On Sun, Feb 18, 2018 at 05:04:55PM +0100, David Marec wrote: > On 17.02.2018 20:47, Jeremy Chadwick wrote: > > hw.ibrs_disable > > - Description: Disable Indirect Branch Restricted Speculation > > - Loader tunable and sysctl tunable (read-write) > > - Integer > > - Default value: unsure. Variable declaration has 1 but > > SYSCTL_PROC() macro has 0. > > > > > Strange thing is that tweaking `hw.ibrs_disable` has no effect on > `hw.ibrs_active` on my side.
Did you install the latest Intel microcode update? Thanks, -- Shawn Webb Cofounder and Security Engineer HardenedBSD Tor-ified Signal: +1 443-546-8752 GPG Key ID: 0x6A84658F52456EEE GPG Key Fingerprint: 2ABA B6BD EF6A F486 BE89 3D9E 6A84 658F 5245 6EEE
signature.asc
Description: PGP signature
