On 12/15/2015 02:07 PM, Bill Howe wrote: > Chris, > > I recommend you look into: > > - Spacewalk: Centralized system management utility ( > http://spacewalk.redhat.com/) > - Errata update tool: > https://github.com/mike-wendt/spacewalk-centos-errata > - CentOS repos do not include the errata information in the repo > itself (EPEL does include errata info in its repos), so others > have created > external tools that pull errata off of the mailing lists. > > Combined, they would allow you to have a local mirror of the CentOS repos > and push/pull only the packages you want to install. > > Bill > > On Tue, Dec 15, 2015 at 6:12 AM, Chris <contact at progbau.de> wrote: > >> Hello, >> >> >> >> I'm looking for a solution to automatically yum update security relevant >> packages on a couple hundred Centos6/7 servers. The deployment/trigger >> would >> be Ansible. >> >> I looked into the "yum-plugin-security" and tested it on a CentOS 6 >> installation but always found no security relevant updates (yum >> list-security/yum --security update) where there should be at least a >> couple >> ones. I read around it and found that this solution is not working for >> CentOS (can you please confirm). What is the best practice to upgrade >> security relevant packages on live systems without service interruption? >> >> >> >> Thanks in advance! >> >> >> >> Cheers, >> >> Chris >> >> _______________________________________________ >> CentOS mailing list >> CentOS at centos.org >> https://lists.centos.org/mailman/listinfo/centos >> > _______________________________________________ > CentOS mailing list > CentOS at centos.org > https://lists.centos.org/mailman/listinfo/centos > Hi, please be aware that the Spacewalk was an OSS variant of Satellite 5. I would strongly recommend to build a "Satellite 6" from the OSS components. Just check the Satellite 6 @ Red Hat Customer Portal to find all the required components. //Zdenek