All our servers and company laptops went down at pretty much the same time. Laptops have been bootlooping to blue screen of death. It’s all very exciting, personally, as someone not responsible for fixing it.

Apparently caused by a bad CrowdStrike update.

Edit: now being told we (who almost all generally work from home) need to come into the office Monday as they can only apply the fix in-person. We’ll see if that changes over the weekend…

  • wizardbeard@lemmy.dbzer0.com
    link
    fedilink
    English
    arrow-up
    40
    arrow-down
    2
    ·
    4 months ago

    It’s not a flaw with Windows causing this.

    The issue is with a widely used third party security software that installs as a kernel level driver. It had an auto update that causes bluescreening moments after booting into the OS.

    This same software is available for Linux and Mac, and had similar issues with specific Linux distros a month ago. It just didn’t get reported on because it didn’t have as wide of an impact.

    • raspberriesareyummy@lemmy.world
      link
      fedilink
      English
      arrow-up
      9
      arrow-down
      8
      ·
      edit-2
      4 months ago

      had similar issues with specific Linux distros a month ago. It just didn’t get reported on because it didn’t have as wide of an impact.

      Because most data center admins using linux are not so stupid to subscribe to remote updates from a third party. Linux issues happen when critical package vulnerabilities make it into the repo.

      • wizardbeard@lemmy.dbzer0.com
        link
        fedilink
        English
        arrow-up
        4
        arrow-down
        2
        ·
        4 months ago

        Subscribe to

        Tell me how you haven’t worked as a sysadmin again.

        This wasn’t some switchable feature. The only way I’ve seen to stop this software from auto updating (per some comments on Hacker News/Y Combinator) as it chooses is by blocking the update servers at the firewall or through DNS black holing.

        And yes, they chose to use this software. Look. Crowdstrike bought a fucking SuperBowl ad, a bunch of executives drank the kool aid, and a lot of tech departments were told that they’d be rolling this software out. That’s just how corporate IT works sometimes.

        • raspberriesareyummy@lemmy.world
          link
          fedilink
          English
          arrow-up
          1
          ·
          4 months ago

          I was saying:

          most data center admins using linux are not so stupid to subscribe to remote updates from a third party

          Your response is not related in any way to that. If a third party software - running on system rights - forces auto-updates, that’s called a “rootkit” and any sane admin would refuse to install such a package.

          Competent here also meaning “if the upper management refuses to listen to my advice, I leave because I have other options”. People who implement stupid policies - and especially technological solutions - against their principles are a cancer to democracy. Those are the people that enable tech-illiterate morons to implement totalitarian regimes.

      • Sleepkever@lemm.ee
        link
        fedilink
        English
        arrow-up
        8
        ·
        4 months ago

        But MS had nothing to do with both the testing and rollout?

        It’s a broken 3rd party component. Croudstrikes testing and rollout procedures were inadequate.

      • TopRamenBinLaden@sh.itjust.works
        link
        fedilink
        English
        arrow-up
        5
        ·
        4 months ago

        My Windows gaming PC is completely fine right now, because I don’t use crowd strike. Microsoft didn’t have anything to do with crowd strikes’ rollout or support.

        I love Linux and use it as my daily driver for everything besides some online games. There are plenty of legitimate reasons to criticize Microsoft and Windows, but crowd strike breaking stuff isn’t one of them, at least in my opinion.