Hi to all, i've got a couple of questions and i would appreciate if anyone could reply to me. I have 2 servers that i installed centos 5.1 and ispconfig. Both servers are currently updated to centos 5.4 but ispconfig version of server A is : 2.2.23 and on server B : 2.2.29. So : 1) do i have to update ispconfig ? (security wise) . A nice new feature that i really like is awstats. 2) If i have to update do i have to install all updates one by one i.e. for server A 2.2.24 -> 2.2.25 e.t.c or install the latest package , currently 2.2.34 3) On my last yum update i received this warning : web4_webupdate homedir /var/www/web4 or its parent directory conflicts with a defined context in /etc/selinux/targeted/contexts/files/file_contexts, /usr/sbin/genhomedircon will not create a new context. This usually indicates an incorrectly defined system account. If it is a system account please make sure its login shell is /sbin/nologin. selinux is of course disabled. In my password file these accounts have been indicated as /bin/false . a) Do i have to manually update every record of my users to /sbin/nologin ? b) Is this actually caused by updating the server and not ispconfig (user create script) ? I have read a few threads that debian is preferred than centos since it does not break configuration files on update. I am not sure if this is the case anymore since during my updates i saw in the messages that the old configuration files were not modified but the new ones were added as xxxx.conf.rpmnew . Nevertheless i think that i should only install security updates from now on. What do you think ? Apologies for my long post. Thanks Leon
1) Every software should be updated regularily. 2) You can just install the latest update. 3a) No, /bin/false is fine. 3b) Yes.
Thank you for your reply Till. It is highly appreciated. Do you have a personal opinion/suggestion regarding installing only security updates on centos ? Regards, Leon
