CrowdStrike Disaster: It's Not a Windows Problem ...

The entire co-pilot announce is what eventually made me switch. I still dual-boot into Windows for the one or two apps that I don't have a good Linux alternative two, but even then, I find that very rare. Eventually, I'll probably just remove Windows altogether, but not yet. Linux has provided me what I need for productivity, as well as gaming and other entertainment. But that's me.

iBolski

I'm from Argentina, my english is not the best, your way to speak slowly and clearly is great, thanks for your videos!

EmmaEG

One of the most annoying thing about the Linux community is how many people THINK they understand how things work when they actually have no clue.
This is another example.

RomainDelmaire

The Linux version of CrowdStrike had nearly the same problem, but it was contained quickly.

dawidkrol

ngl i thought at first microsoft messed up till i later discovered it was crowdstrikes fault

Totallynotmwa

Y E S, People do need to read, a lot of my friends blamed Microsoft when Microsoft had NOTHING to do with Crowdstrike at all, it was all Crowdstrikes fault and I don't understand why people don't understand that. Microsoft can't stop everything from breaking their systems especially when it was the user / business that installed the software in the first place. You should have known what you were entering into, but also Crowdstike should have known to test everything they do before they push it to production -_-

TheDeuo

There was an Azure outage just before the crowdstrike problems began. But it was not related to crowdstrike in any way

simontaplin

Well, I think you're wrong. The fact that Microsoft still allows ring0 access to their kernel is mindblowing. Restricting access to windows api should be their job. That's why kernel level anti-cheat software should have no business working as a driver and communicating directly with the hardware.

TurntableTV

Nothing but the OS should run in ring 0. Anything that does require ring 0 like GPU drivers must be tested thoroughly and at least a couple rounds of testing. Like a lot of things are packed into the Linux kernel, including GPU drivers but I myself never experience catastrophic failure, yet.
Crowdstrike on the other hand just did one of the most successful trickled down attack in history with just one faulty driver.

F_Around_and_find_out

Actually, Microsoft is a partner of crowdstrike and includes the software in one of their Enterprise packages (I think azure sentinel?).

Also their kernel should have safeguards and failsafes against this kind of error. Microsoft is partially responsible for the problem.

Plus, even ignoring this, their os is terrible and should never be deployed on critical infrastructure; with it without endpoint response software.

quantumangel

I was at work when this happened but strangely it didn't affect my workplace. I had heard about it through YouTube.

pip

Although this was really not Microsoft's fault, it was the direct result of a Windows/CrowdStrike monoculture that allowed it to become such a massive problem in the first place. Any software that has hooks directly into the kernel is suspect in my opinion, no matter the OS, and CS is definitely guilty here.

Windows and/or CrowdStrike, whatever the monoculture, it's all bad. We need diversity from top to bottom. This is what *not* to do. Take note, all users of CrowdStrike on Windows.

UltraZelda

There are companies that require software like CrowdStrike Falcon on their servers as part of various compliance requirements (I have now worked for 3 organizations that have had to implement it on servers and watch it cause issues with web application servers) and there is a version of Falcon for Datacenters and Microsoft has their version for Windows servers. That's part of the reason why a CrowdStrike Falcon update did hit Linux systems as many were servers.

questionlp

If the system doesn't have a better resilience against third party mess up, it is partly their fault. Microsoft ot Linux. It is absurd that the third party software can literally bring the whole industries down like this.

D.von.N

Some immutable linux distros probably would be immune to this. But, I agree that most linux machines would be affected

falajose

All of a sudden you sound like great scott channel 😮

diginomad

Back in April, Crowdstrike broke debian system 😂

adnanalam

Also the whole WHQL signing thing is irrelevant here. The kernel module itself is signed, but reads an external file for definitions. I really dislike Microsoft too but this really isn't their fault. Crowdstrike is the one who wrote the bad update, Crowdstrike is the one who decided to push the update with zero testing. And the companies affected are the ones who gave crowdstrike ring 0 permission to their machines. Unless Microsoft bans third party kernel modules, there really aren't to blame here

rabbits

I wish I could make the switch, but I guess my pc is not that compatible with Linux because every distro I tried has this weird "bug" where my pc freezes constantly, and it doesn't matter if I'm on Wayland, x11, gnome, KDE, XFCE, it will always freeze, and I've worked really hard to fix this because I want to use Linux, but I just can't, whether on Nvidia or AMD it just won't work without freezes when my pc on Windows runs well.

Nostalgium.

Codec not supported:
VLC could not decode the format "hevc" (MPEG-H Part2/HEVC (H.265)) . How to solve this. gnom fedora 40

xrahulrajan