How can I use docker without sudo?

Question

ulrich

Asked: 2018-01-14 08:31:01 +0800 CST2018-01-14 08:31:01 +0800 CST 2018-01-14 08:31:01 +0800 CST

Intel Bug: Much Ado About Nothing? [duplicate]

772

If I understand correctly, the bug allows to read in another process's virtual address space. To exploit this, the adversary needs to have a legal account on your personal computer, which is not usually the case on a personal home computer, or there must be some malware on the computer, which is bad anyway. Right?

1 Answers

Voted

Kaz Wolfe · Answer 1 · 2018-01-14T08:37:08+08:00

Kaz Wolfe

2018-01-14T08:37:08+08:002018-01-14T08:37:08+08:00

Nope. This is every bit as dangerous as people are saying.

Meltdown and Spectre can be triggered by any arbitrary code execution. This can be done with JavaScript, just as an example.

While most users won't need to be too worried about this, it's a massive deal for shared servers, virtual machine providers (AWS, DigitalOcean, etc.), and the like where systems do execute arbitrary code.

If you're asking this question because of the performance impact you're going to see with the patches, it's best to just take the hit. In most cases, the performance impact will be negligible and it's better to the alternative of getting your system compromised.

6

Intel Bug: Much Ado About Nothing? [duplicate]

How to install Google Chrome

Is there a command to list all users? Also to add, delete, modify users, in the terminal?

How to delete a non-empty directory in Terminal?

How to unzip a zip file from the Terminal?

How can I copy the contents of a folder to another folder in a different directory using terminal?

How do I install a .deb file via the command line?

How do I run .sh scripts?

How do I install a .tar.gz (or .tar.bz2) file?

How to list all installed packages

Unable to lock the administration directory (/var/lib/dpkg/) is another process using it?