paul-w
Verified User
Apologies in advance for my ignorance but I'm concerned that my server isn't being updated with security patches. The main reason for my concern is that I'm not doing it. 
I have two questions:
1. I'm assuming nothing updates because of the comprehensive excludes list. Any opinions on this?
2. How do I go about getting the security updates for the excluded packages? Are they available from the directadmin.com site?
I'm running CentOS 4 and DA 1.28.0 (just updated DA via the web interface).
Here's what my /etc/yum.conf looks like:
[main]
cachedir=/var/cache/yum
debuglevel=2
logfile=/var/log/yum.log
pkgpolicy=newest
distroverpkg=centos-release
tolerant=1
exactarch=1
retries=20
obsoletes=1
gpgcheck=1
# PUT YOUR REPOS HERE OR IN separate files named file.repo
# in /etc/yum.repos.d
exclude=httpd* mysql* php* perl* apache* mod_* MySQL* *ftp* exim* sendmail* kernel* da_* caching_nameserver*
My /etc/cron.weekly/yum.cron contains:
#!/bin/sh
if [ -f /var/lock/subsys/yum ]; then
/usr/bin/yum -e 0 -d 0 clean packages
fi
In /etc/yum.repos.d I have CentOS-Base.repo, CentOS-Media.repo and yum-warwick.repo which look OK. Here's an extract from CentOS-Base.repo:
[base]
name=CentOS-$releasever - Base
mirrorlist=http://mirrorlist.centos.org/?release=$releasever&arch=$basearch&reppo=os
gpgcheck=1
gpgkey=http://mirror.centos.org/centos/RPM-GPG-KEY-centos4
When I run yum update I get:
Repository extras is listed more than once in the configuration
Repository update is listed more than once in the configuration
Repository base is listed more than once in the configuration
Repository addons is listed more than once in the configuration
Setting up Update Process
Setting up repositories
update 100% |=========================| 951 B 00:00
base 100% |=========================| 1.1 kB 00:00
addons 100% |=========================| 951 B 00:00
extras 100% |=========================| 1.1 kB 00:00
Reading repository metadata in from local files
Excluding Packages in global exclude list
Finished
No Packages marked for Update/Obsoletion
I have two questions:
1. I'm assuming nothing updates because of the comprehensive excludes list. Any opinions on this?
2. How do I go about getting the security updates for the excluded packages? Are they available from the directadmin.com site?
I'm running CentOS 4 and DA 1.28.0 (just updated DA via the web interface).
Here's what my /etc/yum.conf looks like:
[main]
cachedir=/var/cache/yum
debuglevel=2
logfile=/var/log/yum.log
pkgpolicy=newest
distroverpkg=centos-release
tolerant=1
exactarch=1
retries=20
obsoletes=1
gpgcheck=1
# PUT YOUR REPOS HERE OR IN separate files named file.repo
# in /etc/yum.repos.d
exclude=httpd* mysql* php* perl* apache* mod_* MySQL* *ftp* exim* sendmail* kernel* da_* caching_nameserver*
My /etc/cron.weekly/yum.cron contains:
#!/bin/sh
if [ -f /var/lock/subsys/yum ]; then
/usr/bin/yum -e 0 -d 0 clean packages
fi
In /etc/yum.repos.d I have CentOS-Base.repo, CentOS-Media.repo and yum-warwick.repo which look OK. Here's an extract from CentOS-Base.repo:
[base]
name=CentOS-$releasever - Base
mirrorlist=http://mirrorlist.centos.org/?release=$releasever&arch=$basearch&reppo=os
gpgcheck=1
gpgkey=http://mirror.centos.org/centos/RPM-GPG-KEY-centos4
When I run yum update I get:
Repository extras is listed more than once in the configuration
Repository update is listed more than once in the configuration
Repository base is listed more than once in the configuration
Repository addons is listed more than once in the configuration
Setting up Update Process
Setting up repositories
update 100% |=========================| 951 B 00:00
base 100% |=========================| 1.1 kB 00:00
addons 100% |=========================| 951 B 00:00
extras 100% |=========================| 1.1 kB 00:00
Reading repository metadata in from local files
Excluding Packages in global exclude list
Finished
No Packages marked for Update/Obsoletion
Last edited: