[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
[eclipse.org-committers] Project vservers - are you keeping them up-to-date?
- From: Denis Roy <denis.roy@xxxxxxxxxxx>
- Date: Thu, 25 Sep 2014 11:36:09 -0400
- Delivered-to: firstname.lastname@example.org
- User-agent: Mozilla/5.0 (X11; Linux x86_64; rv:31.0) Gecko/20100101 Thunderbird/31.1.0
If your project owns a virtual server (vserver), we're expecting you to
keep it up-to-date. This is important to ensure the security of our
network, services and other systems.
If your server is SuSE Entreprise, we've likely enabled it for automatic
updates, but OS upgrades must be performed manually. The current SuSE
Entreprise is SLES 11 SP3; anything else is vulnerable to numerous SSL
flaws, as well as yesterday's horrendous bash vulnerability.
If you're logged into your vserver, you can confirm you're at the latest
patch level like this:
root@server # cat /etc/SuSE-release
SUSE Linux Enterprise Server 11 (x86_64)
VERSION = 11
PATCHLEVEL = 3
root@server:~ # zypper patch
Refreshing service 'nu_novell_com'.
Loading repository data...
Reading installed packages...
Resolving package dependencies...
Nothing to do.
If you are not using SLES 11 SP3, and do not have all the latest
patches, your project vserver is a problem. Please update it, or back
it up and request a new image file.
Thank you for looking into this. We realize maintenance on these
vservers is boring, and you'd prefer to do anything else, but it's part
of having a system accessible to the nastiness of the Internet.
If you have any questions or concerns, please contact us at