CentOS

Whoever wrote: ↑

2023/06/24 19:34:33

What about Oracle Linux?

Rocky, Alma and the others don't have resources to challenge IBM in court, but Oracle does.

Can the package sources be downloaded from Oracle?

At the moment it is still possible.
If this will change, only god knows...

Given that Red Hat is now restricting access to the package sources, is this the end for CentOS, Rocky, etc.? I would have thought that it would just take one subscription to access the sources and then they could be made public, but perhaps there is some subtlety I don't understand? Yes, one with ...

jlehtone wrote: ↑

2022/12/22 16:38:32

(TuxCare?)

TuxCare is a good pick.
I've compared the packages that RH patched in their EUS 6 offering with TuxCare for EL6 and TuxCare patched alot more CVE's/packages than RHEL did.
For general usage I would definitely go with TuxCare and only in specific cases with RHEL EUS.

I absolutely cannot recommend to upgrade the CentOS 6 OpenSSL package. It is one of the base packages that shouldn't be upgraded because of the risk that one may draw their system to not work anymore as intended. The base OpenSSL is required for many services like httpd, postfix, dovecot and so on.....

Firstly: It's a very bad idea to overwrite the default OpenSSL version of a binary linux distribution. There is a crapload of very important base system packages where OpenSSL is/was used at built time. You better revert this step or you'll have to rebuild many many base packages yourself... Secondl...

CentOS 7.3-1810, is that a typo? If you should really run CentOS 7.3 or 7.6, then I can only recommend to update your CentOS to the newest release, since the Kernel wouldn't be the only thing to worry about. And regarding your question: RHEL takes care of any severe vulnerabilities and fixes their p...

Judging this answer (Q3): https://centos.org/distro-faq/#q3-will-the-source-code-for-red-hat-enterprise-linux-continue-to-appear-on-gitcentosorg The sources of RHEL will be still released. Since no RHEL version was specified I hope that this statement counts for all released and still maintained RHE...