209
submitted 3 months ago by Beaver@lemmy.ca to c/linux@lemmy.ml
you are viewing a single comment's thread
view the rest of the comments
[-] EnderMB@lemmy.world 3 points 3 months ago

That is a wild assumption with two key flaws

  1. Windows in many workplaces has updates locked down too, except in circumstances where critical security or vulnerability patches are pushed through.

  2. The same is true for many servers that run Linux.

As someone that works on tier1 services for arguably the biggest tech company right now, that's how it works in most of FAANG. Updates are gated, sure, but like with many things there's a vetting process where some things that look super important and safe just slip through.

In regards to your edit, I guess most cases are different from others, but if your entire business requires you to be able to use a machine 100% of the time then you should have the means to either use a different machine to continue transactions (ideally one with a known state that won't change, or has been tested in the last few months). If you need to log transactions and process 24-48 hours later do that on something that's locked down hard, with printed/hard backups if necessary.

Ultimately, risk is always something you factor in. If you don't care about 48 hours of downtime over several years, it's not a huge concern. I'd probably argue that many companies lost more money during these days than they would have spent in both money and people-hours training them on a contingency system to use in case of downtime.

[-] Nibodhika@lemmy.world 1 points 3 months ago
  1. Who determines which security updates are critical? In windows case it's ultimately Microsoft, if they say this update is critical it will get installed on your machines whether you like it or not.
  2. The update process in Linux needs to be triggered manually, so it's a big difference. No one external to your company can say "that computer will get this new software NOW", and that's the point you're missing.

In answer to the other dit answer, if all of those machines are windows they were all affected by the update, so having secondary or tertiary machines is pointless because all of them failed at the same time when an external source decided to install new software on all your computers.

this post was submitted on 03 Aug 2024
209 points (100.0% liked)

Linux

48143 readers
637 users here now

From Wikipedia, the free encyclopedia

Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).

Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word "Linux" in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.

Rules

Related Communities

Community icon by Alpár-Etele Méder, licensed under CC BY 3.0

founded 5 years ago
MODERATORS