• Modern_medicine_isnt@lemmy.world
    link
    fedilink
    arrow-up
    4
    ·
    3 months ago

    But Microsoft designed the system such that they needed a level of access that allowed them to crash it. Microsoft could make changes that allowed the software to do what it needed with protections against letting that software crash the system. Basically a wrapper. Or, it could track updates to software that has such special access, and roll back updates after crashing more than once or something. It chooses not to. So it shares the blame because of that decision.

    • purplemonkeymad@programming.dev
      link
      fedilink
      arrow-up
      6
      ·
      3 months ago

      Microsoft actually tried to make these changes to prevent the need for kernal drivers. However security companies called foul and the EU told ms to not continue. There was worry that defender would end up with better access than 3rd party products.

    • Honytawk@lemmy.zip
      link
      fedilink
      arrow-up
      4
      ·
      3 months ago

      Crowdstrike isn’t necessary for Windows to work. It is an addon that asks system level authority.

      Windows not having the ability to give apps system level authority would be an even worse situation.

    • thisbenzingring@lemmy.sdf.org
      link
      fedilink
      English
      arrow-up
      4
      ·
      3 months ago

      They could block that level of access but security software should be able to smack down attacks. And if those attacks are happening to those levels of computing, we become 100% reliant on the os vendor. This isn’t a Microsoft problem, it’s a problem for all each OS