Comment Re:Disappointing (Score 1) 231
Dude, just jump ship already. I just read Slashdot these days for the perverse pleasure of silly stories.
P.S. This article hit front page YC and Proggit several hours before Slashdot.
Submission + - "Mythical Man-Month" supposedly busted by MIT firm (ksplice.com) 2
Comment Re:Structure should be at the filesystem level (Score 1) 549
You may be interested to know that AFS has implemented a variant of this feature. The conceit is that filenames can contain a magic string @sys, which gets substituted with the "sysname" of a particular system. This means if someone publishing software over AFS wants to have multi-platform support, they merely have to setup a directory divided by sysname and have compiled versions of the software for each system type they wish to support.
Comment A step in the right direction (Score 1) 160
The first trap you will fall into thinking about this is that it should be the end-all security policy, and will solve our problems. It won't. That's not the intent, and also impossible given our diverse browser ecosystem.
The ability to tell the browser, via out-of-band, non XSS-able information, that certain scripts should not be executed, however, is a very powerful defense in depth measure, and makes it one step harder for attackers to make an attack work.
Security is a war of attrition. Bring it on.
Comment Re:Windows has been doing this for 6 years (Score 1) 211
Comment Re:aix? (Score 1) 211
Comment Re:Hmmmm...... (Score 1) 211
Comment Re:aix? (Score 1, Insightful) 211
Comment Re:Less that 20 second reboot. (Score 1) 211
Comment For you geeks that don't "need" 100% uptime... (Score 2, Interesting) 211
Comment Re:Fedora doing this since F9.. (Score 4, Informative) 211
Comment Re:Windows has been doing this for 6 years (Score 2) 211
Note: Not all security updates support HotPatching, and some security updates that support HotPatching might require that you restart the server after you install the security updates.
Yeah. Rebootless updates. Uh-huh.
Comment Re:Interesting start (Score 1) 211
I'm sure if you talk to them, they can set you up with a pricing model for update streams for these distributions.
Comment Re:Hmmmm...... (Score 1) 211
That is an interesting question, no? After all, this company has made all of its software open-source, and if someone else is able generate update, they can "cut in" on Ksplice's market share. (This is forking the service, you're speaking of, not really the software.)
But this is not really a problem unique to Ksplice; it applies to any service based open-source model. And as such, what Ksplice has going for it is expertise: they were the ones who developed the Ksplice tools, they have an intimate understanding of the interplay between the kernel and hot updates, they are the ones who know how to "tweak" patches in order to make them work with the Ksplice system (as I understand, there are some nontrivial transforms necessary for certain updates).