Day: January 18, 2009

by

Fedora or RedHat Enterprise Linux in a production environment?

[UPDATE AT https://blog.gahooa.com/2009/02/08/update-on-fedora-vs-redhat-enterprise-linux/]

At AppCove, we run RedHat Enterprise Linux on all of our servers.  RHEL is great, because:

  1. It works
  2. It still works
  3. Automatic security updates
  4. Did I mention, it just works?

RedHat, as far as I know, takes a very serious perspective on patching all of their RPM’s and automatically pushing them out via the update agent (up2date).  They are very conservative on the versions of packages that they publish.  RHEL 4, for example, is still running PHP 4.x.  Python 2.3.  MySQL 4.x…  I believe that they do this to maintain stability and long term support.

However, for a company like AppCove, those versions are simply too old. For years we have hand-compiled about a dozen packages on RHEL 4 in order to be able to take advantage of relevant features in newer software.  PHP, Python, MySQL (from mysql.com supplied RPM), python-mysql, git, erlang, memcached, libmcrypt, and others are part of the growing list of software that we have to install manually.

With this growing list comes a growing issue of security updates and maintainability.  More complicated packages need more updated libraries, creating a chain-reaction of additional packages.  Etc…


Recently I signed up with a “slice” at SliceHost.  (SliceHost provides virtualized machines for a great price, with lots of scalability available).  I chose Fedora Core 10 for the OS.  I must say I have been very impressed.

All of the packages that I have needed were right there, available by yum install.  PHP, Python, python-mysql, erlang, memcached, php-memcached, python-memcached, git, etc…, etc…, and did I mention that tree was even there?  And it has all “just worked”.


In summary, here are the items that I need to resolve:

  1. Is fedora considered as “secure” as RHEL?  Is there a team dedicated to getting security patches our fast when identified?
  2. Are continuous upgrades in fedora an issue?  Do software packages abruptly get updated without notice?  (this has at times been an issue with RHEL).
  3. Is it possible to run RHEL while also connecting to fedora package repositories to install specific packages?  Desirable?  Undesirable?  Conflicts?

The most secure computer is one that is locked in a vault and turned off.  Since that won’t work for most needs, one must find the appropriate balance between functionality and security.

Comments welcome…

by

Dolly Sods

dolly-sods-fullThe (current) header to this blog is a picture that I took with my wife when visiting a very secluded area in West Virginia.  We were staying in a cabin at Harman’s North Fork Cottages which was right on the headwaters of the Potomac.  As we were taking  a drive one day, I noticed a sign for “Dolly Sods”.  What a strange name?

It was a gravel road that went up and up and up and up into the mountians.  I think it peaked out at over 4,000 feet above sea level (which is high for the east coast).   Anyway, the picture here was taken several miles up that gravel road.  Wow.

harmans-flowerAnd by the way, here is a picture of  a flower taken the same time on the banks of headwaters of the Potomac.

For those of you who have a geographic interest, I found google maps to be very enlightening when it came to looking at the terrain. Look at how steep the mountians are…  dolly-sods-map

I couldn’t recommend it more for a quiet time away…

by

New Blog Started

Hi, my name is Jason Garber.

(Not to be confused with the other Jason Garber in MD, or the other one in DC, I am the one from PA.)

Being born and raised by good parents in central Pennsylvania has given me a great appericiation for life, family, and nature. I currently live in Altoona with my wife and all of our children (>= plural^2).

All of my life I have been very interested in creating. Creating falls into a number of categories which I will outline here…

Please read more on the About Me page…