Hello guys,<p>We run a cluster of servers, mostly ubuntu. Are there automated tools for running security commands/checks/scans that you use on a regular basis to manage and keep your servers updated?<p>Are there any other specific sites/communities to refer to on these subjects?<p>Thanks
Puppet or Cfengine to actually run the updates on the machines. Then you can run a vulnerability checker, such as nessus, to verify that the updates are installed.
There is a guide for automatic security updates for Ubuntu: <a href="https://help.ubuntu.com/10.04/serverguide/C/automatic-updates.html" rel="nofollow">https://help.ubuntu.com/10.04/serverguide/C/automatic-update...</a>