SOC 2 is everywhere, and everyone has it; customers ask for it; enterprises need it. But what is it? And where does Linux kernel live patching fit in?
One week ago, the wrong kind of Netflix Original was revealed to the public. The streaming giant announced that they had discovered four new denial-of-service (DoS) and resource consumption vulnerabilities affecting Linux and FreeBSD servers. Netflix offered full details in an advisory posted on GitHub.The vulnerabilities threaten any enterprise running large fleets of production Linux computers.
If anyone tells you that they know how to secure linux, but they fail to mention live patching – don’t listen to them. Keeping servers automatically up to date is key to keeping them safe. In the complex security question of how to secure Linux, patching live, in real-time, is the missing link.
You've just installed a kernel update, and now you need to carry out a Linux reboot. Except guess what? You don’t. Word is only just starting to get out, but times have changed, and rebooting is a thing of the past. This is a very positive development: because rebooting to patch is a hassle, companies frequently delay it for as long as they can – with damaging consequences.