Email or username:

Password:

Forgot your password?
Kevin Beaumont

Every so often some Linux guy replies to me saying ‘no critical infrastructure runs Windows’, so I just gotta say, today is education for you.

71 comments
[DATA EXPUNGED]
The Psychotic Network Ferret

@GossiTheDog "No critical infrastructure I am willing to be responsible for runs Windows," is my own take on this. I've grappled my inner demons thank you very much.

John Timaeus

@nuintari

I was ok supporting windows from 2000sp1 through about w2012. Sometime between 2008r2 and 2012 things started breaking. By 2016 it was broken.

@GossiTheDog

ROTOPE~1 :yell:

@GossiTheDog everybody know that critical infrastructure runs on Solaris and OS/360.

Otte Homan - remember Geordie

@rotopenguin @GossiTheDog I'm glad that my new PiDP-11 will be arriving shortly and I can start on a Mastodon server entirely ported to Fortran-77 soon.

int%rmitt]nt sig^al. ...~!...)

@GossiTheDog ‘no critical infrastructure managed by truly responsible persons runs Windows, in a meritorious world they would be running OS2’

Robert Hollingshead :donor:

@nrmacdonald @GossiTheDog ATMs running NT4 we’re quite stable and secure, for their time.

Chilly :donor:

@GossiTheDog um clearly if it wasn't running linux it wasn't critical /s

RootWyrm 🇺🇦:progress:

@GossiTheDog if they were capable of learning - much less intelligent thought - then they wouldn't be Linux reply guys.

argv minus one

@GossiTheDog

I guess some people think “infrastructure” means only servers.

Which, yeah, aren't running Windows and weren't affected by today's debacle (although they've had their moments).

But servers aren't very useful by themselves. The whole point of servers is that you interact with them using some other device…which runs Windows, and is currently on fire.

Daniel Taylor

@argv_minus_one @GossiTheDog there are *tons* of Windows servers out there, some orgs have nothing but Windows from the desktop to the data center.

I personally think it's a mistake, especially when it's critical infrastructure, but then I think most Linux distributions aren't really up to the task, either

death
@GossiTheDog

Counterpoint. Everything down now isn't critical.
Gilgwath

@GossiTheDog Well, if it runs Windwos, the people in charge clearly don't see it as critical? 🫠😬 Doesn't mean it's a crap day if it fails. My sympathy for them is small. I'm more worried about the people who's day got ruined through no fault of their own.

V is for...

@GossiTheDog oh don’t. They were saying that on Sky News, whilst listing critical stuff that was down… 😂

Kevin Beaumont

@swart no, 2024 - they’re usually young people. I think a generation has come through raised on Chromebooks, Macs and AWS and just don’t know people use Windows.

Steve Wart

@GossiTheDog oh my. I got over this once I saw StackOverflow scale like heck. I guess the youts think everything runs on phones and AWS now.

Import Antigravity

@swart @GossiTheDog I find myself saying to people almost weekly these days: "You can't code your way out of layer 1".

Tom Bellin :picardfacepalm:

@GossiTheDog No critical infrastructure should run 3rd party services that perform unsupervised automatic remote updates. The OS is irrelevant.

Also, not every server needs to have ends point protection. (For example, the kiosk displaying arrivals and departures.)

Kevin Beaumont

@tob almost all cyber insurance and regulatory standards say the exact opposite of your toot.

DELETED

@tob @GossiTheDog
Your kiosk most certainly requires endpoint protection. In fact, every node on your network needs it in one form or another.

Tom Bellin :picardfacepalm:

@ProfessorGumby @GossiTheDog What is the operational risk of a compromised arrivals kiosk?

If an unauthorized user can gain critical access to your systems via your arrivals kiosk, your problem isn't going to be fixed by running a kernel level endpoint protection service.

DELETED

@tob @GossiTheDog if a malicious actor sets up camp on an unprotected endpoint, they can use that as a base of operations inside your enclave completely out of your visibility. From there they can do reconnaissance, data collection, exfiltration, etc. They can't do that from an appropriately protected endpoint.

Tom Bellin :picardfacepalm:

@ProfessorGumby @GossiTheDog We're just going to have to disagree.

[Waves vaguely] There are obvious problems with your model of "maximum security on everything" that you don't seem to be grappling with.

DELETED

@tob @GossiTheDog okay just lock *some* of the doors of your house tonight

crazyeddie

@GossiTheDog If it wasn't for the fact that people are posting about it left and right, I'd have no idea this was even happening. None of the websites I go to are even down. I think "critical" might mean different things to different people.

And hey, if you got "critical" infrastructure running on Windows, maybe the lesson today is yours :p

Kevin Beaumont

@crazyeddie flights were grounded across the US, healthcare in the UK is impacted, TV channels were off air, ATMs were broken.

Dan Veditz

@GossiTheDog @crazyeddie

911 service was down in Alaska.

credit card processing was down at lots of places (including the gas station chain I was at last night)

Aperture!

@crazyeddie @GossiTheDog i would consider flight infrastructure quite important but to each their own i guess

Karl Baron

@crazyeddie @GossiTheDog Emergency call centers (911) were down in many places. If you don't call that "critical" then you're just trolling.

Baloo Uriza

@GossiTheDog The way I usually phrase it is "if you need billable hours, you build it on Windows. If you need it to work, you build it on Debian."

Today supports this theory. Industry went down because IT needed billable hours.

Hudsoncress

@GossiTheDog we have maybe 115 Linux endpoints, but maybe 80,000 hosts overall. We are a hospital.

Kelly Schultz

@hudsoncress @GossiTheDog I've heard that hospitals are pretty tied to windows because of hardware drivers

Hudsoncress

@synthfi @GossiTheDog every piece of equipment has a vendor and vendors always trend toward Microsoft for business reasons.

Justin M

@GossiTheDog lol. No critical infrastructure should, but it does.

Bob 🇺🇲♒🐧🪖

@GossiTheDog

Unfortunately, true. I see that crap everywhere and I'm sure that most hackers go after MicroShit systems.

I ran a computer shop for 12 years and will NEVER have a MS computer again.

John Ripley

@GossiTheDog Not sure I’ve ever seen a dentist xray, automated IV drip, or even an oscilloscope boot with a Penguin logo and not a Windows one.

Franklin Delano Stallone

@GossiTheDog Agreed. Is there any ATM or cash register that doesn't run on windows? Certainly doesn't seem like it.

Dave Lane 🇳🇿

@fds @GossiTheDog which should be to the eternal shame of those who foisted such mediocrity upon us.

Franklin Delano Stallone

@wiredog @GossiTheDog To be fair I am basing it on the ones that I see that have crashed or glitched which probably skews more towards Windows.

John Timaeus

@GossiTheDog

Anyone who says 'critical doesn't run on Windows' is either full denial, or has never walked into a 30 year-old business of pretty much any sort.

Kal Feher

@GossiTheDog with the amount of additional svcs and infra needed to run windows, it’s an anti pattern.

seeing how many orgs still operate this way, is genuinely disheartening.

Houston Bova

@GossiTheDog no critical infrastructure “should” run windows. Lots of people make mistakes though 🤣

Dave Lane 🇳🇿

@zethtren @GossiTheDog nearly every single 'enterprise digital procurement officer', for example. One hopes they're all looking for a job on Monday.

Andrew Moore

@GossiTheDog

People seem to forget that having your "critical" Linux servers for your application up is completely useless if all your client workstations with the frontend used to interact with your server are all down.

Dave Lane 🇳🇿

@james @GossiTheDog although, to be fair, few people running Linux would ever even have heard of CrowdStrike, much less given it permission to replace parts of their system's kernel via an automated process.

Brandon

@GossiTheDog @stroughtonsmith we are still at only 50-something% back up. It is incredible to me how effective this was. I needed to register my car today and their systems were down. Something, something, single point of failure

Dave Lane 🇳🇿

@GossiTheDog the worst thing you can say about those random 'Linux guys' is that they had an overly optimistic impression of the level of competence required to be an enterprise IT procurement officer. Because no competent person in that role would deploy Windows for anything even moderately critical. And yet, here we are.

ikt 🇺🇦

@lightweight @GossiTheDog yeah this isn't quite the burn he thinks it is

we have a lot of people in IT doing dumb shit, good to know

DELETED

@GossiTheDog Nobody ever got fired for buying Microsoft, but it's high time people did.

Karl Auerbach

@GossiTheDog Once upon a time I climbed into the cockpit of a single engine aircraft. Among the dials and gauges were a couple that had Microsoft/Windows CE log's on their displays.

I don't know if it is still the case, but a couple of decades ago direct recording voting machines often ran on Windows CE.

Dave from accounting

@GossiTheDog
"No critical infrastructure SHOULD run Windows" is the proper "Linux guy" comment 😉

Insanitree

@GossiTheDog reading these comments, I think people who spend lots of their time on the Internet (for work or social reasons, no shame) have a very different idea of what critical infrastructure is than what I interpret that phrase to mean. But SCADA systems and historians, in general, run on Windows. To me, critical infrastructure is *actual infrastructure*: Water. Power. Sewer.

Katsuiro
@GossiTheDog critical infrastructure is almost exclusively neglected windows installs
Ganonmaster

@GossiTheDog "but no one died, so these systems weren't critical" 🙃

Lee Hauser

@GossiTheDog We solve this problem by not using CrowdStrike. (Actually, we’re gradually getting a bunch of stuff off Windows servers, too. Some of it shuts down next Thursday 🤞)

Soul Dessin

@GossiTheDog
Hehe

We're still alive. So, it wasn't that critical. ;p

IAG

@GossiTheDog no critical infrastructure should* run Windows

Jimmy Hoke :tardis:

@GossiTheDog

Correction: no critical infrastructure *should* run windows.

But this once isn’t actually a windows problem, just a problem that happened to be on windows.

Go Up