Difference between revisions of "EGI CSIRT:Advisory; Upgrade gLite-3*, RHel4* and derivatives"
(Created page with "Our monitoring indicates that a lot of services are still running on Operating System and/or Middleware that have reached the end of their life cycles and therefore don't get sec...") |
|||
Line 21: | Line 21: | ||
https://operations-portal.egi.eu/broadcast/archive/id/650 | https://operations-portal.egi.eu/broadcast/archive/id/650 | ||
End of support for RHel4.* and alike (i.e. SL4*, SLC4*, CentOS4*) | End of support for RHel4.* and alike (i.e. SL4*, SLC4*, CentOS4*) |
Revision as of 13:23, 13 July 2012
Our monitoring indicates that a lot of services are still running on Operating System and/or Middleware that have reached the end of their life cycles and therefore don't get security updates any more.
Consequently, if a critical vulnerability affecting this software is published it likely requires to immediately stop the affected servers/services and reinstall them with current software releases.
If you are running an LCG-CE on a platform derived from RHEL4 (CentOS4, SL*4), you have already been informed that suspension will ensue by October 1st. Of course if, for any service or the operating system, a serious vulnerability is found before that date suspension may be done even earlier!
To avoid major service availability disruptions we strongly advise sites to migrate away from the Operating System / gLite Releases listed in the Broadcasts send in February (RedHat) and April (gLite) 2012.
End of support for gLite-3.1 / gLite-3.2
https://operations-portal.egi.eu/broadcast/archive/id/650
End of support for RHel4.* and alike (i.e. SL4*, SLC4*, CentOS4*)
https://rhn.redhat.com/errata/RHSA-2012-0073.html
EGI CSIRT