But I’ve read so many posts on here about how Linux is flawless!
CrowdStrike broke Debian and Rocky Linux months ago, but no one noticed
Submitted 3 months ago by hal_5700X@sh.itjust.works to technology@lemmy.world
https://www.neowin.net/news/crowdstrike-broke-debian-and-rocky-linux-months-ago-but-no-one-noticed/
Comments
DasAlbatross@lemmy.world 3 months ago
ganymede@lemmy.ml 3 months ago
not sure if you’re being sarcastic, but if anything this news paints linux deployment in an even better light.
breakingcups@lemmy.world 3 months ago
This is good for Bitcoin
Alborlin@lemmy.world 3 months ago
Haven’t you heard 4% market is captured by Linux , it’s the ONLY saviour os out there , windows users and macos users are idiots and all Lemmy Linux dudebros grandpa’s are using Linux without single problem. Despite the fact that each Linux had it’s own shell and there is no escape from terminal ( in 2024) if you even as try to use something more complicated. ;)
Realitaetsverlust@lemmy.zip 3 months ago
For almost every use case a normal user needs, there is a gui. You do not need the terminal.
hal_5700X@sh.itjust.works 3 months ago
quinkin@lemmy.world 3 months ago
Additionally, organizations should approach CrowdStrike updates with caution
We would if we were able to control their “deployable content”.
ISOmorph@feddit.org 3 months ago
I read on another thread that an admin was emulating a testing environment by blocking CrowdStrike IPs on their firewall for the whole network, with the exception of a couple machines to test each update. It’s stupid that he has to do this but hey, his network was unaffected
AlecSadler@sh.itjust.works 3 months ago
Serious question, can you not? There isn’t an option to…like…set a review system first?
EncryptKeeper@lemmy.world 3 months ago
For antivirus definitions? No, and you wouldn’t want to.
corsicanguppy@lemmy.ca 3 months ago
We would if we were able to control their “deployable content”.
Minimum safe distance.
BurnSquirrel@lemmy.world 3 months ago
Companies don’t really use Debian or Rocky in widescale production because they have no support.
Now red hat or ubuntu is a different matter.
Honestly though this does point out that this is a pattern of behavior on crowdstrikes part. This should have been the canary in the coalmine.
lud@lemm.ee 3 months ago
We actually use rocky and I think Debian at work for servers. We are currently migrating away from EOL centos .
histic@lemmy.dbzer0.com 3 months ago
A lot of companies use debian
TrumpetX@programming.dev 3 months ago
We use Alma, which is basically Rocky. Before that, CentOS. Lots of people don’t need or want the expensive support contracts.
OSS support though donations and commits is the way to go unless you get value out of those contracts (we would not).
ninekeysdown@lemmy.world 3 months ago
I don’t know about that. In the HPC space we use a lot of EL distros. Mainly Centos & now Rocky. Most of the nodes run the os in ram too. Though almost all those kind of systems have no internet connection and don’t use things like crowdstrike. I’ve worked for a few places where the only part of the company that used windows was the office staff eg accounting, he, etc. everything else is/was using an EL distro or upstream of one eg Fedora. Those type of places usually don’t mess things like crowdstrike for a lot of different reasons eg the kind of data they’re processing and security requirements on that data.
NutWrench@lemmy.world 3 months ago
In April, a CrowdStrike update caused all Debian Linux servers in a civic tech lab to crash simultaneously and refuse to boot.
And then, you boot their servers from a Linux Live USB, run TimeShift to restore the last system snapshot, refuse the latest patch from Cloudstrike and they all lived happily ever after.
avidamoeba@lemmy.ca 3 months ago
None of these things are used in actual server operations.
Evilcoleslaw@lemmy.world 3 months ago
And it’s not much more difficult to fix on Windows, except for the scale of the problem.
RecluseRamble@lemmy.dbzer0.com 3 months ago
Good luck doing that remotely. Which is the sole problem with this most recent CrowdStrike bug.
friend_of_satan@lemmy.world 3 months ago
Anybody who doesn’t already have ipmi serial console access set up needs to put that on their list of acceptance criteria for remediation of this incident.
kurap1ka@lemmy.world 3 months ago
And on Windows you booted in safe mode and removed one file. What’s the point of your post?
friend_of_satan@lemmy.world 3 months ago
boot their servers from a Linux live usb
If I ran a computer lab that wasn’t already net booted, I’d use this as the motivating factor to put that in place. Net booting to a repair image, or just reinstalling the whole OS either from scratch or a known good disk image, is where anybody who manages a fleet of computers should be.
There was a point in time where I had a pxe boot server vm set up on my laptop that I used to reload servers in our little row of racks at 365 main, because it let me quickly swap out the boot iso, and was faster than usb sticks were at the time.
Vilian@lemmy.ca 3 months ago
Because Linux sysadmins know to test a fucking update before applying to the whole company
suzune@ani.social 3 months ago
Linux admins know that you’re worsening security when installing 3rd party stuff into kernel, so most of them tend to avoid it. And that’s why no one noticed that Crowdstrike problem.
menas@lemmy.wtf 3 months ago
So in the end, they is an internal contradiction in capitalism. It just append to be collapse due to lack of ressources and dumb management
rottingleaf@lemmy.world 3 months ago
It just append to be collapse due to lack of ressources and dumb management
TIL reverting the direction of Siberian rivers and turning Kazakh steppe into agricultural land were capitalist projects.
This one is a contradiction of highly hierarchical and degenerate systems.
With capitalism the contradiction is old and well known - power bends rules. Bent rules cause degeneracy. Degeneracy causes degradation and collapse.
JoeBigelow@lemmy.ca 3 months ago
Got me interested enough to Google, maybe you should too
Research and planning work on the project started in the 1930s and was carried out on a large scale in the 1960s through the early 1980s. The controversial project was abandoned in 1986, primarily for environmental reasons, without much actual construction work ever done.
Realitaetsverlust@lemmy.zip 3 months ago
I feel like no matter what’s happening, some people will always blame capitalism
the_toast_is_gone@lemmy.world 3 months ago
What does an economic system have to do with bad IT decisions?
menas@lemmy.wtf 3 months ago
- Short term interest: Yearly benefits make the corporation value. Work to enhance stability, such as investment in other open source project, documentation, formation, or code quality enhancement are less likely to qet time
- Commercial focus: In a capitalist economy, we don’t have pure and perfect knowledge of product. Even if it’s supposed to work like this, commercials and adds are way more effective to sell products, than a top notch product
- Antagonist interests: even if workers tend to like making good stuff, they’d rather eat and get housed. Sending a warning because the products are bad or dangerous can threat someone that made a bad decision, which is likely to be someone in charge. Keeping a low profile is (unfortunately) a reasonable behavior
I think that an economy lead by financial interest, open market, and a hierarchy in the production is a good definition of capitalism.
And yes, definitely the way that people get food, housing, and not being exclude will define a lot of thing in society.
ZILtoid1991@lemmy.world 3 months ago
Microsoft already has a very bad reputation, so they will be blamed for every issue on their OS.
Vista suffered from bad 3rd party drivers, then people proceeded to just dunk on M$ due to their already bad name. Despite Edge is nowadays just a different flavor of Chromium, people are still making “haha IE slow” memes, even those that still claim Google being the “savior of the internet”.
StaySquared@lemmy.world 3 months ago
I recently learned that this is the same company that gave us the bs Russia Gate.
kevindqc@lemmy.world 3 months ago
So who do you think hacked the DNC and got their emails, then?
StaySquared@lemmy.world 3 months ago
U.S. intelligence officials cannot make definitive conclusions about the hacking of the Democratic National Committee computer servers because they did not analyze those servers themselves. Instead, they relied on the forensics of CrowdStrike, a private contractor for the DNC that was not a neutral party, much as “Russian dossier” compiler Christopher Steele, also a DNC contractor, was not a neutral party. This puts two Democrat-hired contractors squarely behind underlying allegations in the affair – a key circumstance that Mueller ignores.
btaf45@lemmy.world 3 months ago
I recently learned that this is the same company that gave us the bs Russia Gate.
WTF you mean the US Senate?
viking@infosec.pub 3 months ago
Bold of them to assume there’s a future after a gazillion off incoming lawsuits.
finley@lemm.ee 3 months ago
I was listening to a podcast earlier, and they mentioned the fact that their legal liability may, in fact, be limited because of specific wording in most of their contracts.
In other words, they may actually get away with this in the short term. In the long-term, however, a lot of organizations and governments that were hit by this will be reevaluating their reliance on such monolithic organizations as crowd strike, and Microsoft.
rumschlumpel@feddit.org 3 months ago
(x) doubt
They had decades to consider Microsoft a liability. Why start doing something about it now?
Brkdncr@lemmy.world 3 months ago
Contracts aren’t set in stone. Not only are those contracts modified before they are accepted by both parties, it’s difficult to limit liability when negligence is involved. CS is at worst going to be defending against those, at best defending against people dumping them ahead of schedule against their contracted term length.
TheBat@lemmy.world 3 months ago
Oh so you can fire QA department, get absolutely destructive update to millions of systems across the globe and this gross negligence doesn’t matter because of magic words in a contract? I don’t think so.
mipadaitu@lemmy.world 3 months ago
They mean after Crowdstrike gets sold, the new company promises a more rigorous QA, and quietly rebrands it.
captain_aggravated@sh.itjust.works 3 months ago
Slorp is now Bonto!
bitchkat@lemmy.world 3 months ago
I think you mean after they sell their assets to a new company. Leave the lawsuits with the old company who will shut down.
Default_Defect@midwest.social 3 months ago
Cloudstrike, wait no!