Re: Yum -y updating of a PRODUCTION WebServer

From: noi (noi_at_siam.com)
Date: 03/12/05

• Next message: noi: "Re: find prune question"
• Previous message: Dan Espen: "Re: find prune question"
• In reply to: Michael Heiming: "Re: Yum -y updating of a PRODUCTION WebServer"
• Next in thread: Michael Heiming: "Re: Yum -y updating of a PRODUCTION WebServer"
• Reply: Michael Heiming: "Re: Yum -y updating of a PRODUCTION WebServer"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Date: Sat, 12 Mar 2005 15:53:00 GMT

On Fri, 11 Mar 2005 19:56:29 +0100, Michael Heiming thoughtfully wrote:

> In comp.os.linux.misc noi <noi@siam.com>:
>> On Fri, 11 Mar 2005 14:05:08 +0000, Ignoramus2923 thoughtfully wrote:
>
>
>>> I am setting up a new linux rackmount server, to serve as a replacement
>>> of my old one. It is already at a colocation provider and is working
>>> fine.
>>>
>>> Among other things, it will host comp.os.linux.announce, by the way.
>>>
>>> The question is, is it better to disable automatic updates via yum -y
>>> done in crontab? I cannot see much benefit from autoupdates and I can
>>> see trouble potential. All that I am running is apache, mod_perl,
>>> mysql, sendmail, ssh etc. I do not care for updates to GUIstuff and do
>>> not even care much for kernel updates.
>
> This hazardous attitude matches at least with your alias. Why do you think
> distro provide patches? Because it's that much fun updating packages?
>

#1 The OP asked if it is better to disable automatic yum updates to avoid
potential problems to his production system. As I and others pointed out
in their replies the answer is yes.

#2 Despite his name the OP is running a PRODUCTION system. I assume he
knows a little about security and security updates.

While yum resolves dependencies for updated packages it doesn't resolve
kernel dependent modules not updated like NTFS.

When Yum updates or installs it downloads those packages, headers and
updates symbolic links etc. and that will cause minor errors if the latest
kernel update is not running.

>>> So, I am leaning towards disabling autoupdates. Any good reasons to
>>> not disable them?
>
>> Unless kernel updates are disabled auto updates will update the kernel
>> requiring reboots. I'm fairly certain auto yum installs all updated
>> packages not just those on the system.
>
> Nope, have you ever used 'yum'? Yum does only update packages installed,
> it might need to install one or another additional package to satisfy
> dependencies. Kernels packages will not be updated but yum installs new
> kernel packages and sets them as default boot kernel.
>

I never installed gaim but yum update installed the updated gaim package.
I had to manually remove gaim from my system post yum update. There are
other questionable packages.

> Yum won't reboot the system, you can reboot later. Even if you update a
> kernel package manually and the running kernel + modules are removed,
> doesn't matter sure it can't load an additional module this will of
> course fail. Otherwise the box will just run fine, kernel + modules are
> loaded to memory.
>

See previous comment about non Yum modules like NTFS and problems found
when not running the latest kernel updated on the system.

If you read my original reply I said automatic kernel updates can be
turned off in yum (like in up2date) which is not true but one can
--exclude kernel* to exclude kernel updates. That reduces potential
kernel problems like the kernel that killed cdrecord for ordinary users.

>> Not a problem disabling yum auto updates.
>
> If you run it manually on a regular base, there shouldn't be any
> problems.

As I said not a problem turning off yum auto updates and preferred
for a production system.

• Next message: noi: "Re: find prune question"
• Previous message: Dan Espen: "Re: find prune question"
• In reply to: Michael Heiming: "Re: Yum -y updating of a PRODUCTION WebServer"
• Next in thread: Michael Heiming: "Re: Yum -y updating of a PRODUCTION WebServer"
• Reply: Michael Heiming: "Re: Yum -y updating of a PRODUCTION WebServer"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Relevant Pages Re: yum Traceback in yummain.main(sys.argv[1:]) ... ... Only with Yum failing to resolve the dependencies of the kmdl pkgs. ... packages depending on other installed packages. ... kernel needing a rebuild for the final kernel in F8. ... BTW when installonlyn was a plugin ... (Fedora) Re: Fedora 9 will not update ... And since there are updates for the two packages you queried, ... sure you've got the latest Yum. ... No Presto metadata available for fedora ... (Fedora) Re: Yum -y updating of a PRODUCTION WebServer ... >> care much for kernel updates. ... I'm fairly certain auto yum installs all updated ... > packages not just those on the system. ... (comp.os.linux.misc) RE: kernel update/wireless install ... I downloaded the packages you suggested. ... packages (I haven't used yum before) and got an error saying that I should ... Subject: kernel update/wireless install ... My guess is that I need to download the source ... (Fedora) Re: yum update ... What is the 'rule of thumb' for re-booting after the completion of the ... You need to look at what yum has ... Thus if it changed the kernel or libc, ... Packages Updated: ... (Fedora)

• Security
• UNIX
• Linux
• Coding
• Usenet

• Mailing-Lists
• Newsgroups
• About
• Privacy
• Search
• Imprint