How quickly should I action the update announcements on the CentOS mailing lists?

linux centos update mailing-list

It's silly to take a specific action on every update announcement that comes through.

As the administrator, you exercise your judgment and knowledge of the specifics of your environment to make a determination of what's important to update.

For example, if Apache and OpenSSH are updated and you have those services open to the public, then it makes sense to keep them up-to-date. But in many environments, those service are not available to the world, so the urgency to update is far lower.

How about the kernel? There's a kernel release every month or two. Updating it is intrusive and causes downtime. But sometimes it makes sense.

I've encountered many web environments where critical packages are never updated; as in years of no updates. That's clearly wrong, but so is updating daily or weekly.

I personally like to evaluate monthly or quarterly. Reported exploits take awhile before they come into common use by attackers.

Related

Group Policy Preference not applied automatically
Why can’t my custom domain on Heroku be resolved?
How can I download Adobe Connect videos to mp4 or speed up listening?
How can I remap Control+e to Escape+Control+e in iTerm2?
Using laptop keyboard as wireless bluetooth keyboard
Auto propagation of bash settings across many machines?
Image viewer without large window borders [closed]
I have to refresh browser all the time to view a webpage, and sometimes only text appears instead
Find all files older than one minute
Error in installing Windows SDK (Newer version already installed)
How to add a second local loop_back address?
Hidden files in Disk Usage Analyzer