On 2/23/25 8:34 PM, Thomas Klausner wrote:
On Mon, Feb 24, 2025 at 06:32:09AM +1100, Matthew Green wrote:
Log Message:
Add LIBRARY section and explicitly mention that these interfaces
require super-user privileges.
this can be relaxed with the
security.models.extensions.user_set_cpu_affinity sysctl.
I found this and wondered what the attack model is that makes it default to
off...
Any kind of cache side channel attacks are much easier if you can
explicitly control where things are executed.
Joerg
