|
|
|
|
|
|
by Just1689
2075 days ago
|
|
|
You probably know this but from what I read above it might be worth mentioning. Your hosts are still packed with a bunch libraries and services (sshd for example) that should probably be updated with regularity. I echo a lot of what you say here regarding run anywhere and not marrying some giant vendor. |
|
|
On hosts I manage professionally, I update/upgrade weekly after reading the notes - it takes a few minutes, I know I'm up to date and if there is anything I should be wary of.
On a personal debian server, I have an update/dist-upgrade -y nightly on a cron job, and I reboot if I read on HN/slashdot/reddit/lwn about an important kernel fix; Never had an issue, and I suspect it's about as secure and trouble free as whatever is underlying lambda -- with the exception that every 3-4 years I have to do an OS upgrade.