Live patch on AWS
Jeffrey Walton
noloader at gmail.com
Sun Mar 24 21:59:44 UTC 2024
On Sun, Mar 24, 2024 at 5:14 PM Jerry Geis <jerry.geis at gmail.com> wrote:
>
> I have an AWS server...
> It says AWS servers are automatically in "Ubuntu Pro". Verified by:
> pro status
> SERVICE AVAILABLE DESCRIPTION
> anbox-cloud yes Scalable Android in the cloud
> esm-apps yes Expanded Security Maintenance for Applications
> esm-infra yes Expanded Security Maintenance for Infrastructure
> fips yes NIST-certified FIPS crypto packages
> fips-updates yes FIPS compliant crypto packages with stable security updates
> livepatch yes Canonical Livepatch service
> ros yes Security Updates for the Robot Operating System
> usg yes Security compliance and audit tools
>
> so when I do "apt update; apt upgrade"
>
> and re-login - its still says
>
> *** System restart required ***
I believe Debian and Ubuntu check for the existence of
/var/run/reboot-required to determine this.
> With "Live Patch" why is restart required. What am I "not" doing - so I can completely minimize any restarts on this AWS server ?
I don't have an answer. Maybe see the following:
* <https://ubuntu.com/security/livepatch/docs/livepatch>
* <https://wiki.ubuntu.com/Kernel/Livepatch>
* <https://wiki.ubuntu.com/Security/Features>
Jeff
More information about the ubuntu-users
mailing list