![[personal profile]](https://www.dreamwidth.org/img/silk/identity/user.png){kind=small}
Entry tags:
[geek] Linux kernel upgrades without rebooting - automatically
Ksplice. Available in the Ubuntu Universe repository since Karmic (October 2009).
I've been fantasizing about this for years.
One of the things that has always been nice about Linux has been how much less often it needs to be rebooted for things like software installation and upgrades. But it has still needed to be rebooted for occasional security fixes for the operating system itself - the kernel.
Now it doesn't.
"An evaluation against Linux kernel security patches from May 2005 to May 2008 found that Ksplice was able to apply all of the 64 significant kernel vulnerabilities discovered in that interval."
http://en.wikipedia.org/wiki/Ksplice
http://www.ksplice.com
They have a free service providing the patches for Ubuntu and Fedora kernels. And the software to apply those patches (ksplice-uptrack) can be configured to run automatically. I would love to see distributions start providing those patches themselves.
I just installed it (quite easy, via .deb, which adds a source to /etc/apt/sources.list.d/), and enabled automatic updates via "autoinstall = yes" in /etc/uptrack/uptrack.conf. And now I have an additional little icon thingy on my gnome panel.
Sick.
http://brainstorm.ubuntu.com/idea/7523/
http://ubuntuforums.org/showthread.php?t=765352
Update: I also managed to install it on my Linode (virtual server) after switching from their custom kernel to the Ubuntu linux-virtual kernel package using pv-grub. And now I don't need to worry about Linode not doing security kernel upgrades often enough anymore.
Update 2010-12-21: It says it updated my kernel on both my home computer and (linode) virtual server.
I've been fantasizing about this for years.
One of the things that has always been nice about Linux has been how much less often it needs to be rebooted for things like software installation and upgrades. But it has still needed to be rebooted for occasional security fixes for the operating system itself - the kernel.
Now it doesn't.
"An evaluation against Linux kernel security patches from May 2005 to May 2008 found that Ksplice was able to apply all of the 64 significant kernel vulnerabilities discovered in that interval."
http://en.wikipedia.org/wiki/Ksplice
http://www.ksplice.com
They have a free service providing the patches for Ubuntu and Fedora kernels. And the software to apply those patches (ksplice-uptrack) can be configured to run automatically. I would love to see distributions start providing those patches themselves.
I just installed it (quite easy, via .deb, which adds a source to /etc/apt/sources.list.d/), and enabled automatic updates via "autoinstall = yes" in /etc/uptrack/uptrack.conf. And now I have an additional little icon thingy on my gnome panel.
Sick.
http://brainstorm.ubuntu.com/idea/7523/
http://ubuntuforums.org/showthread.php?t=765352
Update: I also managed to install it on my Linode (virtual server) after switching from their custom kernel to the Ubuntu linux-virtual kernel package using pv-grub. And now I don't need to worry about Linode not doing security kernel upgrades often enough anymore.
Update 2010-12-21: It says it updated my kernel on both my home computer and (linode) virtual server.