1 |
> I wasn't going to chime in until some real deployments have been |
2 |
> mentioned. |
3 |
|
4 |
Ditto. |
5 |
|
6 |
> I run a home network that's pretty much gentoo-only. The server |
7 |
> provides DNS, DHCP, LAMP, Posfix SMTP, IMAPS (courier), TFTP (bsd), |
8 |
> SAMBA, NFS. |
9 |
> |
10 |
> I am currently pursuing a career in IT and expect to bring up some |
11 |
> public servers towards the end of the year. needless to say, they'll |
12 |
> be running gentoo too. I don't forsee any problems. |
13 |
> |
14 |
> I want to echo Ricardo's warning -- update conservatively! He's right |
15 |
> -- after a while, you know which packages you can update safely and |
16 |
> which are potential problems. Staging environment is crucial for |
17 |
> gentoo becasue you'll be running binaries that have never really been |
18 |
> tested ... or run ... ever. |
19 |
|
20 |
I run a home server under gentoo as well, which serves me fine as a |
21 |
personal box, and I also run a public server which runs on a fairly |
22 |
beefy server and hosts a few websites, including a TDI (the VW car) |
23 |
forum which is insanely popular and we push about 250G/month on it |
24 |
alone. |
25 |
|
26 |
This used to be a debian system and was moved over to gentoo about 4 |
27 |
years ago when I had been spending lots of time with gentoo on my |
28 |
desktop at home. I like gentoo, however I would exercise caution if |
29 |
you're deploying on "real" systems. |
30 |
|
31 |
The issue is the "updating conservatively" part mentioned above. As |
32 |
anyone who has run a server that other people are depending on knows, |
33 |
you REALLY want to update as little as possible. The less updates, the |
34 |
less surprises and the less chance you'll somehow accidently break |
35 |
someone's site doing a simple update late some night. Gentoo is still a |
36 |
fairly moving target in this respect. |
37 |
|
38 |
I upgrade packages maybe once a week and since I have fallen behind in |
39 |
some, I'm scared as hell to upgrade. I still have apache 1.3 running, |
40 |
and because it'd deprecated I can't update any of the packages that go |
41 |
along with it, meaning that to upgrade to the latest apache files, I |
42 |
have to upgrade EVERYTHING associated with apache with no really good |
43 |
rollback plan. Apache, php, modules, mod_perl, etc. No biggie at all |
44 |
if it's your home server, but that's potentially a lot of downtime (ie: |
45 |
a couple of hours) as I compile, test, re-jig the config files, test |
46 |
more, etc. I'm in the same boat with postfix, running a 2.0.x when 2.2 |
47 |
or 2.3 is available, glib, mysql (I did an upgrade where some new utf8 |
48 |
flags were enabled and suddenly a bunch of databases were invalid |
49 |
because the encoding was different), postgres, sqlite (more that I'm not |
50 |
sure what they link to that might be affected) and some other system |
51 |
packages. |
52 |
|
53 |
Now most likely nothing will happen on upgrade, but with some users who |
54 |
do business and lots of mail of the server, I'd rather not take the chance |
55 |
if the current setup is working fine. |
56 |
|
57 |
Maybe I'm being overly paranoid and sensitive, but I've worked as a |
58 |
sysadmin long enough to have seen (and caused) way more "oh oh" moments |
59 |
when an upgrade of something did something it really wasn't supposed to. |
60 |
|
61 |
The source nature of gentoo doesn't help here either. IE: I'm unable to |
62 |
upgrade curl or net-snmp on my server as both of those link to php, and |
63 |
because my php is "old" and non-upgradeable due to the deprecated apache |
64 |
I still have installed, upgrading curl or net-snmp would (and has) |
65 |
broken php and therefor apache and therefor I got a call late at night |
66 |
wondering why things were suddenly broken. |
67 |
|
68 |
Now here gentoo also made it (fairly) easy to rollback, as I just copied |
69 |
curl-$newversion.ebuild to curl-$previousversion.ebuild (the old version |
70 |
was long gone IIRC), recompiled and it all worked. This would have been |
71 |
impossible with say, debian if a binary package had broken something as |
72 |
there's no real way to backout to a package you don't have anymore (and |
73 |
that exact thing bit me when my server was running debian and partially |
74 |
why I switched *to* gentoo!). |
75 |
|
76 |
So while you want to upgrade conservatively, you can't be too |
77 |
conservative or else your current package versions will disappear from |
78 |
out from under you. |
79 |
|
80 |
> That having been said, gentoo has a nice habit of providing a really |
81 |
> comfortable environment for the deployment of just about anything. And |
82 |
> unlike Fedora / Redhat, Debian, and some others I've used, there aren't |
83 |
> any surprises when you go to configure anything. |
84 |
|
85 |
Another "yes and no" from me. The "no" part comes from package |
86 |
re-organization by maintainers which bit users a while back with the |
87 |
apache config re-org and before that something similar done to X. Not a |
88 |
problem exclusive to gentoo, but still an issue if the distro is doing |
89 |
major shifts here and there. |
90 |
|
91 |
I hope no one thinks I'm slamming gentoo here. I really do like it and |
92 |
have been running it and being a faithful user for years. I've just |
93 |
also been a sysadmin long enough to be a bit paranoid about production |
94 |
servers which have too many things being upgraded too often. |
95 |
|
96 |
I think the secret is that if you run with gentoo you have to be |
97 |
prepared to upgrade EVERYTHING fairly often, and not bit by bit if |
98 |
you're uncomfortable with something it might be upgrading. |
99 |
|
100 |
HTH, or at least maybe puts a different perspective on it for people. |
101 |
|
102 |
And yes, I do plan to just bit the bullet and backup, upgrade everything |
103 |
and then deal with any upgrade "pains" as they come. Just not sure |
104 |
quite when :) |
105 |
|
106 |
Alan |
107 |
|
108 |
|
109 |
-- |
110 |
Alan <alan@×××××.org> - http://arcterex.net |
111 |
-------------------------------------------------------------------- |
112 |
"Beware of computer programmers that carry screwdrivers." -- Unknown |
113 |
-- |
114 |
gentoo-user@g.o mailing list |