As most of you know an outdated Linux kernel can create a huge security issue epecially if you allow your clients shell access. My question to all of you is who do you think should be responsible for the update? The dedicated server provider or the End User. Some linux flavors like Debian and gentoo are simple to re-compile the kernel and install it. However RedHat is really picky when it comes to the kernel. Most of us know that most providers use redhat for dedicated servers. Which comes with a 2.4.20-8 kernel out of the box ( Very High security risk ). I'm interested to hear what all of you think about this.
