Musk Says He’s Deleted CrowdStrike From Systems After Outage
(www.bloomberg.com)
You're viewing a single comment thread. View all comments, or full comment thread.
Comments (61)
sorted by:
Auto updates are a good idea for the idiot consumer masses to keep them from shooting themselves in the foot. For anything server or business related, you want managed and vetted updates that roll out in a staggered manner to prevent exactly this.
That's only true if you assume that the updates are always a good thing, and this crowstrike situation proves they are not.
and this was (presumably) an accident. What happens when a malicious actor intentionally puts a backdoor or other nasty surprise into an update?
and I wont even get into the elitism of "the idiot consumers" attitude, lol
For the use case of the clueless consumer, auto updates are better. The instant you start requiring a user to manage their own update process you are requiring a higher level of intelligence and proficiency than the vast majority of the population possesses. Given the choice, the idiot consumer will just never update and leave themselves wide open to malicious actors to do whatever they want with the victim's machine.