> Am 17.02.2019 um 14:28 schrieb Jonathan Billings <billings at negate.org>: > >> On Feb 16, 2019, at 15:14, Tate Belden <wyoham at gmail.com> wrote: >> >> One can also do the 'yum-cron' dance to automate updates. >> Good writeup and description here: >> >> https://www.howtoforge.com/tutorial/how-to-setup-automatic-security-updates-on-centos-7/ > > 1.) yum-cron with ?update_cmd = security? wont do anything for CentOS because it doesn?t have security metadata in its repos. EPEL will get updates. The person who wrote this must be using RHEL or some clone that publishes security metadata. Looking at google for this topic shows a lot of people get this wrong, which means there are probably a lot of insecure systems out there. > > 2.) pet peeve: use ?grep searchterm filename? and not ?cat filename | grep searchterm?. > > 3.) you don?t need to restart the yum-cron.service systemctl unit after modifying yum.conf, since it?s not a running service, it just touches a file that tells the cron job that itHallo. thanks to all for the answers. One aspect is unclear for me. Updates are published using the update-directory like the one in my question? Ralf
On Feb 17, 2019, at 09:25, Ralf Prengel <ralf.prengel at rprengel.de> wrote:> Hallo. > thanks to all for the answers. > One aspect is unclear for me. Updates are published using the update-directory like the one in my question?Updates are published to the main CentOS repositories, which are mirrored all over the world, including the site you mentioned in your first post. You should not be manually setting it unless you understand what you are doing. By default, Athens CentOS installer will install appropriate files in /etc/yum.repos.d/ that will pick a close mirror to you. ? Jonathan Billings <billings at negate.org>
On Feb 17, 2019, at 16:54, Jonathan Billings <billings at negate.org> wrote:>> , Athens CentOS installer will install appropriate files in /etc/yum.repos.d/ thatSorry, no idea how ?Athens? got in there. I blame autocorrect.
> Hallo. > thanks to all for the answers. > One aspect is unclear for me. Updates are published using the update- > directory like the one in my question? >Yes, there is a "base" repo which is what is used as a fresh install for that particular version of CentOS. The "updates" repo contains the updated packages. The two repos go together: "base" gives a fixed reference point for the version, "updates" builds on it. You normally need both. As others have said, you really shouldn't be looking to alter what was installed by the installer unless you really know what you are doing. What is the background to the question you are asking - why does it matter? P.
Zitat von Pete Biggs <pete at biggs.org.uk>:>> Hallo. >> thanks to all for the answers. >> One aspect is unclear for me. Updates are published using the update- >> directory like the one in my question? >> > > Yes, there is a "base" repo which is what is used as a fresh install > for that particular version of CentOS. The "updates" repo contains the > updated packages. > > The two repos go together: "base" gives a fixed reference point for the > version, "updates" builds on it. You normally need both. > > As others have said, you really shouldn't be looking to alter what was > installed by the installer unless you really know what you are doing. > > What is the background to the question you are asking - why does it > matter?Hallo, I m a beginner using centos and I want make sure that I ve understand the update-management of centos. Ralf