Comment on CrowdStrike unhappy with “shady commentary” from competitors after outage
01189998819991197253@infosec.pub 4 weeks agoHorrible how? I’ve always thought they were pretty solid in the arena.
Comment on CrowdStrike unhappy with “shady commentary” from competitors after outage
01189998819991197253@infosec.pub 4 weeks agoHorrible how? I’ve always thought they were pretty solid in the arena.
ozymandias117@lemmy.world 4 weeks ago
Their ftrace hooks cause all disk usage to be serialized, making your multi-core processor single-core when doing anything I/O bound
We saw between 500% - 800% increases in build times with their software installed
01189998819991197253@infosec.pub 3 weeks ago
Well, that’s spectacular. What do you guys use now?
ozymandias117@lemmy.world 3 weeks ago
We’re still using them on machines where performance doesn’t matter
On build machines, they’re on a special VLAN and don’t have endpoint protection, but they only download from a protected mirror
01189998819991197253@infosec.pub 3 weeks ago
We have a similar issue with defender, but those machines are internet connected, so we must have EDR on them.