this post was submitted on 24 Oct 2023
77 points (92.3% liked)

Technology

58115 readers
4071 users here now

This is a most excellent place for technology news and articles.

Our Rules

  1. Follow the lemmy.world rules.
  2. Only tech related content.
  3. Be excellent to each another!
  4. Mod approved content bots can post up to 10 articles per day.
  5. Threads asking for personal tech support may be deleted.
  6. Politics threads may be removed.
  7. No memes allowed as posts, OK to post as comments.
  8. Only approved bots from the list below, to ask if your bot can be added please contact us.
  9. Check for duplicates before posting, duplicates may be removed

Approved Bots

founded 1 year ago
MODERATORS
L3s@lemmy.world
enu@lemm.ee
fry@fry.gs
L3s@fry.gs
enu@lemmy.world
L4s@fry.gs
L4s@lemmy.world
77
The Risk of RISC-V: What's Going on at SiFive? (morethanmoore.substack.com)
submitted 11 months ago by dragontamer@lemmy.world to c/technology@lemmy.world
14 comments fedilink hide all child comments
 

Ian Cutress muses upon rumors around SiFive, the forerunner of high-performance RISC-V cores.

you are viewing a single comment's thread
view the rest of the comments
[–] TheHobbyist@lemmy.zip 20 points 11 months ago (1 children)

Do you mean that someone can take the design, place a hardware vulnerability and sell it? Sure, but this does not require RISC V to be possible, there are already vulnerable CPUs sold on the market. People have found such vulnerabilities already in reputable Intel CPUs for example (look up Spectre).

[–] IHeartBadCode@kbin.social -3 points 11 months ago (3 children)

Dell iDRAC comes to mind as well.

[–] fuckwit_mcbumcrumble@lemmy.world 8 points 11 months ago (2 children)

iDRAC is specifically designed for remote management of serves. Calling it a back door is silly when it's more of a front door. It's how Dell intends for you to manage the server.

[–] t0m5k1@lemmy.world 0 points 11 months ago* (last edited 11 months ago)

That's the same train of thought I had when telnet was declared a back door in huawei devices.

https://www.theregister.com/2019/04/30/huawei_enterprise_router_backdoor_is_telnet/

During the hey day I passed hcna-rs, the first thing we were taught was to just use telnet as a means to enable shh, then log back in and disable telnet.

Moral of the story, do not under estimate a nation state's use of global tech media to effect a global drop of a product or manufacturer from the market.

[–] IHeartBadCode@kbin.social -2 points 11 months ago (1 children)

LUL. So you’re right but one of the horror stories I tell around campfires is how many folks don’t know about that front door.

So how about we agree to “surprise feature” for iDRAC? And, yes yes, I can feel the “they shouldn’t be admins” coming.

[–] ggppjj@lemmy.world 2 points 11 months ago (1 children)

It has to be enabled, right? So if someone enabling iDRAC doesn't know that it exists...

[–] IHeartBadCode@kbin.social 1 points 11 months ago

The person enabling it isn’t always still at the company.