As I understand it this vulnerability is about browser behavior, would turning off javascript be a temporary mitigation against attack?
Asked
Active
Viewed 171 times
0
-
The attack concerns any (potentially) untrusted code that runs on your machine - so yes, that could include JavaScript (but not just JavaScript or brrowsers). So yes, turning off JavaScript would mitigate issues coming from malicious JavaScript. However, fixes for major browsers are already out or will be soon. – Jonas Czech Jan 04 '18 at 21:51
-
2@JonasCz That would be for Spectre, not Meltdown. Meltdown is about page table manipulation and accessing kernel memory, which you can't do from JS in the browser. But yes, "don't run software" is the best way to mitigate attacks from software. :) – dobey Jan 05 '18 at 00:09