this post was submitted on 25 Aug 2023
266 points (97.5% liked)

Technology

34920 readers
180 users here now

This is the official technology community of Lemmy.ml for all news related to creation and use of technology, and to facilitate civil, meaningful discussion around it.


Ask in DM before posting product reviews or ads. All such posts otherwise are subject to removal.


Rules:

1: All Lemmy rules apply

2: Do not post low effort posts

3: NEVER post naziped*gore stuff

4: Always post article URLs or their archived version URLs as sources, NOT screenshots. Help the blind users.

5: personal rants of Big Tech CEOs like Elon Musk are unwelcome (does not include posts about their companies affecting wide range of people)

6: no advertisement posts unless verified as legitimate and non-exploitative/non-consumerist

7: crypto related posts, unless essential, are disallowed

founded 5 years ago
MODERATORS
all 28 comments
sorted by: hot top controversial new old
[–] floofloof@lemmy.ca 85 points 1 year ago* (last edited 1 year ago) (1 children)

"Microsoft hasn't really been helpful in trying to track this, either. I've sent over logs and information, but they haven't really followed this up. They seem more interested in closing the case.”

That's the Microsoft way: ignore the bug report for a month or two then close the case for "inactivity".

[–] lobut@lemmy.ca 15 points 1 year ago

It's sometimes the issue with relying on metrics and stuff and being purely quantitative. A lot of us of have worked at companies where it's been like this. To deal with volume they need to rely on numbers to gauge so you tell the workers they'll be ranked on closed cases.

[–] elouboub@kbin.social 46 points 1 year ago (2 children)

With these updated routing tables, a lot of people were unable to make calls, as we didn't have a correct state

You're relying on windows for critical infrastructure? Are you nuts?

[–] Appoxo@lemmy.dbzer0.com 16 points 1 year ago (1 children)

Linux can also die in weird ways...

It's just that Windows is more prone to some issues.

[–] elouboub@kbin.social 24 points 1 year ago (1 children)

Indeed, nothing is perfect, but closed source stuff doesn't provide a lot of recourse. If you have a linux expert in your team, they can investigate and if need be even dig into the code of linux itself to find the core issue. Microsoft doesn't provide anything even remotely similar.

[–] BeardedGingerWonder@feddit.uk 11 points 1 year ago (3 children)

How many dev teams have a kernel dev on them?

[–] elouboub@kbin.social 17 points 1 year ago

Don't need one. If you can read C/C++ you can read the kernel code. And in most cases, you won't have to, as the problem is probably in a component in the distro. Those are written in python, ruby, or bash, which are all much more readable than C/C++.

No such luck on windows

I worked at a small company without a kernel dev and we periodically looked into the code to solve problems. I don't know how much we upstreamed, but we relied on Linux so it was either the or try to get someone on the mailing list to care.

It's really not that hard to look through the kernel source, it's pretty well written and documented. It's a lot harder to be a kernel developer writing new code, but finding bugs and contributing fixes isn't that bad.

[–] ReversalHatchery@beehaw.org 4 points 1 year ago

You don't have to be a kernel dev for that. Reading source code is much easier than writing it. I myself have even read the code that handles the battery management drivers, and it's mostly self documenting, even though I'm bad at C and it's pointers, and also have never yet written a kernel driver.

[–] eee@lemm.ee 1 points 1 year ago

The US navy ran on windows xp for so long that they paid Microsoft to continue maintaining it after EOL.

[–] queermunist@lemmy.ml 36 points 1 year ago
[–] autotldr@lemmings.world 23 points 1 year ago

This is the best summary I could come up with:


A few months ago, an engineer in a data center in Norway encountered some perplexing errors that caused a Windows server to suddenly reset its system clock to 55 days in the future.

“With these updated routing tables, a lot of people were unable to make calls, as we didn't have a correct state!” the engineer, who asked to be identified only by his first name, Simen, wrote in an email.

Simen had experienced a similar error last August when a machine running Windows Server 2019 reset its clock to January 2023 and then changed it back a short time later.

Windows systems with clocks set to the wrong time can cause disastrous errors when they can’t properly parse timestamps in digital certificates or they execute jobs too early, too late, or out of the prescribed order.

The mechanism, Microsoft engineers wrote, “helped us to break the cyclical dependency between client system time and security keys, including SSL certificates.”

Simen and Ken, who both asked to be identified only by their first names because they weren’t authorized by their employers to speak on the record, soon found that engineers and administrators had been reporting the same time resets since 2016.


The original article contains 701 words, the summary contains 200 words. Saved 71%. I'm a bot and I'm open source!

[–] Echo71Niner@lemm.ee 20 points 1 year ago

Ignoring tickets and than closing it for inactivity is how big companies ignore their own fuck-ups.

[–] Treczoks@lemm.ee 18 points 1 year ago

I've read the documentation on that feature, and still don't get over it. How can anyone with knowledge of computers be so dumb to even consider such an idea, lest implement it?

This feature is just a BIG flag waving "AbUsE mE!"

[–] theshatterstone54@feddit.uk 14 points 1 year ago (2 children)

Fun fact: Apparently M$ laid off their QA team for Windows so if you're wondering why updates break so much, that's why.

[–] rolandtb303@lemmy.ml 4 points 1 year ago (1 children)

And when they laid off their QA team with the testing lab of thousands of unique computers, they replaced it with VMs and AI. Because VMs are a totally good way to troubleshoot very specific bugs. The AI part is used to supposedly figure out when you're "idle" so what Windows can update.

Imagine needing AI to update a computer lmao

[–] theshatterstone54@feddit.uk 1 points 1 year ago

They replaced it with VMs and AI

That.... explains a lot.

[–] Thann@lemmy.ml 11 points 1 year ago

“The false assumption is that most SSL implementations return the server time,” Simen said. “This was probably true in a Microsoft-only ecosystem back when they implemented it, but at that time [when STS was introduced], OpenSSL was already sending random data instead.”

This is so amazing, NTP is too insecure, so we relied on random data from random servers instead

[–] secret301@sh.itjust.works 4 points 1 year ago

Companies still using windows are causing problems

[–] Frederic@beehaw.org 4 points 1 year ago

Last problem I had was our server serving 2FA decided it was not on the same timezone, so when I tried to connect with my Authenticator code, it says "check your time on your cellphone". I had to call IT...

[–] argv_minus_one@beehaw.org 0 points 1 year ago

Sounds like an interesting idea. Pity MS can't be bothered to iron out the issues with it.