If a garbage file is pushed out, the program could have handled it by ignoring i... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		Jtsummers on July 19, 2024 \| parent \| context \| favorite \| on: The CrowdStrike file that broke everything was ful... If a garbage file is pushed out, the program could have handled it by ignoring it. In this case, it did not and now we're (the collective IT industry) dealing with the consequences of one company that can't be bothered to validate its input (they aren't the only ones, but this is a particularly catastrophic demonstration of the importance of input validation).

russdill on July 19, 2024 [–]

I'll agree that this appears to have been preventable. Whatever goes through CI should have a hash, deployment should validate that hash, and the deployment system itself should be rigorously tested to insure it breaks properly if the hash mismatches at some point in the process

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact