吹水玩樂

時事理財

由家出發

媽媽天地

育兒教養

情報分享

意見反饋

聯絡管理員

我的中心

Baby Kingdom - 親子王國香港討論區 › 首頁 › 自由講場› 你地公司電腦有無藍mon?

自由講場今日: 227|主題: 1320906

收藏本版

回覆發帖

返回列表

跳至頁

樓主: disneydisney88

你地公司電腦有無藍mon? [複製鏈接]

1 23

admiral2525

水晶宮

積分: 51888

2018復活節勳章

41^#

發表於 24-7-21 07:32 |只看該作者

mizuho 發表於 24-7-19 17:12
唔係MS嘅問題，如果公司IT security用CrowdStrike就會受影響

MS 完全沒有責任嗎？紐約時報這樣報導：

https://www.nytimes.com/2024/07/19/technology/microsoft-crowdstrike-outage-what-happened.html

私人傳訊回覆引用

mizuho

珍珠宮

積分: 34324

42^#

發表於 24-7-21 09:06 |只看該作者

admiral2525 發表於 24-7-21 07:32
MS 完全沒有責任嗎？紐約時報這樣報導：

https://www.nytimes.com/2024/07/19/technology/microsoft-crow ...

我冇NYTime嘅subscription，睇唔到內容，但CrownStrike自己承認係佢嘅bug
https://www.crowdstrike.com/blog/to-our-customers-and-partners/

The outage was caused by a defect found in a Falcon content update for Windows hosts. Mac and Linux hosts are not impacted. This was not a cyberattack.

網上看見有人分享咗個dump，貌似問題係CrowdStrike嘗試寫入一個memory NULL pointer，寫C++嘅人應該都知道要做memory define和cleanup。
問題係一個Priority 0嘅bug點解CtowdStrike可以漏咗發build，個QA VP切腹都唔掂。但暫時知道嘅信息睇唔到MS嘅責任，除了Windows Server嘅market share比重好大，作為一個OS，佢提供咗開發基礎俾軟件公司，但軟件點寫點用唔係佢可以控制，只可以俾SDK做guidance

私人傳訊回覆引用

admiral2525

水晶宮

積分: 51888

2018復活節勳章

43^#

發表於 24-7-21 09:13 |只看該作者

mizuho 發表於 24-7-21 09:06
我冇NYTime嘅subscription，睇唔到內容，但CrownStrike自己承認係佢嘅bug
https://www.crowdstrike.com/bl ...

部份報導內容:

But Microsoft had also said there was an earlier outage affecting U.S. users of Azure, its cloud service system. Some users may have been affected by both. Even as CrowdStrike sent out a fix, some systems were still affected by midday in the United States as businesses needed to make manual updates to their systems to resolve the issue.

While CrowdStrike is at fault for the software bug, J.J. Guy, chief executive of cybersecurity company Sevco, said poor resiliency of Microsoft’s operating system is to blame for extent of the damage.

“Bugs happen all the time and are unavoidable, the result of business complexity and technology,” Mr. Guy said. “But this became a catastrophic incident because of the remediation procedures. The resiliency of the operating system was not sufficient to mitigate the risk of that.”

Microsoft did not immediately respond to requests for comment on its operating system. The company’s chief executive, Satya Nadella, said in a post on X that Microsoft is working with CrowdStrike to offer customers technical guidance and bring systems back online.

私人傳訊回覆引用

mizuho

珍珠宮

積分: 34324

44^#

發表於 24-7-21 10:29 |只看該作者

admiral2525 發表於 24-7-21 09:13
部份報導內容:

But Microsoft had also said there was an earlier outage affecting U.S. users of Azur ...

回覆嘅J.J. Guy, chief executive of cybersecurity company Sevco，當然希望所有開發軟件嘅公司都可以將自己嘅bug歸咎於OS唔夠resilient

其實呢啲航空公司只用單一server solution，完全冇catastrophic backup recovery strategy唔應該都要受罰嗎？我公司只有非常少server受影響，而且restore得好快，啲staff當然哀嚎，但Data Center自己都要做好自己嘅resilient plan，呢個係IT運營嘅基礎。