jellyfin media import sure takes a long time on a Xeon 1240L v5

[insert joke about taking the L here]

i am sure some bro is going to let me know that the Xeon 1240L v5 is vulnerable to spectre

which, well, yes

it's a NAS at home, not a multi-tenant cloud node

@ariadne I feel like anymore if it turns on, it can be used for a NAS.

@bryanredeagle @ariadne my NAS is an n100 with 8 g of memory, so hard same.

(Works great for what I'm doing, which is not that much)

@ariadne is it even vulnerable to spectre if you enable mitigations, apply microcode updates, and disable SMT? my skylake desktop has

Vulnerabilities:             
  Gather data sampling:      Vulnerable: No microcode
  Ghostwrite:                Not affected
  Indirect target selection: Not affected
  Itlb multihit:             KVM: Mitigation: Split huge pages
  L1tf:                      Mitigation; PTE Inversion; VMX conditional cache flushes, SMT disabled
  Mds:                       Mitigation; Clear CPU buffers; SMT disabled
  Meltdown:                  Mitigation; PTI
  Mmio stale data:           Mitigation; Clear CPU buffers; SMT disabled
  Old microcode:             Not affected
  Reg file data sampling:    Not affected
  Retbleed:                  Mitigation; IBRS
  Spec rstack overflow:      Not affected
  Spec store bypass:         Mitigation; Speculative Store Bypass disabled via prctl
  Spectre v1:                Mitigation; usercopy/swapgs barriers and __user pointer sanitization
  Spectre v2:                Mitigation; IBRS; IBPB conditional; STIBP disabled; RSB filling; PBRSB-eIBRS Not affected; BHI Not affected
  Srbds:                     Mitigation; Microcode
  Tsa:                       Not affected
  Tsx async abort:           Mitigation; TSX disabled
  Vmscape:                   Mitigation; IBPB before exit to userspace

and the one thing is is vulnerable to (Gather data sampling) isn’t spectre. it’s Skylake-S rather than Skylake-DT but I expect it would be the same

@noisytoot tbh i didn't bother to check if it actually was or not

@ariadne not really buying that the rest are spectre-immune tbh

@bryanredeagle @ariadne My NAS is a ThinkPad X220.

@ariadne jellyfin media import sure takes a long time everywhere.

@noisytoot @ariadne Why care unless untrusted software runs on it exfiltrating crypto keys?
Vulnerabilities must meet a potential attack scenario before they become a real problem.

@ariadne That actually has me starting to understand why hosting providers keep offering EOL CPUs as dedicated servers.

@alwayscurious yes for a lot of cases it is fine. the practical problems show up with multitenancy