Is Splunk planning to publish any official documentation pertaining to performance impacts associated to Spectre/Meltdown patches and/or provide any mitigation/remediation recommendations given how significant the impact might be?
We have RHEL kernels at our organization and are deeply concerned with some of the reported performance impacts on this thread, so any information release would be highly appreciated.
See this blog post for the latest Splunk communication and test results: https://www.splunk.com/blog/2018/02/12/meltdown-patch-and-the-impact-on-infrastructure-supporting-sp...
Splunk will publish the information. There's just a lot of different use cases and they don't want to publish anything before doing thorough testing.
They posted this on the 10th. Radio silence since.
https://www.splunk.com/blog/2018/01/10/security-update-meltdown-and-spectre-vulnerabilities.html