How KernelCare Protects Your Server

One of the most important things you can do to ensure the security and stability of your Linux server is to keep the kernel updated. Some Kernel updates patch security vulnerabilities and other issues. Kernel patches are released as issues are discovered.

Unless you are regularly checking for kernel updates, or your notified of a security issue, you may not be aware when a kernel update is available. Additionally, since updating the kernel traditionally requires a reboot, the prospect of associated downtime often prevents the updates from being applied as quickly as they should be.

KernelCare changes all that. Continue reading “How KernelCare Protects Your Server”

What Is KernelCare?

Tux the Penguin with Hotpatching (KernelCare)The concept of ‘Kernel hotpatching’, sometimes called live patching, was introduced to the Linux community around 2008. Soon after groups began developing differing implementations of the concept. KernelCare, one of the more popular implementations, was originally released in March 2014 by Cloud Linux, Inc. Continue reading “What Is KernelCare?”

Information on CVE-2015-0235 (GHOST) Vulnerability for Red Hat and CentOS

A vulnerability found in the glibc library, specifically a flaw affecting the gethostbyname() and gethostbyname2() function calls, that allows a remote attacker to potentially execute arbitrary code. CentOS 5, CentOS 6, and CentOS 7 are potentially affected, thus we want to highlight the following information.

Liquid Web package repositories have been updated. Many servers (barring those with updates disabled) have received an update that patches this vulnerability, however, a reboot will still be required in those cases.

Continue reading “Information on CVE-2015-0235 (GHOST) Vulnerability for Red Hat and CentOS”

Information on CVE-2014-9322 Vulnerability for Red Hat and CentOS

A vulnerability found in the Linux kernel, specifically a flaw in fault handling associated with the Stack Segment (SS), allows an unprivileged user to potentially gain privileges. CentOS 4, CentOS 5, CentOS 6, and CentOS 7 are potentially affected, thus we want to highlight the following information.
Continue reading “Information on CVE-2014-9322 Vulnerability for Red Hat and CentOS”

Upgrade Your Core Managed Ubuntu 12.04 HWE Kernel in Liquid Web US Central Zone B

It is highly recommended that you take an image of your existing server prior to following these instructions. Doing so will ensure that if something unexpected occurs, you will be able to restore your server from the backup image.

For instructions on creating a backup image from the Manage interface please visit:
http://www.liquidweb.com/kb/creating-storm-server-images/
http://www.liquidweb.com/kb/restoring-a-storm-server-from-an-image/

Pre-Flight Check
  • As of August 08, 2014, certain versions of Ubuntu 12.04 will no longer receive software updates for the kernel. Affected versions include: 12.04.2 HWE, 12.04.3 HWE, and 12.04.4 HWE.
  • These instructions are intended specifically and only for updating the kernel in Ubuntu 12.04 in Liquid Web US Central Zone B.
  • I’ll be working from a Liquid Web Core Managed Ubuntu 12.04 server, and I’ll be logged in as root.

Continue reading “Upgrade Your Core Managed Ubuntu 12.04 HWE Kernel in Liquid Web US Central Zone B”

Upgrade Your Self Managed Ubuntu 12.04 HWE Kernel in Liquid Web US Central Zone B

It is highly recommended that you take an image of your existing server prior to following these instructions. Doing so will ensure that if something unexpected occurs, you will be able to restore your server from the backup image.

For instructions on creating a backup image from the Manage interface please visit:
http://www.liquidweb.com/kb/creating-storm-server-images/
http://www.liquidweb.com/kb/restoring-a-storm-server-from-an-image/

Pre-Flight Check
  • As of August 08, 2014, certain versions of Ubuntu 12.04 will no longer receive software updates for the kernel. Affected versions include: 12.04.2 HWE, 12.04.3 HWE, and 12.04.4 HWE.
  • These instructions are intended specifically and only for updating the kernel in Ubuntu 12.04 in Liquid Web US Central Zone B.
  • I’ll be working from a Liquid Web Self-Managed Ubuntu 12.04 server, and I’ll be logged in as root.

Continue reading “Upgrade Your Self Managed Ubuntu 12.04 HWE Kernel in Liquid Web US Central Zone B”

Upgrade from Ubuntu 10.04 to Ubuntu 12.04 in Liquid Web US Central Zone A

It is highly recommended that you take an image of your existing server prior to following these instructions. Doing so will ensure that if something unexpected occurs, you will be able to restore your server from the backup image.

It is also your imperative, as a Self-Managed customer, to make sure your installed applications that currently work on Ubuntu 10.04 also work on Ubuntu 12.04.

For instructions on creating a backup image from the Manage interface please visit:
http://www.liquidweb.com/kb/creating-storm-server-images/
http://www.liquidweb.com/kb/restoring-a-storm-server-from-an-image/

Pre-Flight Check
  • These instructions are intended specifically and only for upgrading from Ubuntu 10.04 to Ubuntu 12.04 in Liquid Web US Central Zone A.
  • I’ll be working from a Liquid Web Self-Managed Ubuntu 10.04 server, and I’ll be logged in as root.

Continue reading “Upgrade from Ubuntu 10.04 to Ubuntu 12.04 in Liquid Web US Central Zone A”

Information on CVE-2014-0196 Vulnerability for CentOS and Ubuntu

A vulnerability found in the Linux kernel, specifically a flaw with the pseudo tty (pty) device, allows an unprivileged user to cause a denial of service (system crash) or potentially gain administrator privileges. A small number of CentOS and Ubuntu versions are vulnerable, thus we want to highlight the following information:

Continue reading “Information on CVE-2014-0196 Vulnerability for CentOS and Ubuntu”

How To Check the Kernel Version in Linux / Ubuntu / CentOS

The following command works with all Linux distributions, such as Red Hat, CentOS, Debian, and Ubuntu. It also works on other UNIX-like operating systems such as HPUX, FreeBSD, OpenBSD, Solaris, etc. Use the following command to check which kernel version your server is currently running:

Continue reading “How To Check the Kernel Version in Linux / Ubuntu / CentOS”