On Mon, 18 May 2020 01:19:12 +0530 Sreyan Chakravarty <sreyan32@xxxxxxxxx> wrote: > > > > Also, firefox has sandboxing on javascript plugins. > > > Would running Firefox in Firejail help in this case ? I'm unfamiliar with Firejail so I don't know. If it is what it sounds like, a chroot for plugins, yes, that would help if network access can be restricted. If you are using approved firefox plugins, though, it is unlikely that they have the attack code in them. You should check if it is possible to enable and disable the kernel smt fix. If you can, you could enable the fix when you are running potential threats, and disable it otherwise. In the end, the kernel guys are right. If you always want to be safe, you have to take the hit to processing by always running the smt fix. How often do you max out all the cores on your system? That is, is the reduction in processing a big deal for your use case? _______________________________________________ users mailing list -- users@xxxxxxxxxxxxxxxxxxxxxxx To unsubscribe send an email to users-leave@xxxxxxxxxxxxxxxxxxxxxxx Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/users@xxxxxxxxxxxxxxxxxxxxxxx
