Re: Patch Maintainence
From: David Douthitt (ssrat_at_mailbag.com)
Date: 10/30/03
- Next message: Bruce D Porter: "Re: Patch Maintainence"
- Previous message: Slawomir Stanczak: "newfs (sol9) - 'c' option - large partitions"
- In reply to: Rodrick Brown: "Patch Maintainence"
- Next in thread: David Magda: "Re: Patch Maintainence"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
Date: Thu, 30 Oct 2003 10:33:38 -0600
On Thu, 30 Oct 2003 03:11:21 GMT, "Rodrick Brown"
<rbrown-no-spam@doitt.nyc.gov> wrote:
>Ok we have finally hit 150 servers here at work and its becoming a major
>pain to rollout patches how are most people handling this ?
>I was looking at cfengine it looks tedious but might be worth the effort if
>enough time is spent deploying it anyone have experience with it ?
cfengine is wonderful and works very well. The syntax is bizarre and
some of the syntax is counter-intuitive (to most computer guys anyway)
but it works well if you take those into account.
We use it here to manage a half-a-dozen HP-UX servers (10.20 and 11.0)
and a couple dozen Linux boxes or so.
I've had it on Solaris before and it works well there, too. It does
require encryption routines, but I thought there was some special
requirements for Solaris 8 (regarding a /dev/random patch). Or was
that just ssh?
With the Linux boxes, using Red Hat KickStart (like the Solaris
JumpStart) and cfengine can reduce the time required for a box setup
and configuration down considerably. You could make it turnkey just
about if you do it right.
- Next message: Bruce D Porter: "Re: Patch Maintainence"
- Previous message: Slawomir Stanczak: "newfs (sol9) - 'c' option - large partitions"
- In reply to: Rodrick Brown: "Patch Maintainence"
- Next in thread: David Magda: "Re: Patch Maintainence"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
Relevant Pages
|
