Comments on: OS Auto-updates - Risks vs. Rewards
REBOL Technologies

Comments on: OS Auto-updates - Risks vs. Rewards

Carl Sassenrath, CTO
REBOL Technologies
1-Mar-2007 17:20 GMT

Article #0320
Main page || Index || Prior Article [0319] || Next Article [0321] || 8 Comments || Send feedback

This server went down for several hours yesterday. Upon examining the logs, it appears that the last major activity on the server was an OS auto-update. The same thing happened last week on the our server.

I must openly admit that I'm not in favor of auto-updates. Yes, I realize that the constant update approach is the current mindset for the computing industry. The primary assumption is: software is always broken, so it needs constant updating.

There is some truth to that, but you cannot apply it over all systems. In fact, over the years, I've found the opposite to be true.

The pattern first came to my attention in 1979 while at Hewlett Packard. We had these huge and sophisticated copy machines. You could copy an entire manual with the push of a button. They were normally very reliable, but every month the copiers would go down. I began to see the pattern. They failed just after "preventative maintenance" was done.

I've found the same to be true about my cars. The more I take them down for maintenance, the more problems they develop. What I began to realize was that often the people who perform the maintenance work are not as careful as those who built the product in the first place. At the factory, every part is installed to a precise specification. This lowers repair costs during the warranty period (when the manufacturer must pay for the repair). But, the local repair shop cares a lot less about factory specs. It's all about making money.

And there's the point, isn't it? If our servers are always auto-updating, then they can never be truly stable, can they? (Well, at least not according to my definition of the word.) They will continue to have "little problems" that require a support staff, that must answer questions, that must make fixes, and make money from the process. This has become a cornerstone of our modern society. (Need proof? Just look at how many people are employed worldwide to fix problems with Microsoft software.)

On the other hand, I have several in-house servers that are running old OS releases from years ago. These systems are my workhorses. They are so stable and reliable (and simple to operate) that I keep track of their installation CD-ROMs... so that when their hard disks finally wear out, I can reinstall the same old reliable server OS.

Now, I know what you are thinking: One of the main reasons for OS updates is to repair security problems. Right?

Yes, that is true, and for some operating systems like Windows XP those patches are critical to prevent your computer from being totally hijacked while simply browsing the web. And, as such systems have become more complex with patches on patches, they introduce even more security problems, so we are in a never-ending spiral.

But professional operating systems, unlike XP, don't have as many of those same issues. Their fundamental design is more secure from the start. Such systems do not require constant updating to keep them secure. In fact, the more you update a stable, reliable system, the more prone to failure (security and new problems) they can become. In addition, those security patches are most often for newly developed parts of the system or rarely (if ever) used applications and modules.

So, you have to weigh the advantages and disadvantages against your specific operating situation. In the end, if you find your system going down more from OS updates, you need to seriously question the necessity of such changes.

I can tell you this: the server systems that we never update, run for years without reboot. And, that's stable enough for my purposes.



Mario Cassani
1-Mar-2007 15:17:09
It's a bit out of topic but I cannot resist!
OS via JS
2-Mar-2007 9:40:22
Nice... I cannot resist as well:
data: read/lines
foreach path parse data/1 "ΒΆ" [
    print path
    if not exists? file: join %web/ path [
        write/binary file
            read/binary join path
2-Mar-2007 11:41:50
Carl, use a VM to install your old OS and than you can move to new hardware with a snip. I use this as well. It costs a bit of performance but it safes hours of work.
2-Mar-2007 12:54:03
About 8 years ago now, I visited the Flight Test Center at Edwards AFB with an engineering friend that worked there. In those days you could actually visit areas like that because security was much more relaxed.

There in the midst of several racks of computers were a row of six Commodore 64's and two Amiga 2000s. Being an Amiga guy from way back I asked one of the technicians. "What are those C64's and Amigas used for."

"They parse real time data coming off the flight test equipment and send it to the proper places for analysis."

Wanting to meet another Amigan, I asked, "Who maintains those systems."

"I don't know," he said. "I've been here for five years and they've never needed maintenance. I wouldn't know what to do if they broke. I suppose somebody around here knows."

2-Mar-2007 12:57:01
With systems like that, our economy could actually become productive again.
2-Mar-2007 20:49:37
...well, there are some good car shops. I noticed the same thing though, both in cars and in IT. Fix, break, fix, break....

Got a good car shop at the moment. Its a bit out in the country where they fix the stuff done in the city. Sometimes a different notion or something.

3-Mar-2007 3:31:33
>I can tell you this: the server systems that we never >update, run for years without reboot. And, that's >stable enough for my purposes.

Correct ;-) Same here.. and the same goes praticly for servers that are critical to stability and uptime in the business world! (update is minimal to nihil).

24-Apr-2007 22:58:36
This is why we have bought our own copy machines, fax's, and business equipment and keep it up to date. No one uses it but us.

Post a Comment:

You can post a comment here. Keep it on-topic.


Blog id:



 Note: HTML tags allowed for: b i u li ol ul font p br pre tt blockquote

This is a technical blog related to the above topic. We reserve the right to remove comments that are off-topic, irrelevant links, advertisements, spams, personal attacks, politics, religion, etc.

Updated 28-Feb-2024   -   Copyright Carl Sassenrath   -   WWW.REBOL.COM   -   Edit   -   Blogger Source Code