CentOS / RHEL : Configure yum automatic updates with yum-cron service

yum-cron is an optional package starting from Red Hat Enterprise Linux 6, this is a plugin for yum. From man page of yum-cron :

yum-cron is a simple way to call yum commands from cron. It provides configuration to keep repository metadata up to date, and to check for, download, and apply updates.

The yum-cron package provides a convenient way to check for, download and apply updates automatically. The cron jobs from the yum-cron package are active immediately after installing the package and there’s no extra configuration necessary. The job will be run when your normal daily cron jobs are set to run.

Installation

To install yum-cron package

 
# yum -y install yum-cron
# chkconfig yum-cron on

Configuration for RHEL 6

Then edit /etc/sysconfig/yum-cron to set MAILTO=[email address] for email notifications.

MAILTO=sys@example.com

To exclude packages using yum-cron edit the /etc/sysconfig/yum-cron to have the packeges to be excluded in the automatic uodate :

YUM_PARAMETER=kernel* mysql*

To start yum-cron service after editing configuration file.

# service yum-cron start

Configuration for RHEL 7

Then edit /etc/yum/yum-cron.conf to set email_to=[email address] for email notifications.

email_to=sys@example.com

To exclude packages using yum-cron edit the /etc/yum/yum-cron.conf to have the packeges to be excluded in the automatic uodate :

exclude=kernel* mysql*

In RHEL 7 you can use following options in yum-cron configuration file, to install security updates.

[commands]
#  What kind of update to use:
# default                            = yum upgrade
# security                           = yum --security upgrade
# security-severity:Critical         = yum --sec-severity=Critical upgrade
# minimal                            = yum --bugfix upgrade-minimal
# minimal-security                   = yum --security upgrade-minimal
# minimal-security-severity:Critical =  --sec-severity=Critical upgrade-minimal
update_cmd = default

To start yum-cron service after editing configuration file.

# systemctl start yum-cron
0 (0)
Article Rating (No Votes)
Rate this article
Attachments
There are no attachments for this article.
Comments
There are no comments for this article. Be the first to post a comment.
Full Name
Email Address
Security Code Security Code
Related Articles RSS Feed
RHEL: Reinstalling Boot Loader on the Master Boot Record (MBR)
Viewed 3650 times since Sun, May 27, 2018
How do I add ethtool settings to a network device permanently?
Viewed 6934 times since Mon, May 21, 2018
Secure NTP with NTS
Viewed 8688 times since Sun, Dec 6, 2020
rabbitmq Troubleshooting TLS-enabled Connections
Viewed 2720 times since Sun, Dec 6, 2020
Linux Audit The Linux security blog about Auditing, Hardening, and Compliance lynis
Viewed 2315 times since Thu, Jan 16, 2020
10 Linux rsync Examples to Exclude Files/Directories
Viewed 11170 times since Wed, Oct 31, 2018
18 Quick ‘lsof’ command examples for Linux Geeks
Viewed 11922 times since Sun, Jun 30, 2019
List usernames instead of uids with the ps command for long usernames
Viewed 2606 times since Wed, Jul 25, 2018
RHCS6: Basic operations on clustered services
Viewed 2881 times since Sun, Jun 3, 2018
LVM: Reduce an existing Volume Group by removing one of its disks
Viewed 2683 times since Sat, Jun 2, 2018