• frog_brawler@lemmy.world
      link
      fedilink
      arrow-up
      11
      ·
      edit-2
      4 months ago

      Believe it or not, CrowdStrike’s model forces updates and people pay a lot of money for it to “handle things” for them. I had to deploy it at a previous employer about 8 years ago. It was stupid.

    • superkret@feddit.org
      link
      fedilink
      arrow-up
      4
      ·
      4 months ago

      No one forces you to update. People simply choose to run an OS where automatic updates are the default.
      And that OS also lets you permanently disable automatic updates. It just doesn’t give you a straight-forward GUI option for it.

      • Ookami38@sh.itjust.works
        link
        fedilink
        arrow-up
        8
        ·
        4 months ago

        Critically wrong in this case. Crowdstrike updates push outside of, and regardless of, os settings. This wasn’t, and never was, an os issue, it’s a crowdstrike issue. Good try though.

    • Katana314@lemmy.world
      link
      fedilink
      English
      arrow-up
      3
      ·
      4 months ago

      Problem is, an individual computer user often isn’t the victim of that computer’s lack of updates.

      Any time a site you like has been DDOSed, it’s often from thousands of zombie computers infected by some malware that their owners aren’t aware of. Those infections are generally made possible by unclosed security holes. So, you know…not updating.

      • lightnsfw@reddthat.com
        link
        fedilink
        arrow-up
        3
        ·
        edit-2
        4 months ago

        I’m fine being part of a botnet if that’s the trade off for not using windows 11. Just got it installed on my testing PC at work and I hate it so much.

    • HauntedCupcake@lemmy.world
      link
      fedilink
      English
      arrow-up
      2
      ·
      edit-2
      4 months ago

      Forced updates of an optional corporate anti-virus designed to immediately detect and distribute information on threats should be illegal?

      Or is this just an unrelated comment?

      • Angry_Autist (he/him)@lemmy.world
        link
        fedilink
        arrow-up
        2
        ·
        4 months ago

        You really don’t understand how many millions of hours of human effort force updates have destroyed.

        Yes, there should always be, ESPECIALLY IN CORPORATE ENVIRONMENTS, a point where the client can vet and approve the update.

        This recent Crowdstrike problem is proof of it. You LITERALLY witnessed proof as 1/4 of the world basically shut down for the day. This would have been avoided in many cases if the update was vetted by the local IT teams.

        • HauntedCupcake@lemmy.world
          link
          fedilink
          English
          arrow-up
          2
          ·
          4 months ago

          So CrowdStrike shouldn’t allow real time threat protection? That’s what caused the issue. It needs to update its threat library to do deal with any day 1 attacks. It’s one of the main reasons it’s used