2018-01-14

Spectre and Meltdown first patch metrics

Spectre and Meltdown icons  

It's amazing how the highly graphical computational operations aren't being impacted as much by the patches in place. I'm gathering from this information that my CLI configuration isn't helping me as much as I once thought.

The nature of the beast is "stealing data from other programs operating in core" so the approach has to be fairly sophisticated up front. The reads with patches in place aren't so much a problem as the writes which took a 26% hit on average.

So the path to patching appears convoluted with hardware patches coming from each manufacturer and software patches coming from those vendors.

My load has increased slightly with the patches in place; but this was expected and I overkilled it so much up front that I have lots of wiggle room in the performance department.

Suffice it to say that I will primarily be relying on the firewalling in place as it seems to be the most effective deterrent to those adventurous exploitative scumbags from foreign jurisdictions and I have already implemented a significant Class A Network scope and will continue to add subnets as required based on firewall metrics because it appears to be my only true hope.

Have fun and be safe.