Jason Dunsmore wrote: > On 9/16/06, Michelle Konzack <linux4michelle@freenet.de> wrote: >> Am 2006-09-15 09:47:12, schrieb Jason Dunsmore: >> >> > Can you give some references? Thanks. >> >> What references do you want? >> > > I was wondering if there were references that support what you said > about security and Linux uptime (see below). Or was this just your > personal experience? What I think she is saying is that even in Sarge there have been several security vulnerabilities fixed in the kernel packages / source over (for example) the last 6 months. This applies to both 2.4 and 2.6. Therefore, as you pretty much have to reboot the machine after a kernel upgrade (unless you play with that hot-swap kernel stuff that I know nothing about), if you have a large uptime then you may well be running a kernel with security vulnerabilities. I guess whether or they are serious or apply on your set of hardware will vary. Personally, I prefer not to think about that too much and just upgrade if there is a security fix. -- George Borisov DXSolutions Ltd
Attachment:
signature.asc
Description: OpenPGP digital signature