Painless patching

I also keep an eye out for winners and finalists in the Global Security Challenge, as it often brings to light some original, imaginative technologies. One that caught my attention this year is ksplice, a new technology out of MIT that enables Linux systems to be patched without re-booting. With increasing dependence on 24×7 web services and cloud computing, this is an essential business requirement. The ksplice solution will work with any platform, as long as the source code of the systems and platforms is available. Hopefully this should herald the end of painful arguments with system owners about the need to take down systems for the sake of security. Perhaps, one day we’ll look back and wonder what all the fuss was about vulnerability management.