this post was submitted on 19 Jul 2024
2006 points (99.1% liked)

linuxmemes

20751 readers
269 users here now

I use Arch btw

Sister communities:

Community rules

  1. Follow the site-wide rules and code of conduct
  2. Be civil
  3. Post Linux-related content
  4. No recent reposts

Please report posts and comments that break these rules!

founded 1 year ago
MODERATORS
poopsmith
zephyr
2006
CrowdStrike effectively bricked windows, Mac and Linux today. (possumpat.io)
submitted 2 months ago by [email protected] to c/linuxmemes
172 comments fedilink hide all child comments
 

CrowdStrike effectively bricked windows, Mac and Linux today.

Windows machines won’t boot, and Mac and Linux work is abandoned because all their users are on twitter making memes.

Incredible work.

you are viewing a single comment's thread
view the rest of the comments
[–] tibi 7 points 2 months ago (1 children)

It's not Microsoft's fault a third party company wrote a kernel module that crashes the OS.

Unlike the mobile world where apps are severely limited and sandboxed, the desktop is completely the opposite. Microsoft has tried many times to limit what programs can do, but encountered a lot of resistance and ultimately had to let it go.

[–] [email protected] 2 points 2 months ago* (last edited 2 months ago) (2 children)

Windows requires that antuviruses run at kernel level, programs which are notoriously buggy and harmful. It is a design flaw to require users to implement mandatory security features in this way. (it is literally not possible to run windows 10 or 11 without an antivirus) Similar security programs on Linux do not run at kernel level, nor should they.

Furthermore, every copy of Windows since Windows 7 requires that kernel modules are signed by Microsoft themselves. Microsoft personally signed off on this code that crashed millions of computers.

[–] tibi 6 points 2 months ago

Antivirus software for Linux also has kernel access. You can't intercept OS operations like opening files or launching executables without kernel access. And some of the companies I worked at also required antivirus software on Linux servers.

You can absolutely run Windows without an anti-virus, it has plenty of security features built-in.

It's all a matter of trust. Do you trust your engineers to properly configure machines to be secure and not run exes from dubious sources, or do you trust a cybersecurity company to do it for you? Anti-virus software nowadays is more about restricting users from doing stupid shit.

[–] tibi 5 points 2 months ago

Oh, and signed drivers aren't about Microsoft validating and testing every driver. It's about verifying that the driver comes from a trusted company and isn't tampered with.