Ask Noah Show

Ask Noah Show 400 | Open Source Crowdstike Alternative

Jul 24, 2024

Podcast discusses the Crowdstrike outage affecting 8.5 million Windows machines. Topics include open source solutions, preventing catastrophes, Linux crash restoration, System76's Cosmic DE alpha release, and the importance of backup plans and open source software.

53:15

Creator website

AI Summary

AI Chapters

Episode notes

Podcast summary created with Snipd AI

Quick takeaways

Software updates can cause global outages with severe impacts, highlighting the critical importance of system stability.

Distinguishing between kernel and user mode software execution is crucial to prevent system-wide crashes and ensure stringent controls for critical processes.

Deep dives

CrowdStrike Outage Causes Massive Overnight Disruption

CrowdStrike's faulty software update led to a worldwide outage affecting millions of Windows computers, including critical sectors such as healthcare and transportation. The defect in Falcon Sensor resulted in blue screens, rendering 8.5 million machines unusable, grounding people globally. The incident has been labeled as the largest IT disaster, highlighting the criticality of software updates and their impacts on system stability.

Intro

2min

Interplay of Hardware, Software, and Cybersecurity Threats

29min

Benefits of Using Open Source Wazoo for Endpoint Management and XDR

5min

Discussion on Security System Effectiveness and Threat Prevention

2min

Exploring Open-Source Software Releases and System 76's Cosmic Desktop Environment

15min

This week Noah takes you through what happened with the Crowdstrike incident, and how you could prevent a similar catastrophe with free and open source software. System76 announces a release date for Cosmic DE alpha. The Immich team is.

-- During The Show --

Crowd Strike Outage

Caused by defective update
Affected all Windows computers
8.5 Million Windows machines rendered unusable
Flights grounded
Entire health care sectors shut down
Kernel vs User mode
WHQL Certification
Crowd Strike had a WHQL Certification
Anti-virus
Extended Detection and Response (XDR) and/or anticipated threat detection
Channel Files
Microsoft could have provided an API
EU requires Microsoft to provide the same access Windows
No checks on the channel file
Crowd Strike Falcon set as "boot-start driver"
April 21st 2010 McAfee deleted svchost.exe
George Kurtz CEO at both McAfee and Crowd Strike during the incidents
Handing off risk/PCI
We understand less and less
Understand your critical paths and have a back up
Hair shop "crash kit"
Cold spare emergency laptops/servers
Test on small set up machines then deploy
Don't push to prod on Friday
Keeping up to date is the best defense
Have a roll back plan
USE OPEN SOURCE SOFTWARE
Linux Crash Restoration (The Register)
SystemD Automatic Boot Assessment
Phoronix
Wazuh Post
LibreNMS
CISA.gov
Tech Crunch

38:18 News Wire

Linux Mint 22 - ZDNet
OpenMandriva 24.07 - OpenMandriva.org
KaOS Linux 2024.07 - kaosx.us
EXT4 Optimizations - Phoronix
Open Source GPU Drivers - ZDNet
Switzerland Requires Open Source - ZDNet
AI Model Rivaling OpenAI and Google - Washington Post
Groq's Llama AI Tops Leader Board - Venturebeat

39:25 System76 Cosmic Alpha Release

August 8th
What other company is focused on the Linux desktop?
System76 decided to make their own desktop, Cosmic
Constant friction if forking another DE
Clean slate approach
System76 survey
System76 has been dog fooding
Modular design
Enabling "desktop experiences"
Try Cosmic and give polite productive feedback
System76 Transmission Log EP 10

48:52 Immich

New License
- Individual $24.99
- Server $99.99
Immich came from a developer who wanted to replace Google Photos
Experience is better than Google Photos now
FUTO grant allows full time development
Go fund open source

-- The Extra Credit Section --

For links to the articles and material referenced in this week's episode check out this week's page from our podcast dashboard!

This Episode's Podcast Dashboard

Phone Systems for Ask Noah provided by Voxtelesys

Join us in our dedicated chatroom #GeekLab:linuxdelta.com on Matrix

-- Stay In Touch --

Find all the resources for this show on the Ask Noah Dashboard

Ask Noah Dashboard

Need more help than a radio show can offer? Altispeed provides commercial IT services and they’re excited to offer you a great deal for listening to the Ask Noah Show. Call today and ask about the discount for listeners of the Ask Noah Show!

Altispeed Technologies

Contact Noah

live [at] asknoahshow.com

-- Twitter --

Support Ask Noah Show

Remember Everything You Learn from Podcasts

Save insights instantly, chat with episodes, and build lasting knowledge - all powered by AI.

Ask Noah Show

Ask Noah Show 400 | Open Source Crowdstike Alternative

Podcast summary created with Snipd AI

Quick takeaways

Deep dives

CrowdStrike Outage Causes Massive Overnight Disruption

Kernel Level vs. User Mode: The Impact of Software Code Execution

Endpoint Protection Evolution to XDR and Anticipated Threat Detection

System Stability and Security: Wazuh's User-Space Focus

-- During The Show --

Crowd Strike Outage

38:18 News Wire

39:25 System76 Cosmic Alpha Release

48:52 Immich

-- The Extra Credit Section --

-- Stay In Touch --

Remember Everything You Learn from Podcasts