Patch and Software Management CSCI N321 – System and Network Administration Copyright © 2000,...

14
Patch and Software Management CSCI N321 – System and Network Administration Copyright © 2000, 2011 by Scott Orr and the Trustees of Indiana University

Transcript of Patch and Software Management CSCI N321 – System and Network Administration Copyright © 2000,...

Page 1: Patch and Software Management CSCI N321 – System and Network Administration Copyright © 2000, 2011 by Scott Orr and the Trustees of Indiana University.

Patch and Software Management

CSCI N321 – System and Network Administration

Copyright © 2000, 2011 by Scott Orr and the Trustees of Indiana University

Page 2: Patch and Software Management CSCI N321 – System and Network Administration Copyright © 2000, 2011 by Scott Orr and the Trustees of Indiana University.

Section Overview

Software bugsPatching ApproachesSoftware InstallationSoftware Inventory and Removal

Page 3: Patch and Software Management CSCI N321 – System and Network Administration Copyright © 2000, 2011 by Scott Orr and the Trustees of Indiana University.

References

RedHat Fedora 15 Installation GuideRedHat Fedora Support – Documentation

Page 4: Patch and Software Management CSCI N321 – System and Network Administration Copyright © 2000, 2011 by Scott Orr and the Trustees of Indiana University.

It’s a bug’s life…

Source: Source: History of Computing

Virginia TechVirginia Tech

U.S. Navy Capt. Grace Hopper finds U.S. Navy Capt. Grace Hopper finds first computer bug in August, 1945first computer bug in August, 1945

From Hopper’s logbook From Hopper’s logbook

Page 5: Patch and Software Management CSCI N321 – System and Network Administration Copyright © 2000, 2011 by Scott Orr and the Trustees of Indiana University.

Computer Bugs

Bug (n): An unwanted and unintended property of a program or piece of hardware, esp. one that causes it to malfunction.*

Security related issuesCoredumpsUnauthorized access

**Source: Source: The New Hackers Dictionary

Page 6: Patch and Software Management CSCI N321 – System and Network Administration Copyright © 2000, 2011 by Scott Orr and the Trustees of Indiana University.

Software Patches

Fix bugs discovered after version releaseNotification Vendor email lists Security Announcements (i.e. CERT) Software Auditing Agents (i.e. Secunia PSI)

Automated systems Fedora & RedHat: yum update Microsoft: Windows Update

Page 7: Patch and Software Management CSCI N321 – System and Network Administration Copyright © 2000, 2011 by Scott Orr and the Trustees of Indiana University.

Secunia PSI

Can see current state from Traybar Icon

Page 8: Patch and Software Management CSCI N321 – System and Network Administration Copyright © 2000, 2011 by Scott Orr and the Trustees of Indiana University.

Patch Integrity

How do you know that a software update is legitimate?Checksums (e.g. Tripwire) Hash Value of package Cryptographically Signed

MS Authenticode

Page 9: Patch and Software Management CSCI N321 – System and Network Administration Copyright © 2000, 2011 by Scott Orr and the Trustees of Indiana University.

Authenticode Popup

Page 10: Patch and Software Management CSCI N321 – System and Network Administration Copyright © 2000, 2011 by Scott Orr and the Trustees of Indiana University.

Authenticode

ExecutableExecutableProgramProgram

SignatureSignature

Author CertificateAuthor Certificate

Source: Web Security and Commerce Simson Garfinkel and Gene Spafford

Page 11: Patch and Software Management CSCI N321 – System and Network Administration Copyright © 2000, 2011 by Scott Orr and the Trustees of Indiana University.

Large Scale Patching/Updating

Pull vs. PushFully Automated?Gradual Rollout One Some Many

Document process

Page 12: Patch and Software Management CSCI N321 – System and Network Administration Copyright © 2000, 2011 by Scott Orr and the Trustees of Indiana University.

New Software Installations

Binary Packages Fedora & RedHat:

yum install <pkg> (Network) rpm –ihv <pkg> (Local file)

Microsoft: setup.exe (Self-Extracting Zip?) Windows Installer (.msi files)

Java and ActiveX Installers

Source Code Autoconf Look for README files

Page 13: Patch and Software Management CSCI N321 – System and Network Administration Copyright © 2000, 2011 by Scott Orr and the Trustees of Indiana University.

Installation locations

Windows: Typically c:\Program Files Libraries c:\Windows\System32

Linux: Distribution Packages: /usr Third Party: /usr/local Version Control? (i.e. stow)

Page 14: Patch and Software Management CSCI N321 – System and Network Administration Copyright © 2000, 2011 by Scott Orr and the Trustees of Indiana University.

Package Management

Inventory Linux: rpm –qa Microsoft:

Start->All Programs Control Panel->Programs->Programs and Features

Removal Linux: rpm –e <pkg> Microsoft:

Uninstall programs (Start->All Programs) Control Panel->Programs->Programs and Features


OS Installing CSCI N321 – System and Network Administration Copyright © 2000, 2012 by Scott Orr and the Trustees of Indiana University.

OS Installing CSCI N321 – System and Network Administration Copyright © 2000, 2012 by Scott Orr and the Trustees of Indiana University.

UNIX Startup and Shutdown CSCI N321 – System and Network Administration Copyright © 2000, 2009 by Scott Orr and the Trustees of Indiana University.

UNIX Startup and Shutdown CSCI N321 – System and Network Administration Copyright © 2000, 2009 by Scott Orr and the Trustees of Indiana University.

Email Services CSCI N321 – System and Network Administration Copyright © 2007 by Scott Orr and the Trustees of Indiana University.

Email Services CSCI N321 – System and Network Administration Copyright © 2007 by Scott Orr and the Trustees of Indiana University.

CSci 127: Introduction to Computer Science · CSci 127: Introduction to Computer Science hunter.cuny.edu/csci CSci 127 (Hunter) Lecture 6 3 March 20201/39. Announcements Each lecture

CSci 127: Introduction to Computer Science · CSci 127: Introduction to Computer Science hunter.cuny.edu/csci CSci 127 (Hunter) Lecture 6 3 March 20201/39. Announcements Each lecture

Orr Slides

Orr Slides

Shell Features CSCI N321 – System and Network Administration Copyright © 2000, 2005 by Scott Orr and the Trustees of Indiana University.

Shell Features CSCI N321 – System and Network Administration Copyright © 2000, 2005 by Scott Orr and the Trustees of Indiana University.

CSci 127: Introduction to Computer Science - GitHub Pages · CSci 127: Introduction to Computer Science hunter.cuny.edu/csci CSci 127 (Hunter) Lecture 10 14 November 2018 1 / 47.

CSci 127: Introduction to Computer Science - GitHub Pages · CSci 127: Introduction to Computer Science hunter.cuny.edu/csci CSci 127 (Hunter) Lecture 10 14 November 2018 1 / 47.

Orr Bloomsbury

Orr Bloomsbury

CSci 127: Introduction to Computer Science - stjohn.github.io · CSci 127: Introduction to Computer Science hunter.cuny.edu/csci CSci 127 (Hunter) Lecture 5 5 March 2019 1 / 47

CSci 127: Introduction to Computer Science - stjohn.github.io · CSci 127: Introduction to Computer Science hunter.cuny.edu/csci CSci 127 (Hunter) Lecture 5 5 March 2019 1 / 47

JDBC Tutorial CSCI 201L Jeffrey Miller, Ph.D. HTTP :// WWW - SCF. USC. EDU /~ CSCI 201 USC CSCI 201L.

JDBC Tutorial CSCI 201L Jeffrey Miller, Ph.D. HTTP :// WWW - SCF. USC. EDU /~ CSCI 201 USC CSCI 201L.

System Monitoring and Automation CSCI N321 – System and Network Administration Copyright © 2000, 2011 by Scott Orr and the Trustees of Indiana University.

System Monitoring and Automation CSCI N321 – System and Network Administration Copyright © 2000, 2011 by Scott Orr and the Trustees of Indiana University.

Tables CSCI 201L Jeffrey Miller, Ph.D. HTTP :// WWW - SCF. USC. EDU /~ CSCI 201 USC CSCI 201L.

Tables CSCI 201L Jeffrey Miller, Ph.D. HTTP :// WWW - SCF. USC. EDU /~ CSCI 201 USC CSCI 201L.

CSci 2011 Discrete Mathematics Lecture 6 CSci 2011.

CSci 2011 Discrete Mathematics Lecture 6 CSci 2011.

Introduction to System Administration CSCI N321 – System and Network Administration Copyright © 2000, 2011 by Scott Orr and the Trustees of Indiana University.

Introduction to System Administration CSCI N321 – System and Network Administration Copyright © 2000, 2011 by Scott Orr and the Trustees of Indiana University.

Device and Filesystem Management CSCI N321 – System and Network Administration Copyright © 2000, 2012 by Scott Orr and the Trustees of Indiana University.

Device and Filesystem Management CSCI N321 – System and Network Administration Copyright © 2000, 2012 by Scott Orr and the Trustees of Indiana University.

(A Very Short) Introduction to Shell Scripts CSCI N321 – System and Network Administration Copyright © 2000, 2003 by Scott Orr and the Trustees of Indiana.

(A Very Short) Introduction to Shell Scripts CSCI N321 – System and Network Administration Copyright © 2000, 2003 by Scott Orr and the Trustees of Indiana.

Managing Users CSCI N321 – System and Network Administration Copyright © 2000, 2012 by Scott Orr and the Trustees of Indiana University.

Managing Users CSCI N321 – System and Network Administration Copyright © 2000, 2012 by Scott Orr and the Trustees of Indiana University.

Web Services CSCI N321 – System and Network Administration Copyright © 2007,2008 by Scott Orr and the Trustees of Indiana University.

Web Services CSCI N321 – System and Network Administration Copyright © 2007,2008 by Scott Orr and the Trustees of Indiana University.

Managing Processes CSCI N321 – System and Network Administration Copyright © 2000, 2011 by Scott Orr and the Trustees of Indiana University.

Managing Processes CSCI N321 – System and Network Administration Copyright © 2000, 2011 by Scott Orr and the Trustees of Indiana University.

Network Services CSCI N321 – System and Network Administration Copyright © 2000, 2007 by Scott Orr and the Trustees of Indiana University.

Network Services CSCI N321 – System and Network Administration Copyright © 2000, 2007 by Scott Orr and the Trustees of Indiana University.