Is there a good reason why I shouldn't pass "mitigations=off" to my kernel and get a two-digit percent performance win? personal laptop, single user. is there any remotely plausible attack scenario?
Conversation
Replying to
you think you can bypass site isolation with any of these vulns? (okay, admittedly I'm using firefox and I think it doesn't have site isolation yet.)
2
1
It doesn't have a meaningful sandbox on Linux for isolating content at all, and it definitely doesn't have site isolation. It still has a load road to catch up with Chromium before it implemented site isolation. It doesn't have a robust protection against Spectre right now.