Posts
7453
Following
217
Followers
598
Linux kernel mm hacker.

Wrote a book about mm (now in editing phase).

Work at Oracle.

C/[will learn rust at some point]/ex-C++.

Book - https://linuxmemory.org/
Me - https://ljs.io/
Music - https://soundcloud.com/distal_music/

Arsenal fan, cat maniac, synth experimentalist. Brit.

Opinions are all my own and represent nobody else.

"Linux would have prevented this!" literally true because my former colleague KP Singh wrote a kernel security module that lets EDR implementations load ebpf into the kernel to monitor and act on security hooks and Crowdstrike now uses that rather than requiring its own kernel module that would otherwise absolutely have allowed this to happen, so everyone please say thank you to him

4
28
2

vitaut 🤍❤️🤍 🇺🇦

0
2
1

Technically speaking CrowdStrike actually kept a lot of hackers from breaking into your systems today.

6
6
1

I often tell people that security software is sort of uniquely horrible since it runs at maximum privilege level while being developed by B- or C- software shops. today isn't a counterexample.

2
6
2

Remember today whenever anyone espouses the philosophy of "move fast and break things".

0
4
1

vitaut 🤍❤️🤍 🇺🇦

Landing some critical code without testing in solidarity with CrowdStrike developers.

1
2
1
Edited 21 hours ago

ONGOING WAVES OF SMUGNESS FROM LINUX AND APPLE USERS "COULD LAST DAYS", EXPERTS WARN.

8
7
1
Edited 15 hours ago

The largest denial of service attack ever has been executed by the new threat actor, CROWDSTRIKE FALCON, aligned to the US Government.

2
3
2

vitaut 🤍❤️🤍 🇺🇦

1
1
1

Carina C. Zona (is in Berlin)

Drastic budget cuts for FOSS, by the EU, and the explanation given is that "because lots of budget are allocated to AI, there is not much left for Internet infrastructure". https://www.theregister.com/2024/07/17/foss_funding_vanishes_from_eus/ So here is one more way that the fever over "AI" bullshit does real harm. Infra projects that protect security, privacy, and other vital needs will be underfunded so that more money can be thrown into the "AI" black hole. Sigh.

0
30
1
@mdecky I have very serious doubts about that paper, the fact it's proprietary (right?) and they make extremely spurious perf claims is really dubious.

And the idea that they can be entirely monothilic kernel linux API/ABI compatible (lol) but still have all these claimed perf numbers is super super dubious.

If and when actual code is released for that and it's actually demonstrated in practice with specifics rather than in paper form I'l buy it.

Also this is coming from a very very iffy source...

As to the rest of your points, sure ;) I mean I am no expert on this and so don't want to discount microkernels, what exists in practice isn't necessarily the best approach.

I still find it hard to believe there wouldn't be really serious performance issues in a microkernel intuitively.

But perhaps, as you say, there's a time and a place (mission critical things) where you sacrifice some of this for stability.
1
0
0
@mdecky big factor in this is a pushed update though and unlikely linux would have that issue, or wouldn't have some mechanism for dealing with a broken kernel module -> panic.

But I mean yes monolithic kernels are subject to this kind of problem generally it is a thing...

I wonder what Tanenbaum and Linus would say? ;)
1
0
1

Rairii (bootloader unlocked, MSR_LE set)

so I happen to have a 0day downgrade attack bitlocker bypass, which would be very helpful for people dealing with the crowdstrike issue and have more than about a dozen systems with tpm+secure boot bitlocker lol

the downgrade attack part is why i never publicly documented the original issue yet

also I bet MS are very annoyed that everyone’s saying its their fault

0
2
1
@mdecky no no no BRO we kept linux out of this so far! ;)
1
0
0

If anybody is wondering the impact of the Crowdstrike thing - it’s really bad. Machines don’t boot.

The recovery is boot in safe mode, log in as local admin and delete things - which isn’t automateable. Basically Crowdstrike will be in very hot water.

3
4
1

HAMMER SMASHED FILESYSTEM 🇺🇦

microsoft today: i'd just like to interject for a moment. what you're referring as windows, is in fact, crowdstrike/windows...

0
7
4
Edited yesterday

Crowdstrike published a faulty update. Causes Windows to bluescreen. Driver is C-00000291*.sys. Will cause worldwide outages. Thread follows, I suspect. 🧵

7
15
2
Edited 23 hours ago

Summary of how social media is performing over the CrowdStrike BSOD:

Bluesky: Crickets, because not enough people are on

Mastodon: Deep tech analysis from people currently doing front line support

Twitter: Fake screenshots from Cryptobros

Threads: Three day old content

Facebook: Look at my cat!

4
16
2

Thank you Crowdstrike for helping to illustrate that Open Source is not the problem.

14
29
4
Show older