Hacker Newsnew | past | comments | ask | show | jobs | submitlogin

Even on Intel there should be an evaluation of performance cost vs risk. If you are not running unknown code, you may not want to enable kpti either.


Extremely correct. Database and frontend servers are hit pretty hard, nothing in the middle is hit. But neither of those ends is actually running untrusted code, for the most part.

I predict a decline of the "hyperconvergence" server and a return of the usual "database server" + "app server" + "frontend server" combo.




Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: