That is a solution, but not the cause. The cause is not having a culture that ev... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		cdumler on July 22, 2024 \| parent \| context \| favorite \| on: Microsoft blames EU rules for allowing biggest IT ... That is a solution, but not the cause. The cause is not having a culture that evaluates failure scenarios. From what I have read: `* Updates are not vetted or sanity checked. * Updates are not slow-rolled to production. * Updates are not signed to prevent corruption or alteration. * Updater does not sanitize or validate inputs. * Updater does not have a reversion process to previously known good position on faulty boot. * Updater should mark itself as Unnecessary For Boot on faulty boot at some point.` Finally, its high adoption means it creates a mono-culture. There should be another version built independently where one is running on a machine and another sits in a ready state. If there is a fault in one, it becomes disabled and the second takes over. Good ol' NASA style redundancy.

hilbert42 on July 22, 2024 | [–]

"Updater should mark itself as Unnecessary For Boot on faulty boot at some point."

Precisely the point I made in my comment. If Windows can initiate a BSOD then it can also initiate a reboot without said patch.

What Microsoft's PR department said is personified bullshit and needs debunking ASAP.

trueismywork on July 22, 2024 | [–]

Agree

Consider applying for YC's Summer 2026 batch! Applications are open till May 4
Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact