Windows 10: Windows Client Guidance against speculative execution vulnerabilities

Page 5 of 64 FirstFirst ... 345671555 ... LastLast
  1.    05 Jan 2018 #40

    Hi,

    At 50+ that long way to the next birthday, seem it fly's pretty darn fast though.
    Brace yourself. I'll be turning 60+ in a couple of months.

    But if my PS is running like it "should" or if something was wrong, I would want to know, because I do understand, PowerShell, is actually a pretty bad security problem, just by its existence


    It is, isn't it ?

    Cheers,
      My ComputersSystem Spec


  2. Posts : 1,471
    WinX Pro x64 IP current
       05 Jan 2018 #41

    Cliff S said: View Post
    I didn't take it as lecturing, don't worry.
    But if my PS is running like it "should" or if something was wrong, I would want to know, because I do understand, PowerShell, is actually a pretty bad security problem, just by its existence

    At 50+ that long way to the next birthday, seem it fly's pretty darn fast though.
    Turning 47 in a couple of months myself....ahh, the golden years, no?
      My ComputersSystem Spec


  3. Posts : 19,780
    Win10 Pro, Win10 Pro N, Win10 Home, Win10 Pro Insider Fast Ring, Windows 8.1 Pro, Ubuntu
       05 Jan 2018 #42

    johngalt said: View Post
    Turning 47 in a couple of months myself....ahh, the golden years, no?
    50+ should be called the "Lead" years, because every year older you get, it feels like the more lead in your a$$
      My ComputersSystem Spec


  4. Posts : 1,471
    WinX Pro x64 IP current
       05 Jan 2018 #43

    Cliff S said: View Post
    50+ should be called the "Lead" years, because every year older you get, it feels like the more lead in your a$$
      My ComputersSystem Spec

  5.    05 Jan 2018 #44

    This is the result I got after running all three command lines from PowerShell (Admin) Verification as per Shawn's tutorial (first page):

    Click image for larger version. 

Name:	PowerShell Verification.png 
Views:	4 
Size:	82.5 KB 
ID:	171068

    At one point after the second command line, I was asked if I wanted PowershellGet to install and import the NuGet provider now. I put Yes ("y"). After the third command line, I got the results seen at the bottom of the screenshot with three "false" lines and all the rest is labelled as "True". My confusion is about "Suggested actions" highlighted in the red square with a yellow arrow:

    [Install BIOS/firmware update provided by your device OEM that enables hardware support for the branch target injection mitigation.]

    My PC is about two years old. I am on UEFI and in the suggestion they are talking about BIOS/Firmware. Does that mean they are using the terms Bios & UEFI interchangeably?. And how do I get that update from Intel. Can anyone chime in and show me the light at the end of the tunnel?
      My ComputerSystem Spec

  6.    05 Jan 2018 #45

    Hi,

    My PC is about two years old. I am on UEFI and in the suggestion they are talking about BIOS/Firmware. Does that mean they are using the terms Bios & UEFI interchangeably?. And how do I get that update from Intel. Can anyone chime in and show me the light at the end of the tunnel?
    UEFI is still a BIOS although an advanced one so, yes they use it interchangeably. Updates will crop up to "secure" OS and CPU's from either your OEM, Intel, AMD or Microsoft (for the OS part and possibly micro code for the cpu).

    It's still early days as they're all still waking up from the season holidays and such. I'd keep an eye on my MB OEM if it were me and check for BIOS/UEFI updates on a regular basis.
    Currently available micro code updates from Intel aren't fixing anything yet and I very much doubt that those updates could cover both Meltdown and Spectre vulnerabilities fully.

    Cheeers,
      My ComputersSystem Spec

  7.    05 Jan 2018 #46

    fdegrove said: View Post
    Hi,



    UEFI is still a BIOS although an advanced one so, yes they use it interchangeably. Updates will crop up to "secure" OS and CPU's from either your OEM, Intel, AMD or Microsoft (for the OS part and possibly micro code for the cpu).

    It's still early days as they're all still waking up from the season holidays and such. I'd keep an eye on my MB OEM if it were me and check for BIOS/UEFI updates on a regular basis.
    Currently available micro code updates from Intel aren't fixing anything yet and I very much doubt that those updates could cover both Meltdown and Spectre vulnerabilities fully.

    Cheeers,
    Thanks a lot for your intervention. Really appreciate it. According to what you are saying, the best approach for now is to wait & see while checking for any updates regarding my MB OEM. If I understood correctly "Spectre" is only concerned with Intel processors and "Meltdown" with all the other processors as far as these speculative execution side-channel attacks may affect one's PC.

    In the meantime, I found a link for Intel Detection Tool:

    https://downloadcenter.intel.com/download/27150?v=t

    I am going to give it a try and see what gives.

    Thanks again
      My ComputerSystem Spec


  8. Posts : 38,043
    Dual boot Windows 10 FCU Pro x 64 & current Insider 10 Pro
       05 Jan 2018 #47

    Well, if this don't beat all. This is the kind of thing where I'd like to take all 3 machines, throw them in the garbage, and look for another hobby. The smart phone too. Get a cheapo dumb phone. If this can't get fixed I just may do that. Off to see if I can find a BIOS update I guess....

    Oh and thanks for the article/tutorial, Shawn.


    Click image for larger version. 

Name:	Vulnerability Script Results.PNG 
Views:	2 
Size:	56.4 KB 
ID:	171101
      My ComputersSystem Spec

  •    06 Jan 2018 #48

    HippsieGypsie said: View Post
    Well, if this don't beat all. This is the kind of thing where I'd like to take all 3 machines, throw them in the garbage, and look for another hobby. The smart phone too. Get a cheapo dumb phone. If this can't get fixed I just may do that. Off to see if I can find a BIOS update I guess....

    Oh and thanks for the article/tutorial, Shawn.
    Click image for larger version. 

Name:	Vulnerability Script Results.PNG 
Views:	2 
Size:	56.4 KB 
ID:	171101
    Hmmm.. that one does need some updating...seems all it has is the Win update fix.... firmware is non-compliant..
      My ComputerSystem Spec

  •    06 Jan 2018 #49

    Click image for larger version. 

Name:	Untitled.png 
Views:	5 
Size:	47.6 KB 
ID:	171105
      My ComputerSystem Spec


  •  
    Page 5 of 64 FirstFirst ... 345671555 ... LastLast

    Related Threads
    The PowerShell script execution policies enables you to determine which Windows PowerShell scripts (if any) will be allowed to run on your computer. Windows PowerShell has four different execution policies: Execution Policy Description ...
    Source: Mitigating speculative execution side-channel attacks in Microsoft Edge and Internet Explorer - Microsoft Edge Dev Blog See also update: Cumulative Update KB4056892 Windows 10 v1709 Build 16299.192 - Windows 10 Forums
    Source: Google Online Security Blog: Disclosing vulnerabilities to protect users
    Windows 10 - Need some guidance on recovery in Installation and Upgrade
    One of my spare Windows 10 machines is on life support. I must have clobbered it somehow when I was tweaking the multiple display settings ( to incorporate a HDMI projector). It actually worked fine all week, but today, when I tired to set it...
    Read more: http://www.zdnet.com/article/microsoft-offers-it-guidance-to-prepare-for-windows-as-a-service/
    Our Sites
    Site Links
    About Us
    Windows 10 Forums is an independent web site and has not been authorized, sponsored, or otherwise approved by Microsoft Corporation. "Windows 10" and related materials are trademarks of Microsoft Corp.

    © Designer Media Ltd
    All times are GMT -5. The time now is 14:20.
    Find Us