Security Patching for Linux-Based Applications
- 32m
- Aditya Lad
- EMC
- 2015
The content in this article applies to you if you are a customer, product developer, or an admin with a common goal: keeping intact the security of your Linux-based product, its stability, tackling the challenges involved, in a world where numerous security problems and corresponding security patches are introduced every day. The purpose of this article is to provide guidance for analyzing the threat and severity of day-to-day security issues reported in Linux-based systems, products, and appliances and to devise patch strategies for the same. While Linux is chosen as an example for its simplicity and pervasive use, the concepts can be applied to any operating system.
In this Book
-
Security Patching for Linux-Based Applications
-
Introduction
-
Defining the Problem Areas
-
Familiarity with CVE IDs
-
Too Many Vulnerabilities and Too Many Solutions to Apply
-
Response Strategies – Reactive v/s Proactive
-
Patch Management and Update Strategies
-
Strategy 1— Apply all Patches and Stay Updated
-
Strategy 2—Apply Critical Patches but Stay Stable
-
Nature of Patches
-
How to Decide if You Need That Update or Not
-
An Example Approach for Baselining the Installed Packages
-
Vulnerability Classification
-
Handling Local Vulnerabilities
-
Handling Remote Vulnerabilities
-
Handling Kernel Vulnerabilities
-
Downloading from the Internet
-
Testing and Automation
-
Effective Tracking and Long-term Returns for the Product
-
Sharing the Gold with Other Products
-
Conclusion
-
References
SHOW MORE
FREE ACCESS