Filepro-list Digest, Vol 92, Issue 14
Boaz Bezborodko
boaz at mirrotek.com
Thu Sep 15 12:06:03 PDT 2011
> Date: Tue, 13 Sep 2011 14:38:10 -0700 From: Bill Campbell
> <bill at celestial.com> Subject: Re: Looking for someone to set up a new
> server To: filepro-list at lists.celestial.com Message-ID:
> <20110913213810.GB26715 at ayn.mi.celestial.com> Content-Type:
> text/plain; charset=us-ascii On Tue, Sep 13, 2011, Fairlight wrote:
>> On Tue, Sep 13, 2011 at 02:48:52PM -0400, Boaz Bezborodko, the prominent pundit,
>> witicized:
>>> I can wait a bit if necessary, but I remember going with Centos 4 just
>>> as 5 was coming out. I don't like loading a new OS into an operating
>>> system and especially not in software that hasn't be certified for it.
>>> I could be convinced to go with 5, but since our demands don't grow all
>>> that quickly servers tend to last 4 or 5 years. I was just trying to
>>> avoid outdating the OS too early.
>> CentOS 5 has official updates until March 31, 2014. I'd take that over
>> going to CentOS 6 straightaway. It's part of the cost of doing business on
>> linux servers and expecting stability--you sacrifice the first year or so
>> of any given life-cycle. That's just the way it's always been with even
>> the best distros.
>>
>> I really do concur with Bill on staying with 5.x for now.
>>
>> Even after that point, given that SRPMs are readily available, you can
>> still hold it together with duct tape and baling wire. Grab the SRPM,
>> install it, rip out the old source and patches, drop in the new vendor
>> source, and build the RPM. Often, things need to be tweaked a bit if they
>> won't build, but sometimes you get lucky and nothing extra is necessary to
>> make it work. You thus get new versions with CentOS stock configs. I've
>> held both Red Hat and SuSE systems together for up to 2yrs past EOL using
>> this methodology. Not as easy as grabbing vendor updates, slightly more
>> expensive depending on the package (PHP is a lot bitchier than OpenSSL,
>> for instance...I know kernel developers that would rather reinstall a new
>> OS than upgrade PHP this way, since PHP breaks things on a z-level point
>> release [where z is in x.y.z version numbers), but I've done it with 100%
>> success rates), but definitely doable. Even without SRPMs, it's possible
>> to hold a system together well past EOL (even without the stuff Bill uses),
>> but it's a nice shortcut that meshes with the vendor stock specs. You
>> never know the difference, the way I go about it.
> We don't worry about vendor updates for most server software,
> openssh, openssl, apache, postfix, postgresql, etc. as we use
> these from the OpenPKG portable package management system. This
> is a system that's completely independent of the underlying
> vendor's packaging system, and works with Linux, FreeBSD, HP-UX,
> etc., and I even have the critical parts running on OSR 5.0.6a.
> Using these doesn't break the vendor's on-line updates or touch
> vendor stuff beyond adding a few cron entries, the start/stop
> scripts, and pointing the vendor's sendmail to the proper place.
>
> Typically critical updates for the OpenPKG SRPMS are done within
> 24 hours of the source's updates for things like clamav, either
> done by the OpenPKG team or I do them myself for packages where
> I've done some customization.
>
> Bill
> -- INTERNET: bill at celestial.com Bill Campbell; Celestial Software LLC
> URL: http://www.celestial.com/ PO Box 820; 6641 E. Mercer Way Voice:
> (206) 236-1676 Mercer Island, WA 98040-0820 Fax: (206) 232-9186 Skype:
> jwccsllc (206) 855-5792 People who relieve others of their money with
> guns are called robbers. It does not alter the immorality of the act
> when the income transfer is carried out by government.
Thanks for pointing me to OpenPKG. That alleviates the problem of
having to manually track the packages I am using or relegating myself to
whatever versions RH or Centos maintains.
Boaz
More information about the Filepro-list
mailing list