[CentOS] using Red Hat site for documentation

Thu Jul 31 02:11:49 UTC 2014
Keith Keller <kkeller at wombat.san-francisco.ca.us>

On 2014-07-30, Jonathan Billings <billings at negate.org> wrote:
>
> Eventually, you'll be able to use kpatch to avoid reboots for kernel
> updates, (http://rhelblog.redhat.com/2014/02/26/kpatch/),

This looks very exciting!

> however I
> tend to think that Uptime is overrated.

uptime as a number of days is overrated, but scheduling down time is
certainly not.

> Newer technologies, such as
> VMs and containers, allow services to not be tied to single servers
> anymore.

The container host still needs to be patched and rebooted.  For simple
services with light storage needs this is fine, but a container with
large local storage might not be easy to hot migrate.  You're certainly
not going to migrate a 30TB storage container, for example.

> Anyway, it's hardly Red Hat's fault that it addresses
> security issues promptly.

No, but the kernel itself has had a number of serious flaws this
calendar year, which is what the previous poster was concerned about.

--keith

-- 
kkeller at wombat.san-francisco.ca.us