• Navigation
+ Reply to Thread
Page 2 of 4 FirstFirst 1 2 3 4 LastLast
Results 21 to 40 of 74
  1. #21
    BG's most likeable Québécois
    Pens win! Pens Win!!! PENS WIN!!!!!

    Join Date
    Sep 2007
    Posts
    37,802
    BG Level
    10

    Quote Originally Posted by Outlaw View Post
    They say they have released patches for some Intel chips but does anybody know which ones? I'm talking about the firmware. I searched around and couldn't find anything. I just did a manual search for Windows updates and one came up I'm assuming the drivers are in there.

    i5-3570k with Win7 64-bit.
    Almost very intel since Pentium 4 and maybe even before is affected

  2. #22

    Quote Originally Posted by Ratatapa View Post
    Same problem has Hellfury

    All 3 hosts are fully loaded since they are old stuff, and all the datastores are local on the drives, so if i rebuold a ESXI on that server it's by bye data
    Wow, I almost don't see the point of having esxi/vmware cluster if you are using local datastores. No DRS or HA..... I'm guessing that means you don't have port redundancy. I know if you have a cheap people calling the shots, there is nothing you can do, but they do understand they are playing for fire right?

  3. #23
    The Real Cookiemonster
    Join Date
    Jan 2007
    Posts
    1,870
    BG Level
    6
    FFXIV Character
    Dark Depravity
    FFXIV Server
    Sargatanas

    Quote Originally Posted by Yabby View Post
    Wow, I almost don't see the point of having esxi/vmware cluster if you are using local datastores. No DRS or HA..... I'm guessing that means you don't have port redundancy. I know if you have a cheap people calling the shots, there is nothing you can do, but they do understand they are playing for fire right?
    (we have a relatively decent EMC Unity 300 for the storage with massive raid arrays and two extra layers of backups where I work, took me over a year to get out of the local storage thing, but besides that)
    They don't care. They literally told me more than once that "it'll work until it doesn't anymore and then we'll deal with it"

  4. #24
    Salvage Bans
    Join Date
    Mar 2008
    Posts
    852
    BG Level
    5
    FFXIV Character
    Niya Kouya
    FFXIV Server
    Odin

    One thing I don't quite understand: on hypervisors the problem with meltdown/spectre is that VMs could potentially read data from one another, right?
    In a cloud/datacenter environment with multiple customers on the same hardware that is a problem, but for in-house servers? Patch the VMs if necessary and wait with the hypervisor patching until you have time for the downtime...

  5. #25
    BG's most likeable Québécois
    Pens win! Pens Win!!! PENS WIN!!!!!

    Join Date
    Sep 2007
    Posts
    37,802
    BG Level
    10

    Quote Originally Posted by Yabby View Post
    Wow, I almost don't see the point of having esxi/vmware cluster if you are using local datastores. No DRS or HA..... I'm guessing that means you don't have port redundancy. I know if you have a cheap people calling the shots, there is nothing you can do, but they do understand they are playing for fire right?
    Well ESXI lets us use multiple VM on 1 physical host at least

    But yeah what i would like to do if possible is this

    3 Hosts (like we have right now)
    Maybe a 4th just for Veeam and have extra space to transfer VMif needed and a centralise NAS to put all the VM files, while the Vmware will only 'power on/off' the machines

    And have ESXI installed on a USB stick on each ohysical host

  6. #26
    Salvage Bans
    Join Date
    Mar 2008
    Posts
    852
    BG Level
    5
    FFXIV Character
    Niya Kouya
    FFXIV Server
    Odin

    Quote Originally Posted by Ratatapa View Post
    Well ESXI lets us use multiple VM on 1 physical host at least
    That's a pretty valid reason to go virtual, we did (single host) ESXi for a few customers that were "big" enough to justify splitting the server roles between multiple VMs (no more SBS, hooray~). But multiple hosts without a cluster/central storage...

    A former customer went all-out on virtualization. 3 hosts, each strong enough to hold all VMs alone (at least during the first year or so ), one usually off/sleeping. Central storage system with fiber connections to all hosts, and a physical backup machine with a huge local RAID and a tape changer attached.
    Before that they had 7 or 8 physical servers. 2 years after the switch they had 20+ VMs xD

    But... we're kinda derailing the thread ^^;

    Anyway, Microsoft released a powershell script that can check if all currently available patches to counter meltdown/spectre are installed. See here.

  7. #27
    BG's most likeable Québécois
    Pens win! Pens Win!!! PENS WIN!!!!!

    Join Date
    Sep 2007
    Posts
    37,802
    BG Level
    10

    Quote Originally Posted by Niya View Post
    That's a pretty valid reason to go virtual, we did (single host) ESXi for a few customers that were "big" enough to justify splitting the server roles between multiple VMs (no more SBS, hooray~). But multiple hosts without a cluster/central storage...

    A former customer went all-out on virtualization. 3 hosts, each strong enough to hold all VMs alone (at least during the first year or so ), one usually off/sleeping. Central storage system with fiber connections to all hosts, and a physical backup machine with a huge local RAID and a tape changer attached.
    Before that they had 7 or 8 physical servers. 2 years after the switch they had 20+ VMs xD

    But... we're kinda derailing the thread ^^;

    Anyway, Microsoft released a powershell script that can check if all currently available patches to counter meltdown/spectre are installed. See here.
    This cheap place is making my job really hard

    None of the 2018-01 updates are in windows update for windows 10 1709if I manaually check windows update

    And since we use 2008r2 I can’t wsus windows 10

  8. #28
    The Real Cookiemonster
    Join Date
    Jan 2007
    Posts
    1,870
    BG Level
    6
    FFXIV Character
    Dark Depravity
    FFXIV Server
    Sargatanas

    Quote Originally Posted by Ratatapa View Post
    This cheap place is making my job really hard

    None of the 2018-01 updates are in windows update for windows 10 1709if I manaually check windows update

    And since we use 2008r2 I can’t wsus windows 10
    oh yeah, 230+ computers, 100+ cell phones, 0 MDM beyond wsus and windows/exchange policies, and me.

  9. #29
    Salvage Bans
    Join Date
    Mar 2008
    Posts
    852
    BG Level
    5
    FFXIV Character
    Niya Kouya
    FFXIV Server
    Odin

    Wasn't it a thing that the patch only gets offered when a "installed AV is compatible with it" registry key is existent? At least we got a newsletter from (I think) Trend Micro this week that their stuff is OK with it and you should set the key manually to allow patching.

  10. #30
    The Real Cookiemonster
    Join Date
    Jan 2007
    Posts
    1,870
    BG Level
    6
    FFXIV Character
    Dark Depravity
    FFXIV Server
    Sargatanas

    Quote Originally Posted by Niya View Post
    Wasn't it a thing that the patch only gets offered when a "installed AV is compatible with it" registry key is existent? At least we got a newsletter from (I think) Trend Micro this week that their stuff is OK with it and you should set the key manually to allow patching.
    They made a patch for the OfficeScan you can install that puts the key on the clients now (https://success.trendmicro.com/solut...curity-updates) I tried installing it, but I can't seem to have it verified beyond it saying it installed fine.

  11. #31
    BG's most likeable Québécois
    Pens win! Pens Win!!! PENS WIN!!!!!

    Join Date
    Sep 2007
    Posts
    37,802
    BG Level
    10

    Ok so I just manually installed KB4056892 on my Windows 10 1709

    And updated my bios to the latest one

    Now I get this

    Speculation control settings for CVE-2017-5715 [branch target injection]

    Hardware support for branch target injection mitigation is present: True
    Windows OS support for branch target injection mitigation is present: True
    Windows OS support for branch target injection mitigation is enabled: True

    Speculation control settings for CVE-2017-5754 [rogue data cache load]

    Hardware requires kernel VA shadowing: True
    Windows OS support for kernel VA shadow is present: True
    Windows OS support for kernel VA shadow is enabled: True
    Windows OS support for PCID performance optimization is enabled: True [not required for security]


    BTIHardwarePresent : True
    BTIWindowsSupportPresent : True
    BTIWindowsSupportEnabled : True
    BTIDisabledBySystemPolicy : False
    BTIDisabledByNoHardwareSupport : False
    KVAShadowRequired : True
    KVAShadowWindowsSupportPresent : True
    KVAShadowWindowsSupportEnabled : True
    KVAShadowPcidEnabled : True

    What can i do for the last 2 false?

  12. #32
    Salvage Bans
    Join Date
    Mar 2008
    Posts
    852
    BG Level
    5
    FFXIV Character
    Niya Kouya
    FFXIV Server
    Odin

    Uh... nothing, since everything is enabled as it should?
    That block is just a summary of everything that gets checked, so not having a policy that blocks the BTI stuff is a good thing, and "no hardware support" would probably be bad.

  13. #33
    BG's #1 Hatsune Miku fan!
    Join Date
    Dec 2009
    Posts
    7,435
    BG Level
    8

    Intel needs to come clean about Meltdown and Spectre
    https://www.theverge.com/2018/1/10/1...ow-down-issues

    Microsoft revealed some of the extent of the performance issues facing Windows PCs and server-based systems. Windows 7 and Windows 8 machines running Haswell or older processors are going to be impacted the most according to Microsoft, and “most [of those] users will notice a decrease in system performance."
    Fuck me!

    Also:

    Microsoft’s most troubling revelation is that Windows Server instances will have a “more significant performance impact,” especially if servers are I/O intensive. Microsoft is actually warning customers to consider not updating their server firmware if they don’t run untrusted code, to ensure performance isn’t impacted. Microsoft has performed a number of vague benchmarks across a variety of processors, but at least the company is trying to be transparent to its customers.

  14. #34
    BG Content
    Join Date
    Oct 2005
    Posts
    62,816
    BG Level
    10
    FFXIV Character
    Six Souls
    FFXIV Server
    Gilgamesh
    FFXI Server
    Quetzalcoatl
    WoW Realm
    Malorne
    Blog Entries
    9

    Quote Originally Posted by Outlaw View Post
    Same. M$ also said that current hardware running Win10 will see single digit performance drops.

  15. #35
    BG's most likeable Québécois
    Pens win! Pens Win!!! PENS WIN!!!!!

    Join Date
    Sep 2007
    Posts
    37,802
    BG Level
    10

    Fuck Lenovo doesn<t have bios update for the E570

  16. #36
    BG's #1 Hatsune Miku fan!
    Join Date
    Dec 2009
    Posts
    7,435
    BG Level
    8

    Just an update. I have the patch and I haven't noticed any significant slowdown in Windows 7. I have an SSD drive and a performance hard drive for storage so maybe that has something to do with it. My motherboard maker still doesn't have a update either. I'm worried they will never release one cause it's one of their older models. But, jeez it's only two years old!

  17. #37
    Salvage Bans
    Join Date
    Mar 2008
    Posts
    852
    BG Level
    5
    FFXIV Character
    Niya Kouya
    FFXIV Server
    Odin

    That's exactly why all the news sites should have stressed this more since the start: the performance loss for normal users is close to none. The only scenario where you (apparently) really notice a change is on big virtualization platforms.

  18. #38
    FOR FUCKS' SAKE !!!
    FOR FUCKS' SAKE !!!
    FUCK FUCK FUCK

    Join Date
    Mar 2010
    Posts
    14,688
    BG Level
    9

    Although it doesn't really effect me at home, the senior guys at work have been getting drilled with meetings with execs, hah.

    Anyhoo, so glad I didn't bite the bullet to upgrade from my 3930K/7970 combo just yet. The ridiculous RAM and GPU prices have saved me from purchasing another Intel system. Back to fully team red it looks like.

  19. #39
    Salvage Bans
    Join Date
    Mar 2008
    Posts
    852
    BG Level
    5
    FFXIV Character
    Niya Kouya
    FFXIV Server
    Odin

    Aye, team red for the next build sounds really tempting, just waiting on the Zen+ Ryzens. But... weren't it mostly AMD GPUs that exploded into price heaven thanks to etherium mining?

  20. #40
    Speaks in riddles
    Join Date
    Jul 2008
    Posts
    1,289
    BG Level
    6
    FFXIV Character
    Reyd Nalaar
    FFXIV Server
    Hyperion
    FFXI Server
    Quetzalcoatl
    WoW Realm
    Draenor

    Late to the party :D (works been flying me around on business trips and all I do is watch movies on planes and hotels.)

    I have an i7-4770 Haswell... do something about it? or keep watching movies?