[leandrod]

Free just got cheaper.

Yeah, I know using free software isn’t a panacea. Still it would be a step in the right direction, plus I could not refrain from the cheap shot at M$ Windows.

[gruez]

This isn't your personal computer/homelab where you can get away with using common sense antivirus or even windows defender. Software like crowdstrike are often used in industries where they're mandated to install such software for compliance reasons (eg. PCI-DSS). Even if you were using linux you'd still need to install it, and crowdstrike previously had issues with their linux agent. It was just uncommon enough that it didn't hit the news.

[chgs]

This is why the important thing is diversity. The more diverse your ecosystem they less likely you are to suffer a catastrophic failure

If half your tills are windows/defender and half linux/crowdstrike then half your tills are going to be working.

[gruez]

Except that seems like a maintenance nightmare day to day. There's bugs in the linux version but not the windows version, not to mention having to write two sets of software. Imagine having to get your app's prod to work on both windows AND linux.

[midtake]

Agreed. It should be deployed entirely on Linux. Rip and rebuild is much easier on Linux. Using Windows as a server should be seen as a dark pattern in 2024.

For EMS, hospitals, Windows makes sense on the server because they don't know any better. For anyone remotely technologically competent, Windows shouldn't even be considered an option other than as workstations. Linux on the server is the only way and no one can convince me otherwise.

[gruez]

>Using Windows as a server should be seen as a dark pattern in 2024.

>Linux on the server is the only way and no one can convince me otherwise.

Now meet the sysadmin that thinks the same, but for windows for clients. At the risk of overgeneralizing, people are only for "diversity" when it means supporting their preferred underdog platform (eg. linux desktop). When they're the dominant incumbent it's suddenly "dark pattern", "they don't know any better" and "no one can convince me otherwise".

[ssl-3]

Two teams. Two systems. Identical design specifications and goals.

If the results match: Everything is largely proven to be working as-designed, and the output is assumed to be valid. This is an advantage.

If one breaks: Nothing is proven to be working, but that's no worse than we have today with just one system. This is not a disadvantage.

[xnyan]

Cloudstrike customers voluntarily agreed to allow Cloudstrike to push kernel drivers. What should Microsoft have done to prevent this?

[ck45]

Move Windows Defender into user space and enforcing the same for all security software.

[IcyWindows]

This has nothing to do with how Defender works.

Crowdstrike shipped a driver that they marked as a mandatory boot driver. The Windows OS could have had more recovery options otherwise.

[ck45]

Moving Defender to user space is a requirement to lock down windows from a fair competition perspective. Microsoft is currently blaming the EU commission for not allowing them locking down Windows, compare https://www.telegraph.co.uk/business/2024/07/22/microsoft-bl...