What's the benefit of hyper-threading anyway? In my experience it just skews(doubles) CPU time accounting. Great if you rent computers instances to the unsuspecting public.
It's to hide memory latency on a core. The hyperthreads share an ALU but have separate registers, so if 1 thread has to wait for a memory access the other can take over executing and use the ALU. This is basically how GPUs work to hide memory latency but there's many more "hyperthreads" sharing an ALU
[...]
Wasn't there an option available to disable them like two years ago?
sysctl hw.smt=1 (need to update sysctl.conf to make it permanent)
https://i.imgur.com/rmZOl5a.png
What's the equivalent of Linux's
mitigations=off
On this bad boy?
Add softdep and noatime to your partitions in fstab, modify your limits in login.conf, preferrably use chromium over firefox and enable acceleration. Also, make a separate partition to use for disk caching your browser https://man.openbsd.org/mount_mfs.8
>sysctl hw.smt=1 (need to update sysctl.conf to make it permanent)
But this just enables hyperthreading, right? Is there something like this but for the mitigations?
>Is there something like this but for the mitigations
No, because, unlike Linux, OpenBSD is a full-fledged operating system and especially one that aims to achieve autistic levels of security (how valuable that is is an entirely separate topic). And it targets that holistically, from many different angles. The latter part of my post points to most of the useful things you can do to improve performance (which is what I assume you are after)(and those in some aspects are overriding security restrictions which the project believes should be the default).
Of course, no matter what you do, it'll always be noticeably slower than almost any Linux configuration you would work with.
2 weeks ago
Anonymous
I have an in-order CPU, and Linux always activates the mitigations anyways. Is there a way to know if OpenBSD is also being moronic?
2 weeks ago
Anonymous
>Is there a way to know if OpenBSD is also being moronic
When it comes to anything "security"-related you can safely assume with almost certainty that it is indeed moronic kek
Either way, you can check(and modify) the sysctl values, though you'd need to look into the manpage what each one is for and which ones you may want to amend man.openbsd.org/sysctl.2
What's the chip?
and from what i can tell it just curl's "mitigations=off" which im still kind of dumbfounded the amount of sh|wget myscript.sh there is these days goto docker's official website they recommend running their fricking shell script absolutely unheard of a decade ago mocked even
Not possible. They straight up disable hyperthreading lmao.
Wasn't there an option available to disable them like two years ago?
What's the benefit of hyper-threading anyway? In my experience it just skews(doubles) CPU time accounting. Great if you rent computers instances to the unsuspecting public.
It's to hide memory latency on a core. The hyperthreads share an ALU but have separate registers, so if 1 thread has to wait for a memory access the other can take over executing and use the ALU. This is basically how GPUs work to hide memory latency but there's many more "hyperthreads" sharing an ALU
sysctl hw.smt=1 (need to update sysctl.conf to make it permanent)
Add softdep and noatime to your partitions in fstab, modify your limits in login.conf, preferrably use chromium over firefox and enable acceleration. Also, make a separate partition to use for disk caching your browser https://man.openbsd.org/mount_mfs.8
>sysctl hw.smt=1 (need to update sysctl.conf to make it permanent)
But this just enables hyperthreading, right? Is there something like this but for the mitigations?
>Is there something like this but for the mitigations
No, because, unlike Linux, OpenBSD is a full-fledged operating system and especially one that aims to achieve autistic levels of security (how valuable that is is an entirely separate topic). And it targets that holistically, from many different angles. The latter part of my post points to most of the useful things you can do to improve performance (which is what I assume you are after)(and those in some aspects are overriding security restrictions which the project believes should be the default).
Of course, no matter what you do, it'll always be noticeably slower than almost any Linux configuration you would work with.
I have an in-order CPU, and Linux always activates the mitigations anyways. Is there a way to know if OpenBSD is also being moronic?
>Is there a way to know if OpenBSD is also being moronic
When it comes to anything "security"-related you can safely assume with almost certainty that it is indeed moronic kek
Either way, you can check(and modify) the sysctl values, though you'd need to look into the manpage what each one is for and which ones you may want to amend man.openbsd.org/sysctl.2
What's the chip?
cuck license
think you have to recompile a custom kernel with those default disabled features on
FBI=on
>I add $(curl https://make-linux-fast-again.com) into my /etc/sysconfig/grub
lmfao, this can't be true. I doubt curl even runs in grub.
gets run on grub-mkconfig, not during boot
lmao, this homosexual has never compiled their own kernel.
I have compiled a kernel dozens of times. Not everybody needs to know how to use your söy bootloader.
https://access.redhat.com/documentation/en-us/red_hat_enterprise_linux/7/html/system_administrators_guide/ch-working_with_the_grub_2_boot_loader
what happens to the site when he dies?
homies looking pretty old
He probably isn't even 50 years of age. The world just makes you go grey haired faster than it used to because it is filled with so much shit.
for me its memtest=10 mitigations=auto nosmt=force
and from what i can tell it just curl's "mitigations=off" which im still kind of dumbfounded the amount of sh|wget myscript.sh there is these days goto docker's official website they recommend running their fricking shell script absolutely unheard of a decade ago mocked even
The "curl and run this shell script" moronation was originally by/for Macgays, then it somehow became normalized in Linux.
cause get this, i could a site like that and might even work for a time, and now i have users sourcing a script include by a root user...
Is always a painful experience
>installed an OS focused on security to disable security features
I don't get it.
https://isopenbsdsecu.re/mitigations/