Re: Red Hat: To patch or to upgrade?

• Previous message: Stephen Samuel: "Re: Live Upgrade for Linux"
• In reply to: Andy Wild: "Red Hat: To patch or to upgrade?"
• Next in thread: Martin: "RE: Red Hat: To patch or to upgrade?"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Date: Wed, 2 Apr 2003 16:39:43 +0530
From: Devdas Bhagat <dvb@users.sourceforge.net>
To: Andy Wild <awild@vianetworks.co.uk>

On 01/04/03 14:05 +0100, Andy Wild wrote:
<snip>
> I was wondering what the general feeling was amongst other subscribers to
> the list in regards to updating a Red Hat box as part of a process to harden
> it? I am looking at Red Hat 7.0, 7.1 and 7.2 boxes.
>
> The two obvious options to me are to either:
>
> - Identify errata RPMs that have been released by Red Hat for those versions
> and install them.
If the system is stable under the load you put on it, just use the
redhat patches (and patch self compiled software as relevant).

> or
>
> - Upgrade the Red Hat box to 7.3 or 8.0, and then update with the errata
> RPMs for either of those new versions.
I personally run RH 7.3 for the stability factor. About half the
software I run is from RPM and the other half is compiled from source.
I update the RPMs to current as required by RPM. and source likewise.
(I run postfix snapshots/postgresql official source/courier-imapd and
quite a few things that RedHat doesn't ship and of course, custom
kernels).
<snip>
> Although it shouldn't be as important since security is the main concern, is
> it just generally "easier" to update the RPMs rather than upgrade the box
> entirely?
You can go about it either way. Just make sure you stay patched to the
highest level of patching you can(for bug fixes, not features).

Devdas Bhagat

• Previous message: Stephen Samuel: "Re: Live Upgrade for Linux"
• In reply to: Andy Wild: "Red Hat: To patch or to upgrade?"
• Next in thread: Martin: "RE: Red Hat: To patch or to upgrade?"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Relevant Pages Re: I think, everyone canT compile xmule in Mandrake, can you? - was Re: Anyone compiled XMULE ? ... gcc can't find the headers. ... [snip many build attempts, all failed on inability to find headers] ... pkg-config doesn't seem to know. ... It's not so much pkg-config, as the gtk and glib devel rpms, they ... (comp.os.linux.development.apps) Re: Ether Steam Engine ??? ... Lake Erie being dumped in there per second. ... torque rose with its RPMS (piston engines eventually get ... All internal combustion engines have an "optimum" RPM range. ... (sci.physics) ogle problem on fc2 ... Recently I went on vacation and my backup decided to install a few ... rpms, "catching us up" to all of the current freshrpms RPMS. ... While mplayer and totem can still play DVD's, ... (SNIP - MORE OF SAME UNTIL I HIT A 'q' TO QUIT) ... (Fedora) Re: [opensuse] Query Repository for Package information ... Forget all that stuff -- I just remembered that Yast2 hasn't ever given ... downloading all RPMS. ... It will let you find RPMs, many of which you will see are the ones you ... (SuSE)