engineer Archives

Winsage

April 12, 2026

Original Windows Task Manager Was Just 80 KB, Says Microsoft Engineer

The original Windows Task Manager was 80 KB in size, while its current version is 4 MB. Dave Plummer designed it to remain operational during system freezes, emphasizing that every line of code has a cost. The Task Manager could manage multiple instances by sending private messages to existing ones and launching new instances if the original was unresponsive. It utilized global strings and direct access to the kernel’s process table for speed and efficiency. Users have noted that modern systems consume more resources for similar tasks compared to older versions like Windows 7.

Tech Optimizer

April 11, 2026

Database Branching in Postgres: Git-Style Workflows with Databricks Lakebase

Database branching is a modern approach that addresses the limitations of traditional database management in development workflows. Unlike conventional database copies, which require significant time and resources to duplicate data and schema, database branching allows for the creation of isolated environments that share the same underlying storage. This method utilizes a copy-on-write mechanism, enabling branches to be created in seconds regardless of database size, with storage costs tied only to the changes made. Key features of database branching include: - Branch creation time: Seconds, constant regardless of database size. - Storage cost: Proportional to changes only, not the total data size. - Isolation: Each branch has its own Postgres connection string and compute endpoint. - Automatic scaling: Idle branches can scale compute to zero, incurring costs only when active. The architecture supporting this approach separates compute from storage, allowing multiple branches to reference the same data without conflict. This design facilitates time travel capabilities, enabling branches to be created from any point in the past for instant recovery and inspection. Database branching unlocks new workflows, such as: - One branch per developer, providing isolated environments for each engineer. - One branch per pull request, automating branch creation and deletion tied to PRs. - One branch per test run, provisioning fresh databases for each CI pipeline execution. - Instant recovery from any point in time within a designated restore window. - Ephemeral environments for AI agents, allowing programmatic database provisioning. Databricks Lakebase offers this database branching capability, transforming the database from a bottleneck into a streamlined component of the development process.

Winsage

April 7, 2026

How to prevent updates on Windows 10 desktops

Organizations may pause or block Windows updates to maintain system stability and compatibility, particularly to avoid disruptions with legacy applications or customized environments, manage bandwidth consumption, and protect fortified Windows configurations. IT departments can disable updates using several methods: 1. Centralized patch management tools like WSUS or Microsoft Intune allow control over update deployment. 2. Configuring Group Policy settings can notify users of available updates without automatic installation. 3. Disabling the Windows Update service halts all future updates until re-enabled. 4. Setting a connection as metered can reduce automatic updates, though some critical updates may still download. In Windows 11, similar strategies apply, but organizations must consider the risks of blocking updates due to the end of regular security updates for Windows 10 and align their strategies with Microsoft's evolving update delivery methods.

Winsage

April 7, 2026

Disgruntled researcher drops “BlueHammer” Windows zero-day LPE exploit

A security researcher, known as "Nightmare-Eclipse," released proof-of-concept exploit code for a Windows zero-day vulnerability called "BlueHammer," which allows local privilege escalation (LPE). The exploit has been validated by another researcher, Will Dormann, who confirmed it can escalate privileges on Windows systems, allowing non-administrative users to gain SYSTEM-level access. The exploit's reliability varies across different Windows versions, with inconsistent success rates reported. Microsoft has not acknowledged the vulnerability or provided a patch, raising concerns about potential exploitation by threat actors. Users are advised to restrict local user access, monitor for suspicious activity, and enable advanced endpoint protection.

Tech Optimizer

April 5, 2026

Linux 7.0 Cuts PostgreSQL Performance in Half

An AWS engineer reported a significant drop in PostgreSQL throughput on Linux 7.0, with performance reduced to approximately half of its previous capability. Benchmark tests showed that the removal of the PREEMPT_NONE scheduling option was the main cause of this regression. On a 96-vCPU Graviton4 instance, throughput measured at just 0.51x compared to earlier kernel versions. Salvatore Dipietro from Amazon/AWS conducted benchmarking analysis of PostgreSQL 17, revealing that Linux 7.0 delivered only 0.51x the throughput of its predecessors. The root cause was traced to kernel commit 7dadeaa6e851, which eliminated PREEMPT_NONE as the default option, leading to increased contention due to the new PREEMPT_LAZY model. Profiling data indicated that 55% of CPU time is consumed by spinning in PostgreSQL’s spinlock, causing significant performance degradation. When a revert patch was applied, throughput rebounded to 1.94x the baseline. The decision to restrict preemption modes in Linux 7.0 aimed to address issues within the kernel's scheduling model. Dipietro proposed a patch to restore PREEMPT_NONE, but kernel developers suggested PostgreSQL adopt the rseq time slice extension instead. Database operators running PostgreSQL on Linux face potential performance reductions with the upgrade to Linux 7.0.

Tech Optimizer

April 4, 2026

AWS Engineer Reports PostgreSQL Performance Halved By Linux 7.0, But A Fix May Not Be Easy

An engineer from Amazon/AWS reported a significant performance regression in PostgreSQL when running on the nearly finalized Linux 7.0 kernel, with throughput dropping to about half of previous kernel versions. The regression, observed on a Graviton4 server, is attributed to increased time spent in a user-space spinlock due to changes in preemption modes in Linux 7.0. A patch to revert to PREEMPT_NONE as the default preemption model has been submitted but may not be adopted. Peter Zijlstra suggested that PostgreSQL should adapt to utilize the Restartable Sequences (RSEQ) time slice extension to mitigate the performance drop. If this adaptation is accepted, the responsibility for the performance decline may shift to PostgreSQL, potentially affecting users until the database is updated. The stable release of Linux 7.0 is expected in about two weeks, coinciding with the launch of Ubuntu 26.04 LTS.

Winsage

April 4, 2026

‘Every Microsoft engineer got a stopwatch,’ says Windows veteran reminiscing about company’s past focus on speed — asserts that ‘everything’ was timed to ensure acceptable performance in the 1980s

Steven Sinofsky, a former president of Microsoft’s Windows Division, reflected on the coding practices at Microsoft during the 1980s, highlighting that every engineer received a stopwatch to promote efficiency. He noted that these stopwatches were used for tasks such as scroll speed, boot time, and resource management. Sinofsky stated that from 1980 to 2000, managing resource usage constituted half of software engineering. He shared a humorous anecdote about a colleague's request for a free stopwatch in 1993, which was deemed too expensive by Microsoft. In response to criticism regarding the performance of its Windows operating system, Microsoft has committed to improving performance, reducing overhead, and enhancing reliability across its services. The company aims to be more intentional about resource utilization and feature integration.

Winsage

April 3, 2026

Man admits to locking thousands of Windows devices in extortion plot

A former core infrastructure engineer, Daniel Rhyne, admitted to locking Windows administrators out of 254 servers during an extortion attempt against his employer in Somerset County, New Jersey. Rhyne accessed the company's network without authorization from November 9 to November 25, deleting network admin accounts and altering passwords for 13 domain admin accounts and 301 domain user accounts to "TheFr0zenCrew!". He also scheduled tasks to modify passwords for two local admin accounts affecting 3,284 workstations and planned to shut down random servers and workstations in December 2023. On November 25, he sent a ransom email demanding 20 bitcoin, claiming IT administrators were locked out and server backups erased. Forensic investigators found he used a concealed virtual machine to plan his actions. Rhyne was arrested on August 27 and faces charges related to hacking and extortion, with a potential maximum sentence of 15 years in prison.

Winsage

April 2, 2026

Microsoft veteran says some ‘broken by update’ PCs were already doomed

Many corporate customers believe that recent Microsoft updates have rendered their systems inoperable, but often the issues are not caused by the updates themselves. Instead, underlying problems, such as prior changes to drivers or group policies, become apparent after a system restart prompted by the update. The act of rebooting can trigger these hidden issues, leading to system failures. Additionally, Microsoft has faced scrutiny regarding the reliability of its updates, as administrators have expressed concerns about their stability.

Winsage

April 2, 2026

Don’t blame Windows 11 updates for every problem, Microsoft veteran says

Corporate clients often report to Microsoft that Windows updates disrupt their systems, particularly after Patch Tuesday. A 2026 report from Omnissa indicates that Windows environments experience more application crashes and forced shutdowns than macOS. However, Raymond Chen, a Windows expert, suggests that many systems are already compromised before updates are installed. Engineers at Microsoft frequently find that issues persist even after rolling back updates, and similar failures can occur on machines that haven't received the update yet. The actual triggers for system failures often stem from changes made by IT departments prior to updates, such as new drivers or configuration modifications. These changes may not show immediate issues until a reboot occurs during Patch Tuesday, revealing existing instability. Best practices for IT admins include controlled change management, validating drivers and policies before deployment, using staged rollouts, rebooting after major changes, and maintaining logging and monitoring systems. Microsoft conducts extensive testing of updates to ensure system security and stability, and delaying updates can increase risks.