Software update policy
Security updates are automatically performed every day during late night hours. Only minor security updates are automatically installed. Most of these updates do not cause unavailability of services. Updates of applications such as webservers and databases can be followed by a restart of the service. The client can choose, that services requiring restart upon update will be updated manually. However, we do not recommend that.
Kernel updates are excluded from automatic updates, as they require a server restart, thus making all services unavailable. Upgrading the operating system kernel is done individually, when critical security vulnerabilities appear and always after consulting the client.
Automatic updates are not applied to the Managed Cluster service; they are always handled individually depending on the current needs. The reason for that is the unpredictable impact of automatic updates on infrastructure availability and consistency.
Upgrades of software to a version unavailable in OS repositories requested by client¶
Upgrades to new major version of software are performed at the client's request, if the software and its new version are supported in the official package repository of the installed Debian or Ubuntu Server version, one of the supported unofficial repositories, VSHosting's or official software repositories. We do not compile the software from the source code because it is unmaintainable. The installed software must be supported on managed servers by VSHosting.
Upgrading the Debian / Ubuntu Server operating system and its life cycle¶
VSHosting operates servers on the Debian or Ubuntu Server operating system and fully respects the life cycle of these operating systems (hereinafter referred to as operating systems). The currently supported versions of operating systems (i.e. receiving security updates) are available at Debian's resp. Ubuntu's official website. Alternatively, VSHosting provides this information to customers through technical support.
When authors of the operating system cease their support for a given release, the client is exposed to the risk of unauthorized intrusion into the system by a third party (server hacking) and other security incidents, that VSHosting often cannot prevent due to outdated software.
The operating system is updated free of charge, if the installed version will be end of life within 24 months. Temporary provision of a test server prior to upgrade and upgrading earlier than 24 months before the EOL of the operating system are considered extra services and are charged for as such.