On Wed, Jan 9, 2019 at 10:33 PM Owen DeLong <owen@delong.com> wrote:
Fair enough, but the frequency of vulnerability announcements even in some of the best implementations is still more often than I think my customers will tolerated reboots.
Well, and when I think about it for the second time, I can't help pointing out that there are long lived efforts from OS developers to come up with live patching, especially embedded and RTOS developers. As the recent you-know-which downtime has shown us, there are Internet-based services like 911 telephony which really start to treat Internet as a whole as a real time system. The question here is whether this encourages e.g. the aforementioned FRR developers (along with device vendors who actually get paid for the uninterruptible BGP availability) to accept this challenge. -- Töma