I am running Fedora Core 6 with the 220.127.116.11-61 kernel. I added the truecrypt module to my system, but every time the kernel gets upgraded, the module is lost. Can I use YUM (Yellow dog Updater, Modified) to upgrade an entire system with the exception of the kernel? Is there any danger to not updating the kernel?
You can exclude software from YUM upgrade in two ways, via the command line and via configuration file. Firstly, via command line use the --exclude option like so:
# yum --exclude kernel
You can also use the exclude option in the yum.conf configuration file, usually located in /etc. Add each package you want excluded to the option in the [main] section.
[main] exclude=hal autofs kernel*
The danger of not updating the kernel is two-fold. You risk missing out on functionality, security updates or both. If there are kernel features or fixes in the version you are excluding, then you can miss out on them. Additionally, if there are security fixes in the new kernel, you will also not get those. I recommend reviewing the release notes for each kernel version and determine if any of the features, fixes or security updates applies to you. If so, then you should choose to upgrade your kernel, which would mean that you will have to reinstall your module.
Dig deeper on Linux security
Related Q&A from James Turnbull
A user wants to implement OSSEC on a Windows server because he has no server side Linux operating system.continue reading
Solaris 10 Trusted Extensions and SELinux are best suited to different system requirements and administrator skill sets. Our security expert explains...continue reading
Configuring spam filters Spamassassin and dspam together in the email server Postfix is easy with the resources listed by our security expert.continue reading
Have a question for an expert?
Please add a title for your question
Get answers from a TechTarget expert on whatever's puzzling you.