----- Message from rainer@ultra-secure.de --------- Date: Wed, 16 Jul 2008 16:08:06 +0200 From: Rainer Duffner rainer@ultra-secure.de Reply-To: CentOS mailing list centos@centos.org Subject: Re: [CentOS] centralized patch management To: CentOS mailing list centos@centos.org
Terry schrieb:
Hello,
I have been asked to come up with a strategy for centralized patch management of our linux servers. Today, this is only centos and rhel. What is everyone else doing in this arena?
I investigated this earlier. The only thing that seems halfway usable is pakiti: http://pakiti.sourceforge.net/
People who think that running "yum update" every night is a solution should go back and do some research. This is how it might work at home (mostly), but not the way you deploy patches to a large number of systems who serve different purposes and thus have different package-selections, user-requirements, patch-policies and downtime-schemas etc.pp.
I hope to be able to test pakiti soon.
cheers, Rainer _______________________________________________
Ok, so what would you suggest is a good practice for a hosting environment with a few different RH based (CentOS & Fedora Core) servers, all doing different stuff?