New on LowEndTalk? Please Register and read our Community Rules.
Howdy, Stranger!
It looks like you're new here. If you want to get involved, click one of these buttons!
Quick Links
Categories
In this Discussion
-
2008-2020
LowEndBox & LowEndTalk.
Privacy Policy.
Powered by Vanilla.
Comments
CentOS 6 is eol. So it's not safe.
As said above - it's EOL. If you must use it, probably something like https://elsportal.com/extended-lifecycle-support-for-centos-6/ is worth considering.
AlphaVPS - Cheap VPS out of London, UK | Sofia, BG | Nuremberg, DE | NYC, US and LA, US. Cheap Dedicated servers with fast delivery!
How do you keep those four things -- especially PHP -- updated on CentOS 6?
"Linux will run happily with only 4 MB of RAM, including all of the bells and whistles such as the X Window System, Emacs, and so on." (M. Welsh & L. Kaufman, Running Linux, 2e, 1996, p. 32)
You should be running CentOS 8 (planning to convert to AlmaLinux or similar), RHEL 8 (can be ran on up-to 16 machines in production for free) https://www.redhat.com/en/blog/new-year-new-red-hat-enterprise-linux-programs-easier-ways-access-rhel#Bookmark 1 or Debian/Ubuntu. It's a horrible idea to deploy new CentOS 6/7 machines...
Spearware Networks | AS212647 | Premium Shared, Reseller, and VPS Hosting in Tampa, FL | https://spearwarenetworks.com
By using remi repos for PHP 7.x on CentOS 6.
CentOS 7 is supported until 2024 so I believe it is not that bad.
No.
Web and VPS hosting - Top notch performance
Centos 6 supports up 7.3 php and mariadb 10.3 for updated versions you must upgrade to Centos 7 or 8
Remi doesn't provide updates for CentOS 6 (RHEL 6) anymore:
(See https://rpms.remirepo.net/enterprise/6/ )
"Linux will run happily with only 4 MB of RAM, including all of the bells and whistles such as the X Window System, Emacs, and so on." (M. Welsh & L. Kaufman, Running Linux, 2e, 1996, p. 32)
"yum update"
-> No updates available
All good! Nothing to worry about.
There's absolutely zero reason to require CentOS 6 for this. Backup and upgrade.
Yesn't
I repeat, RAID is not backup | Looking for a developer for your next project? - Hire me
Yes. there's no better security than obscurity. look at windows 2000 and XP.
Yes. Safe.
-hacker
I think if you keep the nginx and PHP and critical system software up-to-date with security patches, even if no longer available from the
yum updatecommand, and if you keep the login security tight, I'd think it would be pretty safe for a while.The bigger risk would be less insight and patches when security risks are discovered. How would you know if security patches are available? Take the recent
sudosecurity exploit. CentOS 7 had a patch viayum updateavailable in a day after the news. I'm sure a CentOS 6 patch is available, but may be harder to find.Fortunately nginx, php, mysql, and wordpress are widely used and keeping those up-to-date likely be fine.
tl;dr, if upgrading is difficult and your site is not a target, should be fine to wait but keep an eye on security news. If you're running an online business, I'd definitely upgrade ASAP since you're a bigger target.
centos > backup > debian > restore
Something tells me that the OP isn't in a position to do this himself.
"Linux will run happily with only 4 MB of RAM, including all of the bells and whistles such as the X Window System, Emacs, and so on." (M. Welsh & L. Kaufman, Running Linux, 2e, 1996, p. 32)
so for that reason majority of banks using windows xp?
Are you looking for best price for self-managed VPS? See WebProVPS website for more details.
Some ATMs and POS kiosks did and probably still do.
switching a production server to a new machine/instance just so you can get the latest OS which won't work/be supported in X years seems pretty dumb to me.
Maybe choose debian so you don't have these problems? I am running CentOS 6 on production machine and the thought of moving the whole thing is just LOL.
Well, there's "production" like manufacturing, and there's "production" like "in active use".
If you mean the former and it's systems for testing widgets that are on private isolated networks, they can be old and unpatched as much as you want (and usually are). But if it's on a network that has active users and especially untrusted users, that shit needs active support.