Oracle Spreading FUD about CentOS
I was quite surprised to see Oracle has a new page up, encouraging people to switch from CentOS to Oracle Linux.
For those that aren’t aware, CentOS is a completely free re-build of Red Hat Enterprise Linux. It’s a distribution our customers use a lot, both with our own CentOS 6 AMIs and on bare metal.
On the face of it the Oracle switch from CentOS page seems pretty benign - re-assurance that it’s really free, even some self-deprecating humour about Oracle.
Then I saw the graph, which purports to show how much quicker Oracle security updates are released than CentOS.
The graph data has been carefully selected, ignoring the CentOS continuous updates repository, and selecting a period when mainline updates were slow due to the new way in which Red Hat kernel updates are released.
|Red Hat Bug ID||Red Hat Fix released||CentOS Fix released||Oracle Fix released||Difference (days)|
In fact, if we look at kernel security updates this year (shown above), we will see that every single CentOS kernel update has been released at the same time or before the corresponding Oracle Linux kernel update.
As such, we’ll be contunuing to recommend CentOS Linux to those who want a free (in both meanings of the word) Linux distribution.
And of course, there’s the fact that the original article completely fails to mention - if you want the security updates first, the only way to get them is by paying Red Hat for support, not Oracle.