Hacker News new | past | comments | ask | show | jobs | submit login

> In my lab, the exploit is successfully dumping /etc/shadow in a couple of minutes.

Gee, I hope my machine has more spectre countermeasures enabled than your lab. This is a crucial omission, IMO.




The whole point of the machine in my lab was to test the exploit…


But you could imagine that an exploit might exist that would defeat the existing countermeasures, and that exploit would probably still be described as a "spectre exploit." So without that explicit context in the article, it's left to the reader to fret over :)




Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: