I’m one of the admins who manage CrowdStrike at my company.

We have all automatic updates disabled, because when they were enabled (according to the CrowdStrike best practices guide they gave us), they pushed out a version with a bug that overwhelmed our domain servers. Now we test everything through multiple environments before things make it to production, with at least two weeks of testing before we move a version to the next environment.

This was a channel file update, and per our TAM and account managers in our meeting after this happened, there’s no way to stop that file from being pushed, or to delay it. Supposedly they’ll be adding that functionality in now.

Yes, CrowdStrike says they don’t need to do conventional AV definitions updates, but the channel file updates sure seem similar to me.

The file they pushed out consisted of all zeroes, which somehow corrupted their agent and caused the BSOD. I wasn’t on the meeting where they explained how this happened to my company; I was one of the people woken up to deal with the initial issue, and they explained this later to the rest of my team and our leadership while I was catching up on missed sleep.

I would have expected their agent to ignore invalid updates, which would have prevented this whole thing, but this isn’t the first time I’ve seen examples of bad QA and/or their engineering making assumptions about how things will work. For the amount of money they charge, their product is frustratingly incomplete. And asking them to fix things results in them asking you to submit your request to their Ideas Portal, so the entire world can vote on whether it’s a good idea, and if enough people vote for it they will “consider” doing it. My company spends a fortune on their tool every year, and we haven’t been able to even get them to allow non-case-sensitive searching, or searching for a list of hosts instead of individuals.

Speaking as someone who manages CrowdStrike in my company, we do stagger updates and turn off all the automatic things we can.

This channel file update wasn’t something we can turn off or control. It’s handled by CrowdStrike themselves, and we confirmed that in discussions with our TAM and account manager at CrowdStrike while we were working on remediation.

On the off chance that you’re actually asking, there have been studies that have shown the regret rate for transitioning is less than 1%.

Here’s an article about a recent study which tracked people up to 23 years post-transition, showing median regret as 0 out of 100.

Now, you might be thinking to yourself “but that’s just one study, with around 200 participants, and the results were so uniform it caused issues with the statistics. Maybe it’s wrong.” Well, here is a meta-analysis of 27 additional studies, with almost 8,000 participants, which also shows regret rates are <1%.

Hope that helps.

I grumbled about ServiceNow for years, and then my company switched to Cherwell.

Now I’d switch back to ServiceNow in a heartbeat.

I use this too. I’ve had people over who wanted to connect to the Wi-Fi, pulled up the list, and waited for a minute because “it’s still loading!”

11/10, no regrets.

It’s not exactly a remake, it’s an adaptation of the Mean Girls musical.

You can definitely highlight text. I haven’t tried exporting with edits, though, so I can’t speak to that.

You can plug it in and transfer, but again, I haven’t personally done it. I get most of my books from the library, so I just use the Overdrive stuff for that.

I’m going to jump on the Kobo train along with everyone else. I have a Kobo Libra H2O that I really love. I had a couple Kindles before deciding that I really didn’t want to stick with an Amazon product, and chose Kobo because of its integrations with Overdrive. It’s really nice to be able to check out a book from the library directly on my e-reader.

The screen is bright when it needs to be, but dims down quite nicely. The touchscreen is fairly responsive, though it’s e-ink and there are limits to refresh rates. The physical buttons to turn the page are perfect, and I still can’t believe Amazon took them off their Kindles (though I guess I understand them removing the keyboard… even though I liked it).

I actually like mine so much, I bought a second of the same model after I somehow managed to lose my first one. So the one thing I wish they had was integration with Apple Airtag or one of the other device tracking networks!

While you’re not wrong about there being other constellations in the works, Starlink is the first to actually launch more than a (relative) few. Over 50% of satellites in orbit, total, belong to Starlink.

So while there are other projects planned or under construction, Starlink is the most visible by far, and that’s a lot of why we hear about it the most.

Also yeah, it’s owned by Elon Musk, so that alone guarantees it’ll stay in the news.

I’m a security engineer, and encryption is great, but can be bypassed. Relying on encryption assumes it was implemented properly, that the system was shut down properly so all keys were flushed correctly, and the encryption algorithm doesn’t have weaknesses.

Generally if somebody dedicated enough can acquire physical access to a system, they can probably find a way into it given the right resources. Did that happen here? Probably not. Could it have? Absolutely. That’s why most enterprises or government hard drives are shredded rather than just relying on them being wiped or encrypted.

Encryption is part of the solution, but it’s not automatically the complete solution.

We don’t know what was on those servers, but it was apparently sensitive enough that the government redacted descriptions of the data in court filings.

The US government brief said the relocated servers were not wiped before being moved to a new data center. The type of data on the relocated servers was apparently so sensitive that it could not be described in the US court filing, which redacts the sentence that describes what the servers contained.

https://arstechnica.com/tech-policy/2023/09/us-government-slams-musk-in-court-filing-describing-chaotic-environment-at-x/

It’s more “if people quit trying to break the system to enrich themselves, and the politicians actually agreed to empower the agencies which are supposed to oversee and regulate large companies and financial institutions, and we actually listened to the data instead of the soundbites that sound good as long as you don’t think about them much, we’d be much better off.”

Economists are not in charge of anything, politicians and rich people are. And they aren’t incentivized to run things like an economist, because then they would make less money.

Just because the people with an incentive to blow up the economy to make money end up blowing up the economy to make more money every few years doesn’t mean economics is at fault for that. It’s like saying climate science isn’t real because earlier projections of global warming were more optimistic, when the real reason is the science was suppressed and downplayed by the people making boatloads of money off fossil fuels.

We have a fairly solid understanding of an ideal economy. If the economy was run according to current theory, we’d avoid a lot of issues (and find new ones we would address, of course).

However, the economy is run according to political whims, so most of the economic theory gets thrown out the window. It’s pretty easy to run into major issues when nothing stays consistent for more than a couple years, and the interests of those in charge do not include a stable and sustainable economy.

Willow looks like it’s a decent chunk of the way there, as soon as the hardware is more generally available.