Fedora Security Process Model Question
Alexander Dalloz
ad+lists at uni-x.org
Wed Mar 2 22:57:30 UTC 2005
Am Mi, den 02.03.2005 schrieb Chris Strzelczyk um 22:49:
Hello!
> 1. What is the best/quickest way to get security updates for Fedora
> Linux? Although Redhat mentions to get errata
> thourgh redhat.com I see nothing for Fedora on the redhat support page.
Follow the announce list:
http://www.redhat.com/mailman/listinfo/fedora-announce-list
> Is yum or up2date the only way to go?
Yes, yum or up2date are the tools Fedora Core ships with to deal with
package installs and (security) updates. I must confess I do not see
what's your point of critics or doubts. Feel free to elaborate.
> 2. Once Fedora goes to a new revision level (i.e. from core 3 to core
> 4) when do the experts recommend we update Fedora
> core 3? I believe updates stop a few months after the new revision is
> release. Does this include security updates?
Official updates stop coming by Red Hat for Fedora Core 3 when Fedora
Core 5 Test 2 release comes out. So this is plenty of time. No need to
hurry when a new stable release is out. For instance I still run Fedora
Core 2 and enjoy getting the regular updates.
> 3. When upgrading a Core version up a level how painless/painful is
> it? FreeBSD makes upgrading through ports a walk in the
> park I would just like to know what the real world thinks.
The ports system does not update the base system. Though I am still
relatively fresh with FreeBSD myself I am sure base system and ports are
2 different things.
How painless or more difficult a Fedora Core upgrade is depends on the
level of customisation of the install. In the past many user have
successfully upgraded - either by the supported way using the CD based
upgrade method with Anaconda or going the unsupported way doing online
upgrades running yum. As Fedora intends to be a distribution living at
the front of top technologies - leading edge (not bleeding edge) - there
always may be more or less difficult hurdles to pass with a Core
upgrade. Fro example take the change from kernel 2.4 to 2.6 with FC1 ->
FC2 or using udev initially with FC3. Those kind of things can rise up
difficulties doing an online upgrade.
I suggest you wait some time with an online upgrade until there is a
fair number of feedback by others, early birds. Doing a google search
you will find that there are some howtos by people who did online
upgrades from earlier releases. By following their hints and reading
their experiences you should be able to bypass pitfalls and limit the
risk to be urged to use the backup.
> -cs
Alexander
--
Alexander Dalloz | Enger, Germany | GPG http://pgp.mit.edu 0xB366A773
legal statement: http://www.uni-x.org/legal.html
Fedora Core 2 GNU/Linux on Athlon with kernel 2.6.10-1.14_FC2smp
Serendipity 23:42:22 up 9 days, 10:51, load average: 0.30, 0.44, 0.36
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 189 bytes
Desc: Dies ist ein digital signierter Nachrichtenteil
URL: <http://listman.redhat.com/archives/fedora-list/attachments/20050302/99595cde/attachment-0001.sig>
More information about the fedora-list
mailing list