A comprehensive guide to managing and applying patches on CentOS systems using the DNF package manager.
In this guide, we will explore the fundamentals of keeping CentOS systems secure and up-to-date using the DNF (Dandified YUM) package manager. DNF replaces the older YUM package manager, providing enhanced performance and improved dependency management.
DNF is a software package manager that installs, updates, and removes packages on RPM-based Linux distributions. It automatically computes dependencies and determines the actions required to install packages.
Before you begin patching your system, it is essential to set up your environment properly:
Command to check system subscription:
sudo subscription-manager statusUnderstanding basic DNF commands will help you manage your packages efficiently:
sudo dnf check-updatesudo dnf update httpdsudo dnf updatesudo dnf install nginxsudo dnf remove nginxAdvanced patch management involves more than just updating packages. It includes handling kernel updates, managing repositories, and configuring automatic updates.
Command to exclude kernel updates:
sudo dnf --exclude=kernel* updateKeeping your system secure is crucial. Regularly apply security patches and monitor advisories related to CentOS:
Command to list security updates:
sudo dnf updateinfo list secAutomating updates can help maintain system security and stability without manual intervention:
Setting up automatic updates:
sudo dnf install dnf-automatic
sudo systemctl enable --now dnf-automatic.timerEncountering issues during updates is common. Here are a few tips for troubleshooting:
/var/log/dnf.log--verbose option to get more detailed output from DNF commands.