Wouldn’t it have made more sense for them to improve the boot recovery process instead?
If the system fails to boot after a driver update, roll back the update and inform the user on startup.
Microsoft is moving antivirus providers out of the Windows kernel
Submitted 3 weeks ago by baatliwala@lemmy.world to technology@lemmy.world
https://www.theverge.com/news/692637/microsoft-windows-kernel-antivirus-changes
Comments
Railison@aussie.zone 3 weeks ago
FooBarrington@lemmy.world 3 weeks ago
AFAIK the Crowdstrike issue wasn’t a driver update, just virus definitions outside the driver, so your method wouldn’t have helped.
Damage@feddit.it 3 weeks ago
I wonder whether solutions like Twincat for industrial PC/PLCs will be affected by this. Interfacing directly with the kernel and replacing the scheduler are, AFAIK, fundamental to making Windows viable for real time use.
GreenCrunch@lemmy.today 3 weeks ago
An interesting question. Assuming they’re only targeting security/antivirus products at the moment (see the discussion regarding anti-cheat) it may be that those applications get a pass for now.
Auli@lemmy.ca 3 weeks ago
No I think they are limiting kernel access. These are just what moist people know that would use it.
mostlikelyaperson@lemmy.world 3 weeks ago
I could see some exception for windows 11 IoT being made, but I honestly don’t know.
renegadespork@lemmy.jelliefrontier.net 3 weeks ago
Here’s hoping anticheat goes with them.
shininghero@pawb.social 3 weeks ago
Cool. Do anticheat vendors next.
Toes@ani.social 3 weeks ago
Do them now! Haha