Infosec.Pub
  • Communities
  • Create Post
  • Create Community
  • heart
    Support Lemmy
  • search
    Search
  • Login
  • Sign Up
pastermil@sh.itjust.works to Asklemmy@lemmy.ml · 4 months ago

What makes CrowdStrike so ubiquous that their error created such catastrophe?

message-square
message-square
48
fedilink
160
message-square

What makes CrowdStrike so ubiquous that their error created such catastrophe?

pastermil@sh.itjust.works to Asklemmy@lemmy.ml · 4 months ago
message-square
48
fedilink
  • wewbull@feddit.uk
    link
    fedilink
    English
    arrow-up
    2
    arrow-down
    5    ·
    4 months ago

    This isn’t a driver. It’s anti-malware. Nobody on Linux puts such software in kernel space (as far as I’m aware). Root service? maybe, but that’s still a user-space process.

    • wizardbeard@lemmy.dbzer0.com
      link
      fedilink
      English
      arrow-up
      6      ·
      edit-2
      3 months ago

      It is a driver though, it runs at kernel level and intercepts system calls for logging, analysis, and potential blocking if malware type patterns are detected in the system calls.

    • Kayn@dormi.zone
      link
      fedilink
      arrow-up
      1      ·
      3 months ago

      Nobody on Linux puts such software in kernel space

      Falcon Sensor is also being distributed for RHEL and Debian, and it caused issues there too.

      https://www.neowin.net/news/crowdstrike-broke-debian-and-rocky-linux-months-ago-but-no-one-noticed/

Asklemmy@lemmy.ml

asklemmy@lemmy.ml

Subscribe from Remote Instance

Create a post
You are not logged in. However you can subscribe from another Fediverse account, for example Lemmy or Mastodon. To do this, paste the following into the search field of your instance: !asklemmy@lemmy.ml

A loosely moderated place to ask open-ended questions

Search asklemmy 🔍

If your post meets the following criteria, it’s welcome here!

  1. Open-ended question
  2. Not offensive: at this point, we do not have the bandwidth to moderate overtly political discussions. Assume best intent and be excellent to each other.
  3. Not regarding using or support for Lemmy: context, see the list of support communities and tools for finding communities below
  4. Not ad nauseam inducing: please make sure it is a question that would be new to most members
  5. An actual topic of discussion

Looking for support?

  • !lemmy_support@lemmy.ml
  • !fediverse@lemmy.ml
  • !selfhosted@lemmy.world

Looking for a community?

  • Lemmyverse: community search
  • sub.rehab: maps old subreddits to fediverse options, marks official as such
  • !lemmy411@lemmy.ca: a community for finding communities

Icon by @Double_A@discuss.tchncs.de

Visibility: Public
globe

This community can be federated to other instances and be posted/commented in by their users.

  • 1.15K users / day
  • 5.01K users / week
  • 10.9K users / month
  • 22.3K users / 6 months
  • 337 local subscribers
  • 43.7K subscribers
  • 5.66K Posts
  • 283K Comments
  • Modlog
  • mods:
  • Evan@lemmy.ml
  • mekhos@lemmy.ml
  • tmpod@lemmy.pt
  • OrangeSlice@lemmy.ml
  • BE: 0.19.5
  • Modlog
  • Instances
  • Docs
  • Code
  • join-lemmy.org