KernelCare Technical Whitepaper
We’ve just published a Technical White Paper called KernelCare: Live Kernel Patching for Linux. It covers what KernelCare is, how it works and why you need it. We give an overview of setting up custom patch servers, both within and without firewalls, and we show what the patch management GUI looks like. We explain what delayed and sticky patches are, take a quick look at automating patch monitoring (through Nagios, Zabbix or the REST API) and show how to integrate with Rapid7 Nexpose. Security compliance questions are answered – so you can be sure that KernelCare’s live patching and security scanner interface is enabled properly.
This Technical White Paper covers the key points in installing and configuring KernelCare, while also going over the key requirements for Linux kernel patch management, such as the automatic installation of patches, customer patch configurations and manual overrides, choice of patch repositories, and integration with automation and monitoring utilities. The Technical White Paper gives you a comparison of utilizing the Linux kernel patch management with and without the KernelCare.ePortal.
It’s a great overview of KernelCare and a good, compact source of reference information, including useful links to our blog, patch service, documentation, and 24/7 online support system. You can receive your copy of the KernelCare Technical White Paper here.
KernelCare is a live patching system that patches Linux kernel vulnerabilities automatically, with no reboots. It’s used on over 300,000 servers, and has been used to patch servers running for 6+ years. It works with all major Linux distributions, such as RHEL, CentOS, Amazon Linux, and Ubuntu. It also interoperates with common vulnerability scanners such as Nessus, Tenable, Rapid7, and Qualys. To talk with a consultant about how KernelCare might meet your enterprise’s specific needs, contact us directly at [email protected].