Windows

I was asked about today’s Crowdstrike issues on Windows. Naturally I have some thoughts… What went wrong? What I know. Crowdstrike is an EDR (Endpoint Detection and Response) tool. (Well, they claim “XDR”, but that’s marketing). It has an agent component and a set of rule sets (called “channel file”). The agent has both user space and kernel space components to better give visibility into what is happening on the machine, and to be able to block bad things.

People keep telling me how Windows 7 is so much better than XP. Eventually, at work, I get forced into using it. The first thing I notice is that the taskbar is now all icons, which you have to mouse over to see what windows each application has. And there’s no quick launch area any more; you can pin applications to the taskbar so they’re there. However, I like having the XP option of having a program bar for each running program.