Home / server / Questions / 2673
In Process
Jared
Asked: 2009-05-02 10:39:53 +0800 CST

yum-security for CentOS?

  • 772

Last time I checked I was able to install yum-security in CentOS but since it doesn't use the official redhat mirrors I was unable to get it to actually work. Is there a way to make yum-security work or is there an alternative to yum-security on CentOS?

centos redhat

4 Answers

  1. For Centos 6, Centos 7 and Centos 8 the easiest way is to use Steve Meier's Updateinfo: a yum repository with CentOS Errata information.

    It's a ready yum repo served and updated by the author of the CEFS project.

    It is a paid service but as of now it costs only a mere $3 per month for an unlimited number of servers (but using a mirror for a big fleet is recommended).


    Note that it's the same thing as you can do yourself according to dsmsk80's answer here. But don't you prefer to support the enthusiast who made this solution possible instead? :)

    • 1

  2. No, there is no easy alternative to this redhat feature with centos.

    The only alternative I know so far is to manually list the rpms affected by one or more CVE and update only them.

    • 0

  3. Unfortunately, yum-security is not supported on CentOS :(

    However, this hacked alternative might work for you.

    • -1

  4. These days yum-security works fine on CentOS, you can install it from EPEL

    Example on CentOS 6:

    $ rpm -q yum-plugin-security
yum-plugin-security-1.1.30-14.el6.noarch

    (On CentOS 5 the package is called yum-security)

    $ sudo yum update --security
Loaded plugins: security
Setting up Update Process
Resolving Dependencies
Limiting packages to security relevant ones
epel/updateinfo                                                                                                                                                                                                         | 724 kB     00:00     
No packages needed for security; 141 packages available
    • -1