Is this Kernel Safe?

[xxkylexx]

Hey guys,

I've read numerous stories about people's boxes getting compromised due to kernel exploits/holes. I've been running version 2.4.21-40.ELsmp and am wondering if it were a good idea to upgrade and worry about keeping up to date with the new versions constantly or to stay with my current version? Is this version safe? Are there any known exploits with it? How often are newer versions coming out?

Thanks,
Kyle

 

[chirpy]

I would assume you're running RHE3 or CentOSv3 to have that kernel. You should be running this version by now - 2.4.21-47.EL

For more information about kernels, look at the vendors support site for their errata and security announcement to keep up with what is in new kernel releases.

 

[xxkylexx]

Yes, I am running CentOS 3. I can't seem to find anyhting on their website that talks about new kernel updates for that version. Thanks!

Kyle

 

[chirpy]

You should subscribe to the announcement list:
http://www.centos.org/modules/tinycontent/index.php?id=16

You can check the archives and forums for specific package release information. You should probably also subscribe to the RHEv3 mailing list too.

 

[xxkylexx]

I contacted my server management guys with the same question as I originally posted here and they tell me that they would update it to 2.6.17. Any idea why are they telling me that version instead of the one you mentioned?


Kyle

 

[WebHostDog]

As Chirpy mentioned 2.4.21-47.ELsmp is the letest Kernel version for your CentOS 3.x. The server guy told you for 2.6.x but this is a Kernel in CentOS 4.x branch ...


Thanks.

 

[joshstein]

As Chirpy mentioned 2.4.21-47.ELsmp is the letest Kernel version for your CentOS 3.x. The server guy told you for 2.6.x but this is a Kernel in CentOS 4.x branch ...


Thanks.

2.6.x can be run on CentOS 3.x and he is most likely talking about a custom compiled kernel