Blaster was Microsoft's own incompetence. CrowdStrike was CrowdStrike's own incompetence. They are free to fix the problems of their own doing. But messing with software you do not own, on machines you do not own, crosses a line and should be considered an act of aggression. What if some Linux distro releases an update that deletes any installations of Windows it finds "because Windows is insecure" (according to them)?
people are begging Microsoft to adopt a more isolated, user-mode-only device driver system, so this kind of incident won't happen
Those people are, to put it bluntly, either authoritarian idiots or corporate shills. They want to give more control to Microsoft, but it's not like M$ is all that competent either, as what this article and past fiascos (like the Blaster you mentioned) have already shown, so they're going to just make things worse for everyone.
CrowdStrike happened because one of the "user-empowering" features: ability to install kernel drivers on a machine.
And crimes happen because people still have freedom. Doesn't mean we should start imprisoning (or enslaving to the machine) everyone from birth.
"Freedom is not worth having if it does not include the freedom to make mistakes."
All security bugs are result of incompetence. Massive DoS incidents are result of scale. Use your magic wand, bring Linux to 90% desktop OS marketshare, and see how one malware destroys an order of magnitude more Linux devices than Windows.
> They want to give more control to Microsoft
No, they want secure defaults, not less control.
> And crimes happen because people still have freedom.
Okay, let me extend that whataboutism with "hey why do we have laws that limit people's freedom, let's remove all the laws if people are entitled to infinite freedom, and can be trusted with their judgement".
people are begging Microsoft to adopt a more isolated, user-mode-only device driver system, so this kind of incident won't happen
Those people are, to put it bluntly, either authoritarian idiots or corporate shills. They want to give more control to Microsoft, but it's not like M$ is all that competent either, as what this article and past fiascos (like the Blaster you mentioned) have already shown, so they're going to just make things worse for everyone.
CrowdStrike happened because one of the "user-empowering" features: ability to install kernel drivers on a machine.
And crimes happen because people still have freedom. Doesn't mean we should start imprisoning (or enslaving to the machine) everyone from birth.
"Freedom is not worth having if it does not include the freedom to make mistakes."