First things first; who are the ones that the running outdated software and what can we do about it?
Is there a reason?
Can we tag them and ask?
You are viewing a single comment's thread from:
First things first; who are the ones that the running outdated software and what can we do about it?
Is there a reason?
Can we tag them and ask?
I would say that those on this list that display in Orange are running outdated Hive Witness software:
https://hive.arcange.eu/witnesses/
So everyone running 1.27.4 and below, but 1.27.0 really looks bad to me as that is the first release of the current iteration of Witness software that works with the Hive blockchain since Hard Fork 27. It works and maybe that is OK, but coming from traditional tech it is unthinkable to run software that was not updated in three years and is 11 versions behind a current version...
These updates are usually full node only and have no impact on consensus. Thus no point in upgrading as it incurs more risk and potential downtime.
So witness software doesn't get any security patches? Like zero since last hard fork? (v1.27.0)
First off, witness nodes should not be exposed to the Internet.
There are only a few things like (RC) that are not consensus, which would require a hard fork.
Any attack vector on a witness node would be an attack vector on the chain and would require a hard/soft fork to address. I like my forks hard and consensual.
There have been a few changes I believe to address RC that some of us have upgraded to.
Most Hived updates are for full nodes and not for consensus (witness) nodes. So upgrading isn't always important.
Got it. Thanks for the info.