Between the rapid release of open source software, and modern OSes preloaded with packages, enterprises are vulnerable to attacks they aren’t even aware of.
Ehh…Not really a mechanism for that that I can see. I mean, say that there’s demand for that, which I can believe. Do I go to a given distro and buy a “security hardened” version? I don’t see how that would work. Is the distro going to refrain from incorporating security fixes into the “non-hardened” free version?
If you have read it, I think you should have noticed that the theme of the article is a company called Chainguard. Enterprises can pay them and get a secure software supply chain all the way down to the container image. More than that, their container distro is actually free and open-source, anyone can use it for free, it’s a one line change in your build script to go from Alpine to Wolfi. Enterprises can also buy a secure OS for bare-metal from Red Hat, SUSE, etc…
… can pay engineers, rather than expecting volunteers to fix everything for them.
while still paying less then the commercial OSes. That have been the victims of the vast majority of attacks and cost to corps using them.
Its not like other OSes are attack free. Not requiring qualified engineers to keep them protected.
That said. Ubuntu and their snap store are asking for trouble .
Do companies ever crowdfund anything for Linux? I can imagine a possible prisoner’s dilemma.
Ehh…Not really a mechanism for that that I can see. I mean, say that there’s demand for that, which I can believe. Do I go to a given distro and buy a “security hardened” version? I don’t see how that would work. Is the distro going to refrain from incorporating security fixes into the “non-hardened” free version?
If you have read it, I think you should have noticed that the theme of the article is a company called Chainguard. Enterprises can pay them and get a secure software supply chain all the way down to the container image. More than that, their container distro is actually free and open-source, anyone can use it for free, it’s a one line change in your build script to go from Alpine to Wolfi. Enterprises can also buy a secure OS for bare-metal from Red Hat, SUSE, etc…