similar to: why not have yum-updatesd running by default?

Suppose I have a CentOS 5.7 machine running the default Apache with no extra modules enabled, and with the "yum-updatesd" service running to pull down and install updates as soon as they become available from the repository. (Assume further the password is strong, etc.) On the other hand, suppose that as the admin, I'm not subscribed to any security alert mailing lists which send

I recently enabled yum-updatesd on two identical servers and configured it to notify me of updates via e-mail. This worked fine to start with and it notified me on both machines when the kernel-2.6.18-128.1.10.el5.x86_64.rpm update was released last week. However, today I realised that yum-updatesd was not running and thought it was due to rebooting after the kernel update and that I'd

Dear Srs, yum-updatesd-0.9-2.el5 appears that it's not working on freshly installed CentOS 5.2, using: # rpm -qa "yum*" yum-metadata-parser-1.1.2-2.el5 yum-updatesd-0.9-2.el5 yum-3.2.8-9.el5.centos.2.1 yum-fastestmirror-1.1.10-9.el5.centos I see some bugs ([1], [2] and [3]) in the bug tracker, and more info related to other distros like Fedora, etc.. with the same problem.

Hi All, I am running CentOS5 . Yum pkg was installed by deault fresh installation. pls see below for installed yum pkgs. [root at mailgw ~]# rpm -qa |grep yum yum-updatesd-3.0.5-1.el5.centos.2 yum-3.0.5-1.el5.centos.2 later, I installed below pkg for protection. yum-protectbase-1.0.4-2.el5.centos Now, everything works. But, in this vershion of yum, It has no crontab running. It has a file

Hi, I've just startted configuring yum-updatesd on all our servers to install updates automatically and it works great. But I don't see anywhere in its config or command line options a way to find which package version was replaced by which. Is this achieveable in any way or should I resort to some home-grown scripting again? Thanks. -Amos

Back in the Fedora docs I found on a google, it mentions that in FC6, the preferred tool for updates was the "new" yum-updatesd. Anyone know: a) what theological reason upstream had to drop it altogether, and b) what's the recommended replacement - is it yum-cron? I hand-update some servers, and of course users' workstations, but some system, like home directory servers and

I've read that it's not recommended to automatically apply updates via yum-updated on production servers, but I keep encountering servers that have this enabled. Are any of you doing automatic yum updates on production servers in CentOS 5 via yum-updatesd? Have you experienced any negative side effects? The only thing I can think of is if say a client had a custom version of PHP

(Sorry, third time -- last one, promise, just giving it a subject line!) OK, a second machine hosted at the same hosting company has also apparently been hacked. Since 2 of out of 3 machines hosted at that company have now been hacked, but this hasn't happened to any of the other 37 dedicated servers that I've got hosted at other hosting companies (also CentOS, same version or almost),

I have a couple of CentOS 5.1 boxes, mostly i386, but a couple x86_64, some real, some virtual. On all of them, I have yum-updatesd configured to emit via email to root. Here is a sample yum-updatesd.conf from one of them: [main] # how often to check for new updates (in seconds) run_interval = 14400 # how often to allow checking on request (in seconds) updaterefresh = 600 # how to send

CentOS Errata and Security Advisory 2014:1004 Important Upstream details at : https://rhn.redhat.com/errata/RHSA-2014-1004.html The following updated files have been uploaded and are currently syncing to the mirrors: ( sha256sum Filename ) i386: e593f9eab9fe9517cae767a1601e076ebd9d5a6e9d5a81428b72c4cc2c382573 yum-updatesd-0.9-6.el5_10.noarch.rpm x86_64:

Hello, we have enabled yum-updatesd on our dozen real and virtual machines running CentOS 5.2 some time ago and are very satisfied: afarber at ablsw01:~> grep -v ^# /etc/yum/yum-updatesd.conf [main] run_interval = 7200 updaterefresh = 1200 emit_via = email dbus_listener = no do_update = yes do_download = yes do_download_deps = yes (it would be good to make it use the proxy though...) My

http://wiki.centos.org/HowTos/SELinux says: "Access is only allowed between similar types, so Apache running as httpd_t can read /var/www/html/index.html of type httpd_sys_content_t." however the doc doesn't define what "similar types" means. I assumed it just meant "beginning with the same prefix". However that can't be right because on my system with

Running "yum update", yum appears to perform fine and appears to finish but continues to reside in memory: ... Updating : lftp 2/4 Cleanup : lftp 3/4 Cleanup : freetype 4/4 Updated: freetype.i386 0:2.2.1-25.el5_5 lftp.i386 0:3.7.11-4.el5_5.3

With companies like Facebook and Google offering cash prizes for people who can find security holes in their products, has there ever been any consideration given to offering cash rewards to people finding security exploits in CentOS or in commonly bundled services like Apache? (Provided of course they follow "responsible disclosure" and report the exploit to the software authors

If an attacker finds an exploit to take control of httpd, they're still blocked in part by the fact that httpd runs as the unprivileged apache user and hence can't write any root-owned files on the system, unless the attacker also knows of a second attack that lets apache escalate its privilege. Basically correct? What about sshd -- assuming that the attacker can connect to sshd at

My home machine has IP 50.54.225.130. I have (for the purposes of this experiment) one remote machine at www.peacefire.org (69.72.177.140) and another at www.junkwhale.com. When I'm logged in to peacefire, I run this perl script to open an ssh connection to junkwhale and run a command: my $hostname="www.junkwhale.com"; my $server_password = "[redacted!]"; use Net::SFTP;

I am about to set up a computer with Centos 6 that I'll probably never see again. I don't want to give out the root password, but I would like to have it automatically and transparently update itself. What is the best way to do this? I have been looking at webpages about yum-cron and yum-updatesd but nothing directly addresses Centos 6 and it appears that at least one of those two

Following the steps under "Contribute to the Wiki" at http://wiki.centos.org/Contribute#head-42b3d8e26400a106851a61aebe5c2cca54dd79e5 My Wiki name is BennettHaselton. I wanted to edit this paragraph: "Note: When switching from Disabled to either Permissive or Enforcing mode, it is highly recommended that the system be rebooted and the filesystem relabeled." to add:

I had to move a perl script from an old server to a new one. Both the old and new servers are running "CentOS release 5.10 (Final)" and perl v5.8.8. (But the problem I'm running into appears to be a package management problem and not a Perl problem which is why I'm posting it to a CentOS list.) The line of code in the script that attempts to open a Net::SFTP connection,

I am experiencing a problem with yum on one of my CentOS-5.5 systems. Specifically, on Friday past (July 16), I ran yum update as root. Yum displayed all of the outdated packages and asked if I wanted to proceed. An answered yes. This first package downloaded was nss. At this point yum simply stopped processing or responding. A ctrl-c at the yum session terminal window did not interrupt the