"Linux would have prevented this!" literally true because my former colleague KP Singh wrote a kernel security module that lets EDR implementations load ebpf into the kernel to monitor and act on security hooks and Crowdstrike now uses that rather than requiring its own kernel module that would otherwise absolutely have allowed this to happen, so everyone please say thank you to him
@mjg59 I find these recent takes by the Linux “Master Race” / Community extremely toxic and damaging to the community. Open Source Software is not the answer and has shared it’s own number of recent controversies (ie XC, OpenSSL) but these seem to be forgotten about pretty quickly - just because it’s open doesn’t mean it’s secure. As a software developer and user of MacOS, Windows 11 and Debian 12, I find all 3 OS’s have their place, purpose and reason to co-exist
@Simbo2k6 I don't think open source solves this problem, but this *specific* problem is absolutely solved by Linux and I am not going to generalise beyond that
@mjg59 seeing as a similar api is absolutely available within the closed source OS that suffered this unfortunate issue, open source has no real advantage here. Crowdstrike had reportedly threatened an anti-trust lawsuit as a result of being forced to use it. There are also reports of Debian suffering a similar issue as a result of Crowdstrike’s poor code review / qa practices. Parading Open Source around as the saviour is just farcical as the issue is outside Microsoft