1 |
On 08/16/2016 07:29 AM, hw wrote: |
2 |
> Neil Bothwick schrieb: |
3 |
>> On Sat, 13 Aug 2016 16:26:21 +0200, hw wrote: |
4 |
>> |
5 |
>>>> If you see this now, your production server hasn't been updated for a |
6 |
>>>> long time... |
7 |
>>> |
8 |
>>> About 1.5 years --- not really a long time. |
9 |
>> |
10 |
>> You're kidding, right? You're running a production server without the |
11 |
>> last 18 months' worth of security updates? |
12 |
> |
13 |
> What can you do when you don´t have the time to do the updates, especially |
14 |
> when you know that they will give you trouble and can take all day or even |
15 |
> longer. |
16 |
> |
17 |
> |
18 |
|
19 |
I run a half a dozen gentoo servers to do some tasks in our environment. |
20 |
I typically *make time* to update at least four times a year. I |
21 |
generally do not have any problems or blockers to deal with. Each of |
22 |
those instances are specific and don't have any unnecessary cruft to |
23 |
deal with (i.e. no GUI or anything. Base environment + tool needed.) |
24 |
|
25 |
Ironically I am updating as we speak and while it does take some |
26 |
unattended time to finish (I don't have to sit there and watch it) |
27 |
starting and confirming the update list took all of about a minute. |
28 |
After it's done I habitually run perl-cleaner, python-updater, then |
29 |
--depclean it and revdep-rebuild them. There may be a kernel update but |
30 |
I do not do major kernel updates unless there is a need, but incremental |
31 |
updates I apply. |
32 |
|
33 |
When I go update each one it probably takes 20 minutes to do them all, |
34 |
and I do it at the same time I wind up applying Windows server patches. |
35 |
|
36 |
I did drag a really old gentoo installation at work after 2.5 years of |
37 |
updates not applying. Yes, it took a day, and would have been faster to |
38 |
reinstall from scratch. I chalked it up to my own damn fault and since |
39 |
then update four times a year and haven't had any major issues since. |
40 |
|
41 |
Dan |