1 |
Gentoo is excellent from a security standpoint; either a version bump or |
2 |
a backported patch tends to be made available very quickly, especially |
3 |
on the various things that tend to be in production use. |
4 |
|
5 |
But. |
6 |
|
7 |
On Tue, 2004-07-12 at 00:20 +0100, Simon Striker wrote: |
8 |
> Now I am thinking of reinstalling my servers and |
9 |
> installing the Gentoo Linux on them, but I am a bit worried |
10 |
> because all packages in Portage tree are NOT up-to-date. |
11 |
|
12 |
As compared to what? |
13 |
|
14 |
You said you are running Slackware. That's fine, it's a nice enough |
15 |
distro, though a bit hide bound perhaps. I certainly wouldn't rate it as |
16 |
more "up to date" than Gentoo, but that's not actually what matters. |
17 |
|
18 |
Practice in most major shops is NOT to use stuff from the bleeding edge, |
19 |
on the grounds that a piece of software has not yet had sufficient |
20 |
stress testing to get the bugs and glitches out. |
21 |
|
22 |
And further, |
23 |
|
24 |
> I would like to know, how do you maintain your servers? Is it safe to |
25 |
> have Gentoo as a server? |
26 |
|
27 |
No matter what distribution you use, when you deploy systems, you take |
28 |
on the responsibility of a being a distro vendor yourself. [See the |
29 |
"Turing Equivalence" paper] |
30 |
|
31 |
So the question really is: if you have good practices for the |
32 |
administration and maintenance of your machines, if you have mechanisms |
33 |
to stay up to date with the threats out in the wild and what corrective |
34 |
actions need to be taken, then it is safe to run servers regardless of |
35 |
what flavour of Unix they are. |
36 |
|
37 |
AfC |
38 |
Sydney |
39 |
|
40 |
|
41 |
-- |
42 |
Andrew Frederick Cowie |
43 |
Operational Dynamics Consulting Pty Ltd |
44 |
|
45 |
The best Linux conference on the planet! You going to be there? |
46 |
http://linux.conf.au/ Canberra, Australia 18-23 April 2005 |