CloudLinux announced as part of its TuxCare security services the launch of QEMUCare Live Patching Service for Linux systems running as virtualization hosts through QEMU, the open source emulator and the hardware virtualization platform.
“Patching virtualization host systems is a challenge that IT security and operations teams face due to the impact on the performance and availability of virtual machines running on these systems,” Jim said. Jackson, president and chief revenue officer of CloudLinux. “Plus, it’s very easy to accidentally disrupt a running virtual machine, and the whole process is very complex to orchestrate properly across multiple systems. At the same time, it is quite urgent to apply security patches as soon as possible to be safe from exploits. “
QEMUCare eliminates the complexity of the process, removing the need to migrate virtual machines away from updated systems. This saves considerable time and makes the bandwidth available to update the entire infrastructure. In addition, security updates are deployed almost immediately as they become available, reducing the time the system is exposed to security vulnerabilities.
QEMUCare Live Patching works through a mechanism similar to that of other TuxCare live patching services, such as KernelCare Enterprise and LibraryCare, where updates are applied without any disruption to running processes. Virtual machines running on the updated systems will not be paused, migrated, or affected in any way by the process.
This is a faster, less resource-intensive, and less disruptive approach than current industry best practices, which require live migration of virtual machines to other systems while hosts are updated.
To benefit from a free proof of concept, the minimum requirement is 100 Linux servers.
TuxCare services are the overall offering of the CloudLinux family of business support services that include live remediation for critical components of the Linux stack, from the kernel to widely used shared libraries.
This eliminates the need for long and costly downtime while servers or services are restarted to install the latest security patches, and no longer requires a disruptive maintenance window.
In addition, with Linux TuxCare support services, regular patches and updates are provided for all components of corporate Linux systems, as well as 24/7 incident support. even when systems are past their End of Life (EOL).