top | item 41008308 (no title) ilkkao | 1 year ago Some government should force them to release a technical postmortem. Feels that they don't do it otherwise. discuss order hn newest educasean|1 year ago There should be congressional hearings on this. Not just post mortems. CoastalCoder|1 year ago Honest question: would you expect Congress to respond in a way that's a true net-positive? load replies (1) gen3|1 year ago I don’t think a cybersecurity company can take down half the US and not release a postmortem spuz|1 year ago Of course, but we specifically would like to see a _technical_ postmortem that examines what kind of incremental rollout procedures they have and how this update overcame those. aeyes|1 year ago Or... you know... This kind of software should be open source or companies using it should at least be able to audit the code themselves.Supposedly they have all kinds of certifications but not even having basic QA demonstrates that this is all just a smokeshow: https://www.crowdstrike.com/why-crowdstrike/crowdstrike-comp...
educasean|1 year ago There should be congressional hearings on this. Not just post mortems. CoastalCoder|1 year ago Honest question: would you expect Congress to respond in a way that's a true net-positive? load replies (1)
CoastalCoder|1 year ago Honest question: would you expect Congress to respond in a way that's a true net-positive? load replies (1)
gen3|1 year ago I don’t think a cybersecurity company can take down half the US and not release a postmortem spuz|1 year ago Of course, but we specifically would like to see a _technical_ postmortem that examines what kind of incremental rollout procedures they have and how this update overcame those.
spuz|1 year ago Of course, but we specifically would like to see a _technical_ postmortem that examines what kind of incremental rollout procedures they have and how this update overcame those.
aeyes|1 year ago Or... you know... This kind of software should be open source or companies using it should at least be able to audit the code themselves.Supposedly they have all kinds of certifications but not even having basic QA demonstrates that this is all just a smokeshow: https://www.crowdstrike.com/why-crowdstrike/crowdstrike-comp...
educasean|1 year ago
CoastalCoder|1 year ago
gen3|1 year ago
spuz|1 year ago
aeyes|1 year ago
Supposedly they have all kinds of certifications but not even having basic QA demonstrates that this is all just a smokeshow: https://www.crowdstrike.com/why-crowdstrike/crowdstrike-comp...