHER COMPUTERS use DMA to talk to each other!"

Security: "That is basically carte blanche to copy secure information from any Xeon system across the fucking internet. Are... are you even listening to us?"

Intel: "DMA EVERYWHERE!"


In short, it is a vulnerability that only exists because Intel is intentionally sacrificing security for performance, and has cranked that knob up to Ludicrous Gibs 11 in the last couple of years.

Just in case you thought something could EVER be straightforward, and needed someone to dash your hopes across the rocky shoals of harsh reality.
Posted on 19-09-11, 12:01 pm
Not from my cellphone

Post: #535 of 548
Since: 10-30-18

Last post: 1 min.
Last view: 1 min.
User is online
I'll take ALL THE NITROZZZ over sekuritah theater any day of the week, except for when my money is in the line.

Why speculators are not shorting Intel stock!?

Now seriously, every time I hear about a new external port with DMA, the very next stuff I hear are paranoids and security researchers claiming that the world is going to end in the next 3 days. Dude, noone wants another PIO port! But yeah, for hardware OEMs, security == money, and you know margins are razor thin on those $1500 cellphones and $5000 designer laptops, right? It's time for engineers to take back the industry from the stupid iron grip of beancounters, and that goes from Intel all the way up to Boeing.

I'm still waiting for someone to take over my DANGER MINES full DMA capable Firewire ports. But then, I would need to find Firewire devices first, as those have always been very rare where I am located.

Licensed Pirate® since 2006, 100% Buttcoin™-free
Posted on 19-09-11, 12:08 pm
Custom title here

Post: #690 of 695
Since: 10-30-18

Last post: 15 hours
Last view: 21 min.
User is online
I have no problem with DMA within reason.

One computer reaching through the network into another computer's cache is... not within reason.

Just in case you thought something could EVER be straightforward, and needed someone to dash your hopes across the rocky shoals of harsh reality.
Posted on 19-09-11, 12:57 pm
Post: #90 of 95
Since: 11-24-18

Last post: 17 hours
Last view: 6 hours
Holy... CRAP O_o

That will seriously murder Intel in the server space! What were they thinking?
Posted on 19-09-11, 01:34 pm
Now then, let's have a nice naked talk.

Post: #391 of 400
Since: 10-29-18

Last post: 12 hours
Last view: 2 hours
They were not. Or at least not enough.
Posted on 19-09-11, 01:57 pm
Post: #91 of 95
Since: 11-24-18

Last post: 17 hours
Last view: 6 hours
Posted by tomman
I'm still waiting for someone to take over my DANGER MINES full DMA capable Firewire ports. But then, I would need to find Firewire devices first, as those have always been very rare where I am located.


I get what you're saying, however here we are talking about a vulnerability accessible through your RJ45 Ethernet port to bypass every other security mechanism.

It's like you had a secret entrance to the throne room (or worse yet, royal bedroom) just outside your main gate. With a cover painted all red, and the text DO NOT OPEN.
Posted on 19-09-12, 09:58 pm
Stop typing, start thinking.
Post: #623 of 630
Since: 01-26-19

Last post: 1 day
Last view: 7 hours
Posted by tomman
Why speculators are not shorting Intel stock!?

Because this is a non-issue, as per the efficient market hypothesis. You could go buy all the puts you want, but the market simply does not care - neither did they for MELTDOWN or SPECTRE or CASINO ROYALE or whatever. You can reason about this backwards: if the market did react to announcements of security vulnerabilities, a lot of money could be made from announcing them while shorting the stock. Since you don't see too many of these announcements, not a lot of money could be made from announcing them, thus the market does not react strongly to them.

The disclosure was on September 10, and the stock did enjoy a drop of 1.74% after what I assume was the disclosure before rebounding. So it's not as if the traders didn't know about it.

There was a certain photograph about which you had a hallucination. You believed that you had actually held it in your hands. It was a photograph something like this.
Pages: First Previous 1 2
Main » Discussion » Computer Hardware News
Yes, it's an ad.