The 2018 Best of Interop ITX awards finalists were just revealed, and we are thrilled to share that KernelCare has been selected as the finalist in the Infrastructure category. Traditional IT infrastructure is changing giving way to new software-defined technologies, cloud, and automation. In this category, Interop ITX 2018 recognizes products that help enterprises adapt to the new era of infrastructure.
KernelCare supports a large number of distributions and kernel versions. List of all supported distributions, kernels, as well as patches for them is available at http://patches.kernelcare.com.
However, to be absolutely sure your kernel is supported, we have a simple script that you can run on your server.
A few weeks ago we released the KernelCare “Extra” Patchset with the security fixes and the symlink protection available to all KernelCare customers running CentOS kernels. Today we are pleased to share that you can get the Symlink Protection Patchset for CentOS 6 and 7 at no cost, even if you don’t have licenses of KernelCare.
By now, you might have thought that the topic of Meltdown and Spectre vulnerabilities is taking a backstage in the news. Not so, as the impact and the solutions to resolve the issues seem to be the talk of the technical community still.
Do you want to use KernelCare for rebootless kernel updates? But what if you are running an unsupported distribution? What if your kernel is custom, self-compiled, special, or just old? KernelCare provides Custom Kernel Patching so that your company can benefit from live patching service for your kernel. The experts on our security and kernel development team can update your kernels using KernelCare technology to apply patches to the running kernel without the need to reboot servers.
I am super thrilled to let you know that we have published a toolset for livepathing of user space software, called LibCare, to GitHub. It is released under the GPL2 license and allows software developers to develop and apply patches to their running software without the need to restart it.
KernelCare is often deployed on a large number of servers. Adding those servers one by one is a hassle. In that case, KernelCare key can be used to deploy and register multiple servers at once.
Registration is still straightforward:
$ kcarectl –register YOUR_KEY
The key can be obtained from CLN (see image).
A few days ago, Endurance has announced that they have implemented KernelCare to keep their servers secure and limit interruptions. Endurance is a leading provider of cloud-based platform solutions, and they have deployed KernelCare rebootless update service on shared and dedicated web servers for the Endurance family of brands including HostGator and Bluehost, among others.
In light of the recent Dirty Cow exploit, said by experts to be the “Most serious” Linux privilege-escalation bug ever, we’ve decided to push forward our prior plans to offer KernelCare for free for nonprofit organizations so that they can protect themselves from critical vulnerabilities including the Dirty Cow CVE-2016-5195.
Ksplice is a technology that updates kernels with important security patches without the need to reboot. After its acquisition by Oracle, it is now offered as part of the Oracle Linux Premier Support. KernelCare is distribution-agnostic and supports Oracle Linux kernels, as well as CentOS, CloudLinux OS, Debian, RedHat, Virtuozzo, and others. Many customers come to us wanting to switch from legacy Ksplice to KernelCare.