bjoernvold.com

Most distros have implemented a patch for Meltdown as a result of the Intel CPU flaw.

But Spectre remains and it can be used to read all your passwords with a simple Javascript on any Webpage.

This means that you definitely will need to "harden" your Browser against Spectre

This is how you do it on Chrome based browsers Like:

Chrome
Chromium
Iridium (Occasionally fails test even if in Firejail with correct settings)
Opera
Vivaldi

Paste this in your URL bar

And enable Strict site isolation


Firefox will be patched with a regular update
FF version 57.04 is patched - you can check your FF version under "Help" and "About"

In the Brave browser you can enable site isolation in The regular settings under "security".

Microsoft's Edge and IE will be patched through regular Windows updates.
Apple's Safari will be patched through regular security updates.

After changing the settings; remember to close you browser and restart it (a few times couldn't hurt).

In addition you can put your Browser in a Firejail.

Firejail alone will keep your browser from leaking according to my tests. Most of my browsers were already in Firejail (edited in the menu) so I haven't been that vulnerable to Spectre to begin with

Feel free to post fixes for other browsers....
To test that your fixes were successful; you can check it out on this site:

http://xlab.tencent.com/special/spectre ... check.html

If the result is that you are Vulnerable then you definitely are



If the result is negative - you still might be; but hey it is as good as it gets.

....and make no mistake - if you do not implement the fixes above then you will be vulnerable!