Re: Upgrade security relevant packages

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index] 

On 12/15/2015 02:07 PM, Bill Howe wrote:
> Chris,
> 
> I recommend you look into:
> 
>    - Spacewalk: Centralized system management utility (
>    http://spacewalk.redhat.com/)
>    - Errata update tool:
>    https://github.com/mike-wendt/spacewalk-centos-errata
>       - CentOS repos do not include the errata information in the repo
>       itself (EPEL does include errata info in its repos), so others
> have created
>       external tools that pull errata off of the mailing lists.
> 
> Combined, they would allow you to have a local mirror of the CentOS repos
> and push/pull only the packages you want to install.
> 
> Bill
> 
> On Tue, Dec 15, 2015 at 6:12 AM, Chris <contact@xxxxxxxxxx> wrote:
> 
>> Hello,
>>
>>
>>
>> I'm looking for a solution to automatically yum update security relevant
>> packages on a couple hundred Centos6/7 servers. The deployment/trigger
>> would
>> be Ansible.
>>
>> I looked into the "yum-plugin-security" and tested it on a CentOS 6
>> installation but always found no security relevant updates (yum
>> list-security/yum --security update) where there should be at least a
>> couple
>> ones. I read around it and found that this solution is not working for
>> CentOS (can you please confirm). What is the best practice to upgrade
>> security relevant packages on live systems without service interruption?
>>
>>
>>
>> Thanks in advance!
>>
>>
>>
>> Cheers,
>>
>> Chris
>>
>> _______________________________________________
>> CentOS mailing list
>> CentOS@xxxxxxxxxx
>> https://lists.centos.org/mailman/listinfo/centos
>>
> _______________________________________________
> CentOS mailing list
> CentOS@xxxxxxxxxx
> https://lists.centos.org/mailman/listinfo/centos
> 

Hi,

please be aware that the Spacewalk was an OSS variant of Satellite 5. I
would strongly recommend to build a "Satellite 6" from the OSS
components. Just check the Satellite 6 @ Red Hat Customer Portal to find
all the required components.

//Zdenek
_______________________________________________
CentOS mailing list
CentOS@xxxxxxxxxx
https://lists.centos.org/mailman/listinfo/centos
[Index of Archives]     [CentOS]     [CentOS Announce]     [CentOS Development]     [CentOS ARM Devel]     [CentOS Docs]     [CentOS Virtualization]     [Carrier Grade Linux]     [Linux Media]     [Asterisk]     [DCCP]     [Netdev]     [Xorg]     [Linux USB]
  Powered by Linux