> - Is it reasonable to have more than 70% of the computers/servers that run important infrastructure on the same OS / software ? How about the mitigation of the risks etc…
This is the problem as far as I'm concerned. Industry "best practice" is "use the same thing everywhere"
A diverse ecosystem is the best defence.
You could run 100% FreeBSD and be hit by say a hidden kernel bug which occurs on Jan 15th 2027 when unix time goes from 1.7b to 1.8b (I've seen that code before where time is assumed to be below X)
If you run 50% FreeBSD and 50% Windows you will only lose half your service.
This is the problem as far as I'm concerned. Industry "best practice" is "use the same thing everywhere"
A diverse ecosystem is the best defence.
You could run 100% FreeBSD and be hit by say a hidden kernel bug which occurs on Jan 15th 2027 when unix time goes from 1.7b to 1.8b (I've seen that code before where time is assumed to be below X)
If you run 50% FreeBSD and 50% Windows you will only lose half your service.