• TrickDacy@lemmy.world
    link
    fedilink
    arrow-up
    0
    ·
    4 months ago

    I’ve found it funny how many people think they need to defend windows by saying " this could’ve happened to Linux too!!"

    Okay, sure. Yeah you’re right about Linux being just as insecure as windows too 😉

    • proton_lynx@lemmy.world
      link
      fedilink
      arrow-up
      1
      ·
      4 months ago

      I think people are missing the point here. The biggest problem was not that the update was bricking the machines, that could’ve happened to Linux/macOS/BSD etc. The problem is that the solution to the problem is to MANUALLY access the machine, get into safe mode and type some commands. This is insane. And you should be able to EASILY disable automatic updates for apps like that on Windows Server.

      • kelargo@lemmy.world
        link
        fedilink
        arrow-up
        1
        ·
        4 months ago

        Crowdstrike exists for Linux. Are their reports their update affected Linux servers? I have not read that anywhere.

      • Buddahriffic@lemmy.world
        link
        fedilink
        arrow-up
        1
        ·
        4 months ago

        I dunno, I’d say them deploying an update that bricked machines at the scale they did shows they didn’t test it very well at smaller scales. They could have even still used their users as beta testers, just needed to do a subset of them first.

      • TrickDacy@lemmy.world
        link
        fedilink
        arrow-up
        1
        ·
        4 months ago

        To those many Linux users who took a look at their circumstances and said “I definitely need antivirus software!”

        • PainInTheAES@lemmy.world
          link
          fedilink
          arrow-up
          1
          ·
          4 months ago

          CrowdStrike does more than anti-virus and yes enterprise Linux installations need a lot of security controls that average Linux users don’t need.

            • PainInTheAES@lemmy.world
              link
              fedilink
              arrow-up
              1
              ·
              4 months ago

              Bruh, I’ve used Linux for over 10 years. I run Arch on my laptop and have a homelab powered by Proxmox, Debian, and OPNSense. I don’t run any AV in my lab but do follow other security practices.

              At work it’s a different story. Products like CrowdStrike also collect logs, scan for vulnerabilities, provide graphing and dashboarding capabilities, provide integrations into ticketing platforms for investigation and remediation by security teams, and more. AV is often required because Windows users can upload infected files to Linux-run SMB shares. Products like CrowdStrike often satisfy requirements set by cybersecurity insurance.

              This is not simping, this is not Linux vs Windows. You just clearly have no experience in the enterprise Linux space and business security requirements.