Today, system administrators are required to reboot servers to apply latest kernel updates, which are needed to prevent security issues. Yet, due to downtime associated with the reboot, such updates are often delayed – and pushed into the darkest hours of night. KernelCare solves this update & reboot issue by providing automated kernel security updates without reboots for most popular Linux distributions. It ensures optimal performance and uptime by allowing hosting providers and enterprises to keep kernels up-to-date with all security patches while keeping servers online.
KernelCare technology can generate binary patches for some very complex kernel changes, including changes in kernel modules and kernel data structures. It can patch any kernel level vulnerability, so server operators no longer have to think about kernel updates.
Installation is simple, and doesn’t require rebooting.
KernelCare supports CentOS/RHEL 5, 6 and 7, CloudLinux 5 and 6, OpenVZ, Virtuozzo, PCS, Debian 6 and 7 and Ubuntu 14.04. Other kernels will follow.
Kernel team monitors security mailing lists. Once they notice that there is a security vulnerability that affects one of the supported kernels – they prepare a patch for that vulnerability.
KernelCare loads patches using a special kernel module with no impact on system performance since those take only nanoseconds.
You can always roll back all applied changes by running the special command.
KernelCare Rebootless Kernel Updates
KernelCare: Stop rebooting! Start sleeping!
KernelCare: Deploying KerneCare
Run the following command:
wget -qq -O – https://repo.cloudlinux.com/kernelcare/kernelcare_install.sh | bash
**Because our KernelCare licenses are IP based, no further action is needed
– CentOS/RHEL 6.x and 7.x
– CloudLinux 6.x and 7.x
– Virtuozzo/PCS/OpenVZ 2.6.32
– Debian 8 and 9
– Proxmox VE 4
– Virt-SIG/Xen4CentOS 6 and 7
– Ubuntu 14.04, 15.04 and 16.04
The full list of compatible kernels can be found here.