I am using Archlinux as a server for my infrastructure. Does anyone have experience with ignoring kernel upgrades on Archlinux for a while? If so, how do you decide on what kernel release you are staying? If you upgrade the kernel, have you found a way to circumvent having to restart the machine?

  • CVan
    link
    fedilink
    English
    arrow-up
    4
    ·
    2 years ago

    Agreed, maybe just establish a maintenance cycle that works for you and only update then. Otherwise you might use arch-audit to check for security issues in your packages and only upgrade when a package you have has a known vulnerability.

    • g7sOP
      link
      fedilink
      English
      arrow-up
      2
      ·
      2 years ago

      I have come up with the idea to just setup two hypervisors under arch, virtualizing all services and using keepalived under arch to fail over the hypervisors. With that, one can take down one server for upgrades, without having “downtime” of the services. However, I don’t know how to achieve that yet :)

      • CVan
        link
        fedilink
        English
        arrow-up
        2
        ·
        2 years ago

        Look into HAProxy. It will load balance traffic between servers based on your preference, and can be configured to detect when 1 server is down, thus keeping your service active when 1 server goes down.