Git-Mirrors/security-misc
1
0
Fork 0
mirror of https://github.com/Kicksecure/security-misc.git synced 2025-02-10 09:58:32 -05:00
Code Issues Packages Projects Releases Wiki Activity

Add comment about microcode updates

Browse Source
This commit is contained in:
raja-grewal 2025-01-09 15:28:56 +11:00 committed by GitHub
parent 642b4eeedc
commit 538b312349
No known key found for this signature in database
GPG Key ID: B5690EEEBB952194
1 changed files with 5 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

5
etc/default/grub.d/40_cpu_mitigations.cfg
View File

@ -21,6 +21,11 @@
## Tabular comparison between the utility and functionality of various mitigations.
## https://forums.whonix.org/t/kernel-hardening-security-misc/7296/587
## For complete protection, users must install the latest relevant security microcode update.
## BIOS/UEFI updates should only be obtained directly from OEMs and/or motherboard manufacturers.
## Note that incorrectly performing system BIOS/UEFI updates can potentially lead to serious functionality issues.
## The parameters below only provide (partial) protection at both the kernel and user space level.
## Enable a subset of known mitigations for some CPU vulnerabilities and disable SMT.
##
## KSPP=yes