• 2 Posts
  • 39 Comments
Joined 2 years ago
cake
Cake day: June 19th, 2023

help-circle

  • I worked at a datacenter that wanted to change backup vendors, as we dug into the details we found out that the agent based backups needed an agent running on the machine to restore to and they didn’t have a linux agent. Despite this obvious problem mgmt chose this vendor. It didn’t take long before sysadmins were rebuilding linux boxes from scratch in the wee hours. I left shortly after.






  • Looks like AMD has already patched it, also appears to affect older Intel versions of the same tech concept but not current generations.

    Only really affects guests in multi tenant hypervisor environments, requires physical access to the hypervisor, requires external physical hardware, requires booting the host with said hardware attached, at some point this level of compromise is already absurd. This kind of research is important and shows that we still need to limit out level of trust with host providers but I don’t think anyone needs to panic.