Note: Amazon Linux patching is currently available for new users and will roll out to existing users in September 2024.

Amazon Linux patch management

This section will discuss:

What is Amazon Linux patch management?

Amazon Linux is a type of Linux operating system developed and maintained by AWS (Amazon Web Services). This distribution is tailored for use within AWS setups ensuring secure and high-performance platforms needed for hosting cloud-based applications. However, it is also compatible with instances hosted outside the AWS cloud, which is supported by our Vulnerability Manager Plus agent. There are two main versions Amazon Linux 2 (AL2) and Amazon Linux 2023 (AL2023) both offering long-term support (LTS), regular updates and enhanced security features.

It includes a collection of software packages and configurations specifically crafted for AWS environments incorporating drivers and tools to integrate with AWS services seamlessly. Keeping your Amazon Linux updated is crucial to prevent vulnerabilities in your network from being exploited. Vulnerability Manager Plus simplifies the process of patching Amazon Linux systems.

How do I update Amazon Linux automatically using Vulnerability Manager Plus?

Vulnerability Manager Plus allows you to fully automate the entire process of Amazon Linux patching, including scanning for missing patches, downloading them from the vendor site and deploying them.

To deploy Amazon Linux security updates:

  • In the product console, navigate to the Deployment tab > Automate Patch Deployment.
  • Click Automate Task and select Linux, as you are going to install patches for your Linux systems.
  • Create an Automate Patch Deployment task by selecting the Linux and third-party updates that you want to install based on their severities.
  • Click Patch Specific Applications under Updates & Severities to update Amazon Linux specifically.

  • Then choose any deployment policy listed there or create a policy of your own.
  • This deployment policy will be applied to the specified target computer by defining target computers either by choosing their domain or remote office.
  • Check the box to enable notifications via email.
  • Click Save to create your Automate Patch Deployment task.
  • With Vulnerability Manager Plus, you can completely automate the process of deploying Amazon Linux updates to your endpoints.

How do I install a Amazon Linux update manually?

You can manually deploy Amazon Linux updates from the product console by navigating to Patches > Missing Patches.

Follow the steps below to download and install Amazon Linux updates manually using dnf package manager:

  • Open a Terminal window on your Amazon Linux system.
  • Update the package list by running the following command: sudo dnf makecache
  • This will download information about the latest packages from the Amazon Linux repositories.
  • Once the package list is updated, you can check if any updates are available by running the following command: sudo dnf check-update
  • This will show you a list of all available updates that can be installed.
  • To install the updates, run the following command: sudo dnf upgrade
  • This will download and install all available updates. After the updates have been installed, reboot your system to ensure that all updates are fully applied.
  • To reboot your system, run the following command: sudo reboot
  • That's it! Your Amazon Linux system is now updated with the latest packages.

    Supported applications

    To find the supported Linux operating systems, refer to Vulnerability Manager Plus' list of supported applications.

FAQs

1) What is Amazon Linux used for?

Amazon Linux runs and deploys applications on AWS cloud infrastructure, enhancing performance for cloud-based applications, web hosting, development, testing, data processing and containerized applications.

2) Is Amazon Linux a CentOS?

Amazon Linux was initially based on CentOS, but Amazon has evolved into its own Linux distribution. Amazon Linux 2, the latest major version, is not directly based on CentOS instead it incorporates features from Fedora, CentOS and Amazon's own enhancements and optimizations.

3) Which Linux is used for AWS?

AWS provides various Linux distributions for EC2 instances but Amazon Linux 2 is the preferred choice. It is specifically optimized for AWS providing long-term support (LTS), regular updates and seamless integration with AWS services.

4) What are the benefits of Amazon Linux?

Key benefits of Amazon Linux:

  • Optimized performance in AWS environments.
  • Seamlessly integrates with various AWS services.
  • Offers long-term support with regular updates.
  • Includes built-in security features with timely updates.
  • Provides customization options to meet specific requirements.

5) Does Amazon Linux use yum or apt?

Amazon Linux utilizes yum as its primary package management tool. yum is the package manager used for installing, updating and managing software packages on Amazon Linux instances.