Re: (Security) upgrades with shared /usr?

To: debian-isp@lists.debian.org
Subject: Re: (Security) upgrades with shared /usr?
From: Marcin Owsiany <porridge@debian.org>
Date: Mon, 20 Feb 2006 21:43:58 +0100
Message-id: <[🔎] 20060220204358.GB4793@kufelek>
Mail-followup-to: debian-isp@lists.debian.org
In-reply-to: <[🔎] 200602201945.k1KJj4g25979@mail.cinternet.net>
References: <[🔎] 200602201945.k1KJj4g25979@mail.cinternet.net>

On Mon, Feb 20, 2006 at 02:09:19PM -0500, Chris Wagner wrote:
> At 04:02 PM 2/20/2006 +0100, Marcin Owsiany wrote:
> >Any security update which requires upgrading some packages would force
> >me to shutdown all but one of the machines, remount /usr RW there,
> >perform the upgrade, remount it back to RO, and then bring the rest of
> >machines back up. (Propagating the changes to files outside /usr is
> >another story).
> 
> Would it be possible to have one vm as ur management station that had the
> filesystem mounted rw?

As I wrote in reply to Mark's post, it's not possible with an ordinary
(i.e. non-cluster) FS.

> But as someone else pointed out won't all the vm's require reboots or lots
> of SIGHUP's to make the file changes active anyway?  So ur kinda back in the
> same boat.

That was also me, and to tell the truth reloading a running program when
it's convenient to do so (i.e. each instance separately) is completly
different than shutting everything down at the same moment. So it's not
the same boat at all :)

Marcin
-- 
Marcin Owsiany <porridge@debian.org>             http://marcin.owsiany.pl/
GnuPG: 1024D/60F41216  FE67 DA2D 0ACA FC5E 3F75  D6F6 3A0D 8AA0 60F4 1216

Reply to:

References:
- Re: (Security) upgrades with shared /usr?
  - From: wagnerc@plebeian.com (Chris Wagner)

Prev by Date: Re: (Security) upgrades with shared /usr?
Next by Date: Re: (Security) upgrades with shared /usr?
Previous by thread: Re: (Security) upgrades with shared /usr?
Next by thread: Install disaster: Intel ICH7 with Debian and Xen
Index(es):
- Date
- Thread