Team,

I am taking care of 7 Linux servers in my organization. Since 2014, we have not install any patch, security updates in our serves. Two days back only i have attached subscription to all the servers and registered them on the red-hat portal.

I details on portal like below:
https://access.redhat.com/management/systems





All of them are our database and production servers,Any one can guide me how should i go ahead in installing patches.

Is there any way that i can installs only security patches in the server..

Please show me the way which is secure .

Waiting for your reply eagerly.

Regards,
Vimal

First thing you must do is a yum upgrade. Run this to make sure that everything that is installed is as up-to-date as it can be.

You don't say what version of RHEL you are running, so it's difficult to tell you how to upgrade or what to upgrade to. Look at the version you are running:

and then check with Red Hat on the life cycle of what you are running. If it's still a supported version, then upgrading (with `yum ugrade`) installs all the security patches and, in theory, you should be fine.

If it's out of support, then you'll want to upgrade to the next version that is still supported.

Hi friend,

Thanx for the prompt reply,I dont know how to share screen shot herewith , else i must have shared redhat portal subscription page.

My all servers are Red hat Enterprise linux server release 6.5 and 7.0.

Since 2014 , we have not upgraded patches, So request you to show me the way to install security patches which not hamper existing runing application as server is production server.
'
Right now i can see Security advisory total count is 292
Bug fixes count is 782
Enhancement count is 86... Displayed on subscription page infront of the server.

please help

Are you able to log in to the servers? Do you know how to do that?

To update your systems, you must run the 'yum update' command from a terminal, or else log in to your RHEL desktop and click the update applet in the system tray.

If you're not familiar with any of that, take a look at the basic System Administration Guide in your RHEL documentation.

Hi,

I understand, but as per my understanding yum update update everything on the server.

It might possible that it will update my database like sql and oracle version, And my application gets stop working.

Thats why i am asking you that is there any ways to install only security updtaes rather than all the update??

Redhat, quote from 'redhat.com/solutions/10021'
https://access.redhat.com/solutions/10021
→ Resolution : Install the yum-security plugin
.... etc. etc.


All "redhat.com/solutions" are probably on-line.
Example search "red hat update only security patches"
https://www.google.com/webhp?hl=all&...ecurity+patche


-

Are the production servers replicated in the testing environment? If possible it is good to test out updates to see how they will affect production

Since you have paid for the subscription, you have also paid for support...why have you not just called Red Hat and asked them??

Barring that, you need to update your systems, period, if they are your database and production servers. You don't say anything about what's running on them (software? DB engine? anything?), but reading the release notes will give you a good indication of what has changed between patch sets, and what they affect. Back up your data, and patch the systems during off hours and schedule a maintenance window. Putting off patching because it *MIGHT*, maybe, sorta-kinda cause some sort of maybe-problem is poor logic. You need the updates/patches/fixes..apply them.

Because either you do it now, or later...either way, any issues you find will have to be dealt with. What are you going to do if the server crashes? As soon as you install a new OS and do a restore, guess what? The patches got applied during the rebuild...now you've restored a broken server, leading to MORE downtime.

1 members found this post helpful.

Thanx a lot for valuable feedback.

I will raise a support ticket to red hat.