On Fri, Dec 28, 2007 at 11:21:53AM +0100, Florian Weimer wrote:
> This only helps against crasher bugs. For code injection, it's
> devastating if the attacker can compromise one node, and by
> diversifying, he or she can choose which code base to attack.
Well, it also helps in your robustness plan: if you find out about an
exploit before you've been exploited, you can turn off the exploitable
systems and still not lose service. But otherwise, yes, what you say is
true. Real 100% uptime is hard, no matter how you go at it.
A