There have been multiple accounts created with the sole purpose of posting advertisement posts or replies containing unsolicited advertising.

Accounts which solely post advertisements, or persistently post them may be terminated.

catloaf ,

Is this even relevant? Wasn’t it a kernel driver module?

sunzu ,

This whole thing just exposes that people getting paid big bucks for this shit, aint really that smart or planning for anything, they are just collecting rent until something blows up lol

HubertManne ,

even when it was the bears I knew it was regulation and taxes.

sunzu ,

why do communists hate free market and liberty?

HubertManne ,

won't someone think of the corporations!?

sunzu ,

they feed you, shit lord... show some respect for your betters!

apfelwoiSchoppen ,
@apfelwoiSchoppen@lemmy.world avatar

Oh FFS. I love this era where companies will not accept the blame due to “liability”, even when they are explicitly to blame.

Blue_Morpho ,

We all hate Microsoft for turning Windows into an ad platform but they aren’t wrong.

They are legally required to give Crowdstrike or anyone complete low level access to the OS. They are legally required to let Crowdstrike crash your computer. Because anything else means Microsoft is in control and not the software you installed.

It’s no different than Linux in that way. If you install a buggy device driver on Linux, that’s your/the driver’s fault, not Linux.

TimeSquirrel ,
@TimeSquirrel@kbin.melroy.org avatar

You are not wrong, but people don't want to hear it. Do we want to retain control over what goes into kernel space or not? If so, we have to accept that whatever we stuff in there can crash the entire thing. That's why we have stuff like driver signatures. Which Crowdstrike apparently bypassed with a technical loophole from how I understand it.

Cyth ,

I actually agree, I own my computer / OS and I should be able to do what you’re saying (install and break things). But Microsoft is a trillion dollar multi national corporation and I am certainly going to give them grief about this because I owe them less than nothing, let alone any good will.

Feyd ,

That doesn’t make any sense. How does arguing against your position do anything but harm it?

Maybe just give them grief over the myriad negative things they do that don’t counter your position?

Blue_Morpho ,

You are going to give grief to Microsoft for allowing what you want?

???

kescusay ,
@kescusay@lemmy.world avatar

The thing is, Microsoft’s virus-scanning API shouldn’t be able to BSOD anything, no matter what third-party software makes calls to it, or the nature of those calls. They should have implemented some kind of error handler for when the calls are malformed.

So this is really a case of both Crowdstrike and Microsoft fucking up. Crowdstrike shoulders most of the blame, of course, but Microsoft really needs to harden their API to appropriately catch errors, or this will happen again.

Heavybell ,
@Heavybell@lemmy.world avatar

I don’t believe there was any specific API in use here, for virus scanning or not. I suppose maybe the device driver API? I am not a kernel developer so I don’t know if that’s the right term for it.

Crowdstrike’s driver was loaded at boot and caused a null pointer dereference error, inside the kernel. In userspace, when this happens, the kernel is there to catch it so only the application that caused it crashes. In kernelspace, you get a BSOD because there’s really nothing else to do.

youtube.com/watch?v=wAzEJxOo1ts

woelkchen ,
@woelkchen@lemmy.world avatar

Meanwhile a Microsoft employee on how to prevent such an issue under Linux: www.phoronix.com/…/systemd-Auto-Boot-Assessment

  • All
  • Subscribed
  • Moderated
  • Favorites
  • [email protected]
  • random
  • lifeLocal
  • goranko
  • All magazines
    •