Git-Mirrors/security-misc
1
0
Fork 0
mirror of https://github.com/Kicksecure/security-misc.git synced 2024-10-01 08:25:45 -04:00
Code Issues Packages Projects Releases Wiki Activity
b9d65338bc
security-misc/etc/default/grub.d
History
Patrick Schleizer b9d65338bc
unconditionally enable all CPU bugs (spectre, meltdown, L1TF, ...) 
this might reduce performance

* `spectre_v2=on`
* `spec_store_bypass_disable=on`
* `tsx=off`
* `tsx_async_abort=full,nosmt`

Thanks to @madaidan for the suggestion!

https://forums.whonix.org/t/should-all-kernel-patches-for-cpu-bugs-be-unconditionally-enabled-vs-performance-vs-applicability/7647
2020-01-30 05:55:13 -05:00
..
40_distrust_cpu.cfg description / comments 2019-12-03 02:18:32 -05:00
40_enable_iommu.cfg comments; copyright 2019-11-05 09:55:43 -05:00
40_kernel_hardening.cfg unconditionally enable all CPU bugs (spectre, meltdown, L1TF, ...) 2020-01-30 05:55:13 -05:00