- Community Home
- >
- Servers and Operating Systems
- >
- Operating Systems
- >
- Operating System - Linux
- >
- Linux Patching Questionairres
Categories
Company
Local Language
Forums
Discussions
Forums
- Data Protection and Retention
- Entry Storage Systems
- Legacy
- Midrange and Enterprise Storage
- Storage Networking
- HPE Nimble Storage
Discussions
Discussions
Discussions
Forums
Forums
Discussions
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
- BladeSystem Infrastructure and Application Solutions
- Appliance Servers
- Alpha Servers
- BackOffice Products
- Internet Products
- HPE 9000 and HPE e3000 Servers
- Networking
- Netservers
- Secure OS Software for Linux
- Server Management (Insight Manager 7)
- Windows Server 2003
- Operating System - Tru64 Unix
- ProLiant Deployment and Provisioning
- Linux-Based Community / Regional
- Microsoft System Center Integration
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Community
Resources
Forums
Blogs
- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Bookmark
- Subscribe
- Printer Friendly Page
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО05-13-2010 06:43 AM
тАО05-13-2010 06:43 AM
I would be grateful if you could spare sometimes to provide me assistance with below Q.
Really need your hands-on experience regarding this below questionnaires.
1. how do you do patching in enterprise environment?
2. what are the most common tool that you used for patching in enterprise environment?
3. explain to me in brief how to setup repo server and point client to that server? where do you manipulate the settings in server and also client. Give me the most common setup example?
4. what are the most common files do you patch in linux?
5. is it safe for you to patch just only kernel?
6. in HP , what are the tools that you used to patch?
7. Could you please provide me a sample of patching you have done and how you do it?
Any other info that you could add? Or url links that I could refer further.
Thank you very much!
Best Regards,
Regmaster
Solved! Go to Solution.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО05-13-2010 06:56 AM
тАО05-13-2010 06:56 AM
Re: Linux Patching Questionairres
First, test the patch in a non production environment. We patch first development system, then Q&A systems, and then production systems.
2. what are the most common tool that you used for patching in enterprise environment?
Depends of your distribution. In our case, up2date/yum
3. explain to me in brief how to setup repo server and point client to that server?
Depends of your distro
4. what are the most common files do you patch in linux?
Not related to files, but related to packages with security vulnerabilities.
5. is it safe for you to patch just only kernel?
No. You must patch all packages with security issues
5. in HP , what are the tools that you used to patch?
----
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО05-13-2010 08:57 AM
тАО05-13-2010 08:57 AM
Re: Linux Patching Questionairres
Thank you very much. I really appreciate your reply.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО05-13-2010 09:45 AM
тАО05-13-2010 09:45 AM
Re: Linux Patching Questionairres
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО05-13-2010 10:14 AM
тАО05-13-2010 10:14 AM
SolutionSee my answer:
1. how do you do patching in enterprise environment?
I try to handle security updates that could impact SOX within weeks. I plan a major patch set once a year after validating it in the lab environment.
2. what are the most common tool that you used for patching in enterprise environment?
yum
3. explain to me in brief how to setup repo server and point client to that server? where do you manipulate the settings in server and also client. Give me the most common setup example?
http://www.howtoforge.com/creating_a_local_yum_repository_centos
http://www.cyberciti.biz/tips/redhat-centos-fedora-linux-setup-repo.html
4. what are the most common files do you patch in linux?
Impossible to answer. If I had to guess, I'd guess the kernel. Flaws are found impacting security or performance and they need to be installed to avoid exploit.
5. is it safe for you to patch just only kernel?
No. Other applications like openssh,openssl,ftp servers have frequent security flaws discovered and its necessary to patch more than the kernel.
6. in HP , what are the tools that you used to patch?
I don't work for HP.
7. Could you please provide me a sample of patching you have done and how you do it?
I like to have a internal red hat server to serve up repositories. Then after I update a test system as follows:
yum -y update
I boot and test.
Same procedure for updating production once the patch set is validated.
SEP
If my colleagues answers have been helpful, please assign points. I don't need any. Have enough.
Owner of ISN Corporation
http://isnamerica.com
http://hpuxconsulting.com
Sponsor: http://hpux.ws
Twitter: http://twitter.com/hpuxlinux
Founder http://newdatacloud.com
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО05-13-2010 10:37 AM
тАО05-13-2010 10:37 AM
Re: Linux Patching Questionairres
Thanks for guidance in this matter. It really helps me understand better how it patching works.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО05-13-2010 02:28 PM
тАО05-13-2010 02:28 PM
Re: Linux Patching Questionairres
We have a quality assurance dept. that tests and releases quarterly patchbundles that we use to baseline the servers.
Patches (always rpm files already released by RedHat) are stored on a central repository along with a metadata rpm which contains the headers and errata lists (this you can get from RH), then patches are downloaded to the servers from the repository with a custom made script written around yum. If you want more details please let me know
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО05-13-2010 03:01 PM
тАО05-13-2010 03:01 PM
Re: Linux Patching Questionairres
Yes. Please I would like to know further detail. Very kind of you. Many Thanks!