M9. pecked at the keyboard and wrote: > > > Joe Sloan schreef: > | Ken Schneider wrote: > |> M9. pecked at the keyboard and wrote: > |>> Joe Sloan schreef: > |>> > |>> | [EMAIL PROTECTED]:~> uptime | 5:32pm up 1016 days 1:24, 1 user, > |>> load average: 2.47, 2.56, 2.36 > |>> > |>> More than 3 years, is quite impressive... > |>> > |>> > |> It might be impressive, but it also shows that no kernel security > |> updates have been performed in a looooog time which _could_ make the > |> machine vulnerable to attacks. > | > | > | Right, thekernel was updated in 2005 - there might be some sort of > | theoretical local vulnerability, but not every kernel security update is > | even relevant to our application. > | > | In the corporate world, you find that IT managers don't rush out and > | update software all that often. When something works, the attitude is, > | do not touch the production system. > | > | Joe > |
We're also not talking about rushing out to update software for softwares sake. It's about applying critical security updates. Of course if the system is only an internal server it _might_ not be as critical. If the IT managers were aware that a critical security update was available and _not_ applied they would/should start asking why. -- Ken Schneider SuSe since Version 5.2, June 1998 -- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
