As i said in the comments section of other articles where some new hardware vulnerability was found, it doesn't really matter and I wouldn't enable the "fix" anyway.
The reality is you could run any OS you want, any you want, wide open, with no security mitigations at all and still be 100% safe if your network is properly designed.
These vulnerabilities are all theoretical, show me a single one that can bypass a firewall or switch that is running a bare bones OS like Nano Server or a stripped down Linux or BSD kernel with a read only file system and a properly configured ACL.
I'm glad that the kernel developers and hardware vendors seem to be finally waking up.
The reality is you could run any OS you want, any you want, wide open, with no security mitigations at all and still be 100% safe if your network is properly designed.
These vulnerabilities are all theoretical, show me a single one that can bypass a firewall or switch that is running a bare bones OS like Nano Server or a stripped down Linux or BSD kernel with a read only file system and a properly configured ACL.
I'm glad that the kernel developers and hardware vendors seem to be finally waking up.
Comment