joojmachine@lemmy.ml to Linux@lemmy.mlEnglish · 7 months agoFederal agency warns critical Linux vulnerability being actively exploitedarstechnica.comexternal-linkmessage-square109fedilinkarrow-up1305arrow-down15cross-posted to: news@lemmy.linuxuserspace.showcybersecurity@sh.itjust.works
arrow-up1300arrow-down1external-linkFederal agency warns critical Linux vulnerability being actively exploitedarstechnica.comjoojmachine@lemmy.ml to Linux@lemmy.mlEnglish · 7 months agomessage-square109fedilinkcross-posted to: news@lemmy.linuxuserspace.showcybersecurity@sh.itjust.works
minus-squarecorsicanguppy@lemmy.calinkfedilinkarrow-up32arrow-down1·7 months agoYet another problem that actually updating your shit - which is trivially easy on enterprise Linux - would fix. It’s part of the 95% of problems solved by actually updating your enterprise Linux host.
minus-squaredelirious_owllinkfedilinkarrow-up7arrow-down1·7 months agounattended-upgrades and forget about it
minus-squareKISSmyOSFeddit@lemmy.worldlinkfedilinkarrow-up5arrow-down1·7 months agooops, our third party application broke again
minus-squaredelirious_owllinkfedilinkarrow-up6arrow-down1·7 months agoNever happened to me when set to security.
minus-squaredelirious_owllinkfedilinkarrow-up3·edit-27 months agoIts a Debian package that automatically upgraded packages (if they have pending security updates)
minus-squareiegod@lemm.eelinkfedilinkarrow-up3·7 months agoI run mine manually, good to know. Will check it out.
minus-squarePossibly linux@lemmy.ziplinkfedilinkEnglisharrow-up1·7 months agoThat requires that the patches be in the repos. With RHEL it might be a few months
minus-squarefruitycoder@sh.itjust.workslinkfedilinkarrow-up2·7 months agoNormally security patches are pretty good on same day releases as the CVE if available.
minus-squareikidd@lemmy.worldlinkfedilinkEnglisharrow-up1·7 months agoBut then I can’t screenshot my 7 years of uptime
minus-squarePossibly linux@lemmy.ziplinkfedilinkEnglisharrow-up1·7 months agoJust live patch Although it is better to have some sort of HA system.
Yet another problem that actually updating your shit - which is trivially easy on enterprise Linux - would fix.
It’s part of the 95% of problems solved by actually updating your enterprise Linux host.
unattended-upgrades and forget about it
oops, our third party application broke again
Never happened to me when set to security.
Tell me more (for real, I’m unfamiliar).
Its a Debian package that automatically upgraded packages (if they have pending security updates)
I run mine manually, good to know. Will check it out.
That requires that the patches be in the repos. With RHEL it might be a few months
Normally security patches are pretty good on same day releases as the CVE if available.
But then I can’t screenshot my 7 years of uptime
Just live patch
Although it is better to have some sort of HA system.