英特尔 Linux 补丁将旧版本的微码视为漏洞
英特尔工程师 Dave Hansen 递交了一则 RFC 补丁,建议内核维护一个针对每个英特尔 CPU 系列的最新微码列表,如果 CPU 运行旧版本的微码,那么将会被视为存在漏洞而对用户发出警告,但这并不会阻止旧版本微码的 CPU 继续工作。微码通常被用于缓解 CPU 问题,其中很大一部分问题与安全相关。Hansen 认为如果系统运行旧版本的微码,那么你就无法相信系统是安全的,所以运行旧版本微码的系统就被视为存在漏洞。
In a bold move, Apple has published a draft ballot for commentary to GitHub to shorten Transport Layer Security (TLS) certificates down from 398 days to just 45 days by 2027. The Apple proposal will likely go up for a vote among Certification Authority Browser Forum (CA/B Forum) members in the upcoming months. Apple isn’t the first of the big players to suggest such a move. Last year, Google announced its intention to mandate 90-day … More →
The post Apple’s 45-day certificate proposal: A call to action appeared first on Help Net Security.