this post was submitted on 19 Jul 2024
1186 points (99.5% liked)

Technology

59600 readers
3399 users here now

This is a most excellent place for technology news and articles.


Our Rules


  1. Follow the lemmy.world rules.
  2. Only tech related content.
  3. Be excellent to each another!
  4. Mod approved content bots can post up to 10 articles per day.
  5. Threads asking for personal tech support may be deleted.
  6. Politics threads may be removed.
  7. No memes allowed as posts, OK to post as comments.
  8. Only approved bots from the list below, to ask if your bot can be added please contact us.
  9. Check for duplicates before posting, duplicates may be removed

Approved Bots


founded 1 year ago
MODERATORS
 

All our servers and company laptops went down at pretty much the same time. Laptops have been bootlooping to blue screen of death. It's all very exciting, personally, as someone not responsible for fixing it.

Apparently caused by a bad CrowdStrike update.

Edit: now being told we (who almost all generally work from home) need to come into the office Monday as they can only apply the fix in-person. We'll see if that changes over the weekend...

you are viewing a single comment's thread
view the rest of the comments
[–] StaySquared@lemmy.world 46 points 4 months ago* (last edited 4 months ago) (3 children)

Been at work since 5AM... finally finished deleting the C-00000291*.sys file in CrowdStrike directory.

182 machines total. Thankfully the process in of itself takes about 2-3 minutes. For virtual machines, it's a bit of a pain, at least in this org.

lmao I feel kinda bad for those companies that have 10k+ endpoints to do this to. Eff... that. Lot's of immediate short term contract hires for that, I imagine.

[–] douglasg14b@lemmy.world 5 points 4 months ago (2 children)

How do you deal with places with thousands of remote endpoints??

[–] StaySquared@lemmy.world 6 points 4 months ago* (last edited 4 months ago)

That's one of those situations where they need to immediately hire local contractors to those remote sites. This outage literally requires touching the equipment. lol

I'd even say, fly out each individual team member to those sites.. but even the airports are down.

[–] catloaf@lemm.ee 5 points 4 months ago

Call the remote people in, deputize anyone who can work a command line, and prioritize the important stuff.

[–] qjkxbmwvz@startrek.website 2 points 4 months ago (2 children)

Can you program some keyboard-presenting device to automate this? Still requires plugging in something of course...what a mess.

[–] viking@infosec.pub 4 points 4 months ago

Yeah, there are USB sticks that identify as keyboards and run every keystroke saved in a text file on its memory in sequence. Neat stuff. The primary use case is of course corrupting systems or bruteforcing passwords without touching anything... But they work really well for executing scripts semi-automated.

[–] trolololol@lemmy.world 2 points 4 months ago

Yep I have one of these, I think it's called tiny. Very similar to an Arduino, and very easy to program.

[–] uis@lemm.ee 1 points 4 months ago

Lot's of immediate short term contract hires for that, I imagine.

I think sysadmins union should be created today