So, if you ask me what my takeaway from the Crowdstrike issue is, I'd say: boot counting/boot assessment/automatic fallback should really be a MUST for today's systems. *Before* you invoke your first kernel you need have tracking of boot attempts and a logic for falling back to older versions automatically. It's a major shortcoming that this is not default behaviour of today's distros, in particular commercial ones.
Of course systemd has supported this for a long time:
https://systemd.io/AUTOMATIC_BOOT_ASSESSMENT/
Lennart Poettering /
npub1rk…qzenj
2024-07-20 12:40:58
Author Public Key
npub1rk2uxtv6nk262nucavh259t085a8rhzfaj3vjc9jhzvkyav0rnqqxqzenjPublished at
2024-07-20 12:40:58Event JSON
{
"id": "4de62b5fa23f4562bc3379ba17a163a302c170b90cb0e18163dca64c56c174cf",
"pubkey": "1d95c32d9a9d95a54f98eb2eaa156f3d3a71dc49eca2c960b2b89962758f1cc0",
"created_at": 1721479258,
"kind": 1,
"tags": [
[
"proxy",
"https://mastodon.social/users/pid_eins/statuses/112818864687187963",
"activitypub"
]
],
"content": "So, if you ask me what my takeaway from the Crowdstrike issue is, I'd say: boot counting/boot assessment/automatic fallback should really be a MUST for today's systems. *Before* you invoke your first kernel you need have tracking of boot attempts and a logic for falling back to older versions automatically. It's a major shortcoming that this is not default behaviour of today's distros, in particular commercial ones.\n\nOf course systemd has supported this for a long time:\n\nhttps://systemd.io/AUTOMATIC_BOOT_ASSESSMENT/",
"sig": "9dc9adf8bd2729897ee7a627f925ce189b18cfe9002a989fa1a1615c98ae6ac46af00950e20a1b247859695ac11c7c27972640027ce25aa00ee74e07eaa05ad1"
}