this post was submitted on 23 Nov 2024
298 points (99.7% liked)
Technology
59651 readers
2670 users here now
This is a most excellent place for technology news and articles.
Our Rules
- Follow the lemmy.world rules.
- Only tech related content.
- Be excellent to each another!
- Mod approved content bots can post up to 10 articles per day.
- Threads asking for personal tech support may be deleted.
- Politics threads may be removed.
- No memes allowed as posts, OK to post as comments.
- Only approved bots from the list below, to ask if your bot can be added please contact us.
- Check for duplicates before posting, duplicates may be removed
Approved Bots
founded 1 year ago
MODERATORS
you are viewing a single comment's thread
view the rest of the comments
view the rest of the comments
I actually really doubt it'd ever go on by default for enterprise installations. One tiny slipup in GPO and IT departments could end up with the most massive explicit data leak in history, many many companies and governments working with very sensitive data would drop all Microsoft products in a heartbeat. Microsoft knows that is an impossible sell and really not worth the squeeze vs just shoving a larger dildo up the private consumer's ass.
I get what you're saying, but:
Apply this same logic to 'Considerable and substantial direct access to the kernel for who knows how many third party software engineers, without meaningful or comprehensive review of how they're using that access.'
Why, one serious, overlooked error on a widely used enterprise software with this kernel access could basically brick millions of business computers and cost god knows how many millions or billions of dollars, they'd never do that!
... cough CrowdStrike cough.
Microsoft Azure already leaks secrets and nobody cares. As long as it has all required certifications it'll be fine.