cPanel-Hardened Kernel Release Notification Email?

linux4me2

Well-Known Member
Aug 21, 2015
259
79
78
USA
cPanel Access Level
Root Administrator
I'd like to get an email notice when a new version of the cPanel-hardened kernel is released so that I know I need to run yum update. I've googled and searched the cPanel site but haven't found anything.

Is there a way to get an email notification when a new version of the cPanel-hardened kernel is available?
 

cPanelMichael

Administrator
Staff member
Apr 11, 2011
47,884
2,250
463
Hello,

That functionality is not offered at this time, but we do have an internal case open to address the need for faster patching of the cPanel-hardened kernel. I encourage you to open a feature request if you'd like to see email notifications when new cPanel-hardened kernels are available:

Submit A Feature Request

Thank you.
 
  • Like
Reactions: linux4me2

linux4me2

Well-Known Member
Aug 21, 2015
259
79
78
USA
cPanel Access Level
Root Administrator
I was thrown off by the statement, "cPanel & WHM does not automatically update the operating system kernel" in the document How to Harden Your cPanel's Kernel.

However, according to Benny's response in the feature request I submitted, this functionality already exists. If the cPanel-hardened kernel is installed, anytime an update is released, the server should be automatically updated, and Security Advisor will send a notification letting you know that your server requires a reboot into the new kernel.

That's exactly what I wanted. You can mark this one Solved. Thanks.
 

cPanelMichael

Administrator
Staff member
Apr 11, 2011
47,884
2,250
463
Hello,

To expand upon that a little more, there's a new feature in cPanel version 64 under the "System" tab in "WHM >> Tweak Settings":

Enable Linux kernel update during nightly maintenance.

If you turn this option on, and have automatic updates enabled for Operating System Packages in "WHM >> Update Preferences", then WHM will automatically update the kernel during nightly updates.

Thank you.
 
  • Like
Reactions: linux4me2

cPanelMichael

Administrator
Staff member
Apr 11, 2011
47,884
2,250
463
Does the "Enable Linux kernel update during nightly maintenance" interfere with KernelCare if you have it enabled?
Hello,

This option is simply ensuring the nightly maintenance script doesn't exclude the kernel when updating system packages, similar to the what happens when you manually run "yum update" on the system. It won't interfere with KernelCare. More information about how KernelCare works is available at:

KernelCare: How does it work?

Thank you.
 
  • Like
Reactions: linux4me2