[CentOS] "yum --security" and staying with 5.0

Johnny Hughes johnny at centos.org
Mon Dec 24 13:31:08 UTC 2007


Amos Shapira wrote:
> On 13/12/2007, Ralph Angenendt <ra+centos at br-online.de> wrote:
>> Amos Shapira wrote:
>>> I'll just try to avoid updates for now.
>> Why? It is *highly* unlikely that 5.1 will break *anything* for you. I
>> mean: Those are still the *SAME* software versions as in 5.0. And those
>> are the same software versions which will be in CentOS 5.5. Or 5.7.
>>
>> You will *NOT* get any security updates that way, you are leaving your
>> machines vulnerable - and that for *NO* reason.
> 
> I just got the impression from the subject in the mailing list for the
> last couple of weeks that 5.1 introduced some problems to people who
> upgraded. Going through the archive today I see that it looks like all
> problems resulted from people deviating from the recommended path
> (just "yum update") by having their own kernels or mixing 5.1 with
> packages from other sources.
> 
> Thanks.
> 
> --Amos

Amos,

Sure there are a couple of problems with the updates.  We have had more
that 2 million machines get updates in the last month.

There are a handful of problems reported ... what, 10-15 accounts of
something going wrong on the list.

The vast majority of problems are usually caused by yum .repo file
configuration problems or some other instance of non supported (ie, non
centos software installed) problems.

There was a major nfs/autofs issue that is now corrected ... and I am
sure there are a couple other problems, but > 99.9% of the upgrades went
perfectly.

So, not upgrading is probably not warranted.

Thanks,
Johnny Hughes

-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 252 bytes
Desc: OpenPGP digital signature
URL: <http://lists.centos.org/pipermail/centos/attachments/20071224/431ba7fb/attachment.sig>


More information about the CentOS mailing list