This latest debacle is making my department move from windows to Linux. We were already planning it very slowly but then everything crashed at the same time…and all our other services worked except the ones on windows boxes. We can’t afford downtime so it was decided.
I don’t know how CrowdStrike works on Linux, but it’s worth remembering that if it’s a kernel level driver like it is on windows, and they release a driver that crashes the Linux kernel, there’s a chance for the same thing to happen.
Thank you for mentioning that. I really hate how people on here think Linux is some panacea that will magically solve everything. It too it just another tool that depends on how it’s used. CrowdStrike exists for Linux, and it was crashing systems a few months ago.
The bigger issue is most people who use Linux know what they’re doing. There are a lot of competent Windows Administrators too who didn’t have issues or were able to recover them in a timely manner. What happens though is you have a very large set of people who just need a computer, need is secured and don’t know how to administer or manage it. Doesn’t matter if they’re running Linux, or Windows, they’ll always have the greatest problems. They just happen to use Windows because it offers better Enterprise support options and usability. One day, Linux may be that, but I guarantee it won’t fix all of those pebkac issues.
I mostly agree. As someone that’s worked with both Windows and Linux for over 15 years, I think we need to ask the question of “why do we see so many incompetent admins?”
If you aren’t paying people enough to give a shit about what they are doing, they won’t.
The answer is that companies are unwilling to allocate sufficient budget to infrastructure. So anyone competent leaves either because either there is better pay elsewhere, or they don’t want to be held responsible for the shoestring shitshow that companies are willing to pay for.
Which is sort of the reason crowdstrike is so popular in the first place. Technically inept leaders want to check a “secure” box in their infrastructure presentation to the board, and certainly don’t want to hire an actual cybersecurity team alongside what they already consider to be an expensive IT team. (Granted they can’t do the mental work of realizing that basically every one of their employee uses a computer every day for hours at a time, and connects to vast networks of computers sitting in datacenters). So to save money, and seeing the legally binding contract, they use crowdstrike.
I personally get nervous when any software wants to mess with drivers unless it’s graphic drivers.
For work we don’t plan on using cloud strike. We needed to get everything up asap and the os allowed us to do so quickly. Seemingly unrelated systems and Azure was all down for quite some time.
This latest debacle is making my department move from windows to Linux. We were already planning it very slowly but then everything crashed at the same time…and all our other services worked except the ones on windows boxes. We can’t afford downtime so it was decided.
I don’t know how CrowdStrike works on Linux, but it’s worth remembering that if it’s a kernel level driver like it is on windows, and they release a driver that crashes the Linux kernel, there’s a chance for the same thing to happen.
It did happen already https://www.theregister.com/2024/07/21/crowdstrike_linux_crashes_restoration_tools/
CrowdStrike absolutely fucked Linux in the past.
Thank you for mentioning that. I really hate how people on here think Linux is some panacea that will magically solve everything. It too it just another tool that depends on how it’s used. CrowdStrike exists for Linux, and it was crashing systems a few months ago.
The bigger issue is most people who use Linux know what they’re doing. There are a lot of competent Windows Administrators too who didn’t have issues or were able to recover them in a timely manner. What happens though is you have a very large set of people who just need a computer, need is secured and don’t know how to administer or manage it. Doesn’t matter if they’re running Linux, or Windows, they’ll always have the greatest problems. They just happen to use Windows because it offers better Enterprise support options and usability. One day, Linux may be that, but I guarantee it won’t fix all of those pebkac issues.
I mostly agree. As someone that’s worked with both Windows and Linux for over 15 years, I think we need to ask the question of “why do we see so many incompetent admins?”
If you aren’t paying people enough to give a shit about what they are doing, they won’t.
The answer is that companies are unwilling to allocate sufficient budget to infrastructure. So anyone competent leaves either because either there is better pay elsewhere, or they don’t want to be held responsible for the shoestring shitshow that companies are willing to pay for.
Which is sort of the reason crowdstrike is so popular in the first place. Technically inept leaders want to check a “secure” box in their infrastructure presentation to the board, and certainly don’t want to hire an actual cybersecurity team alongside what they already consider to be an expensive IT team. (Granted they can’t do the mental work of realizing that basically every one of their employee uses a computer every day for hours at a time, and connects to vast networks of computers sitting in datacenters). So to save money, and seeing the legally binding contract, they use crowdstrike.
I personally get nervous when any software wants to mess with drivers unless it’s graphic drivers.
For work we don’t plan on using cloud strike. We needed to get everything up asap and the os allowed us to do so quickly. Seemingly unrelated systems and Azure was all down for quite some time.