Centos-announce list no messages since September?

General support questions
Post Reply
shovas
Posts: 19
Joined: 2009/08/17 23:36:54
Contact:

Centos-announce list no messages since September?

Post by shovas » 2020/11/03 22:03:16

Up until September 2020, I was getting regular centos-announce list emails for various updates but most importantly I used it for security related announcements so I knew when and what packages to update.

I searched the forums and asked on Twitter and didn't get a clear picture of what happened and what we do now to track real-time security announcements?

I was told centos-cr-announce has the emails but was also told they're not relevant for the current release? I may have misunderstood.

So, I'm left with an impression that we no longer have real-time security announcements? That seems dangerous?

Thanks

lightman47
Posts: 1222
Joined: 2014/05/21 20:16:00
Location: Central New York, USA

Re: Centos-announce list no messages since September?

Post by lightman47 » 2020/11/03 22:11:44

My machines run yum update automatically weekly. It's worked great for several years. No messages needed.
Remember - importing/building packages will likely "byte you in the butt" come update time, long after you'd forgotten you did that! Use repos whenever possible.

User avatar
jlehtone
Posts: 3172
Joined: 2007/12/11 08:17:33
Location: Finland

Re: Centos-announce list no messages since September?

Post by jlehtone » 2020/11/03 22:14:12

Red Hat did release RHEL 7.9 in 2020-09-29. From that point the "upstream" does not provide any 7.8 updates for "consumers", like CentOS. Only the RHEL 7.8 EUS customers will get updates for their RHEL 7.8.

Starting 2020-09-29 CentOS has build packages for CentOS 7.9. Packages became available via 7.8's CR repo on 2020-10-20.
See https://wiki.centos.org/About/Building_7

shovas
Posts: 19
Joined: 2009/08/17 23:36:54
Contact:

Re: Centos-announce list no messages since September?

Post by shovas » 2020/11/03 22:16:40

Thanks for the replies.

What do you do in a production environment to keep track of security updates?

I have a system that involved tracking security updates and, depending on severity, updating them asap or deferring them.

How do we systematically and intelligently apply security updates now?

shovas
Posts: 19
Joined: 2009/08/17 23:36:54
Contact:

Re: Centos-announce list no messages since September?

Post by shovas » 2020/11/14 22:44:45

Bump

How do we systematically and intelligently apply security updates?

User avatar
KernelOops
Posts: 384
Joined: 2013/12/18 15:04:03
Location: xfs file system

Re: Centos-announce list no messages since September?

Post by KernelOops » 2020/11/15 11:36:21

You need to understand how centos works. Yes centos is derived from RHEL but thats about it really. You don't get any reports, notices, notifications, emails or anything else. In addition, there are no separate security updates. The only thing that is supported, is to apply the entire range of updates (or part of them), for the centos versions that haven't reached their EOL.

The idea is, that if you really need specifics about security, then RedHat wants you to go pay for RHEL. For everyone else, its expected that you know what you are doing :mrgreen:
--
I love my computer - all my friends live there.
--

shovas
Posts: 19
Joined: 2009/08/17 23:36:54
Contact:

Re: Centos-announce list no messages since September?

Post by shovas » 2020/11/17 15:02:59

Okay, I think I get it. I've been running CentOS servers since 4.x. I'd watch centos-annouce for "security" updates and apply those asap and the other security updates as appropriate. I'd also do a regular rollup to keep fully up-to-date.

It seems that a new process came in October and, this time around, now on centos-cr-announce. There were no update emails until Nov 6 when it seems a bunch came in at once.

I see some new updates from the 9th and 12th.

So, my question is, will updates come in as they are released or in single big batches?

If they stream in as released that's great I can keep doing my procedure.

If they're going to be batched once a month or something...I can't see how that would be appropriate for production servers so I'm betting/hoping that's not what's going to happen.

User avatar
TrevorH
Forum Moderator
Posts: 29902
Joined: 2009/09/24 10:40:56
Location: Brighton, UK

Re: Centos-announce list no messages since September?

Post by TrevorH » 2020/11/17 16:58:00

No, that's been standard practice for years. Update notifications between point releases go to centos-announce, notifications for point releases go to centos-cr-announce to annouce the individual package updates and then there is a single "Go get 7.X now" announcement mail that goes to centos-announce when it goes from CR to GA.
CentOS 6 will die in November 2020 - migrate sooner rather than later!
Info for USB installs on http://wiki.centos.org/HowTos/InstallFromUSBkey
CentOS 5 is dead, do not use it.
Full time Geek, part time moderator. Use the FAQ Luke

shovas
Posts: 19
Joined: 2009/08/17 23:36:54
Contact:

Re: Centos-announce list no messages since September?

Post by shovas » 2020/11/17 18:37:12

I'm looking at a centos-announce email folder and up until October I was getting updates throughout the month. I've done it for years like that. On up to a dozen or more production and dev servers.

User avatar
TrevorH
Forum Moderator
Posts: 29902
Joined: 2009/09/24 10:40:56
Location: Brighton, UK

Re: Centos-announce list no messages since September?

Post by TrevorH » 2020/11/17 18:48:49

Yes, throughout the months of a point release. Go back to when 7.8 was released in March this year and you will see the same thing. And in previous releases of point releases. They've all been the same since the CR repo was introduced sometime in the el5 timeline.
CentOS 6 will die in November 2020 - migrate sooner rather than later!
Info for USB installs on http://wiki.centos.org/HowTos/InstallFromUSBkey
CentOS 5 is dead, do not use it.
Full time Geek, part time moderator. Use the FAQ Luke

Post Reply

Return to “CentOS 7 - General Support”