RedHat 7.1 Security

L

LinuxFreaky

Well-Known Member
Sep 22, 2001
87
0
306
I have a redhat 7.1 machine. I\'ve gone in to the WHM and updated my server software from the link.

Is there any other software I need to manually update to make sure my system is secure? Like the kernel perhaps?

Also, should I use the up2date that rh comes with or will that conflict with cpanel?
 
F

feanor

Well-Known Member
Aug 13, 2001
835
0
316
up2date & the kernel stands completely alone from CPanel....... utilizing up2date and updating your kernel are options that you have that will definitely secure your box, but have no bearing on CPanel... provided Redhat doesn\'t acquire the people that produce all of these third party daemons/tools/etc.

(Ok interchange is an exception but I don\'t think up2date reaches things like that yet, or ever will)....

Doubtful. ;)
 
P

Pete

Well-Known Member
Dec 19, 2001
74
0
306
Are you saying that is OKAY or is NOT okay to use the Redhat up2date function? I have asked this question elsewhere and got no answer so far. Which are we supposed to use or does one have no affect on the other meaning we need to use both, or do both do the same thing except it means nothing to Cpanel?
 
shaun

shaun

Well-Known Member
PartnerNOC
Verifed Vendor
Nov 9, 2001
702
1
318
San Clemente, Ca
cPanel Access Level
DataCenter Provider
Twitter
i dont know if any of you have looked thru the rpmup script but basically it\'s doing the same thing as up2date. It downloads all packages that updates.redhat.com releases for your distro except that it doesnt use updates.redhat.com. It uses updates.cpanel.net which looks to me like the mirrored updates.redhat.com

I kinda modified the rpmup script a bit for testing purposes to use my own mirror or updates.redhat.com for updating systems that arnt using cpanel. I dont know if this is illegal (is it nick?) but it works great. I maily use it to update dedicated servers out their that are running just a base install and configured the system on their own. i just told it to ignore most packages like apache, mysql, kernel, postsql, etc.

Up2date is alittle more complexe i beleive because it checks for dep\'s and will also download other packages that are needed say if you do a up2date install blah but then again who wants to register every machine with RHN not to mention that you can use their web interface to log in and add/remove packages from your machine from their website!!!!! You dont even have to have the root pass. I was extremely PIST when i found this out and i let them know it. It\'s bull**** in my opinion (sorry for the language).

2 things to help secure your server... update the kernel and maybe setup a firewall closing all ports that your dont need.
 
You must log in or register to reply here.
Thread starter Similar threads Forum Replies Date
Spiral Redhat and CentOS - Kernel Update Security 0
E cPanel Redhat server hacked into, time for FreeBSD? Security 9
N Redhat: 2nd Root password changes every day Security 7
Stefaans Can anybody use SSL on RedHat 8.0? Security 9
S Redhat Firewall.... Security 6
Similar threads
Redhat and CentOS - Kernel Update
cPanel Redhat server hacked into, time for FreeBSD?
Redhat: 2nd Root password changes every day
Can anybody use SSL on RedHat 8.0?
Redhat Firewall....
Top Bottom