Between the rapid release of open source software, and modern OSes preloaded with packages, enterprises are vulnerable to attacks they aren’t even aware of.
Ehh…Not really a mechanism for that that I can see. I mean, say that there's demand for that, which I can believe. Do I go to a given distro and buy a "security hardened" version? I don't see how that would work. Is the distro going to refrain from incorporating security fixes into the "non-hardened" free version?
If you have read it, you might have noticed that the theme of the article is a company called Chainguard. Enterprises can pay them and get a secure software supply chain all the way down to the container image. More than that, their container distro is actually free and open-source, anyone can use it for free, it's a one line change in your build script to go from Alpine to Wolfi. Enterprises can also buy a secure OS for bare-metal from Red Hat, SUSE, etc…
Ehh…Not really a mechanism for that that I can see. I mean, say that there's demand for that, which I can believe. Do I go to a given distro and buy a "security hardened" version? I don't see how that would work. Is the distro going to refrain from incorporating security fixes into the "non-hardened" free version?
If you have read it, you might have noticed that the theme of the article is a company called Chainguard. Enterprises can pay them and get a secure software supply chain all the way down to the container image. More than that, their container distro is actually free and open-source, anyone can use it for free, it's a one line change in your build script to go from Alpine to Wolfi. Enterprises can also buy a secure OS for bare-metal from Red Hat, SUSE, etc…