For SL7 we would like to switch to the upstream provided 'yum-cron' instead of our 'yum-autoupdate' package. The recent releases seem to be feature compatible with yum-autoupdate from SL6, but have the advantage of upstream development. Are there any objections? What if any packages should be excluded from the default automatic update? If you've a list of suggestions, should it be set out of the box or via a 'tweak rpm'? A brief bit on why I (Pat Riehecky, not speaking for SL here) like having updates on by default. If you know what you are doing, you can disable this and schedule updates with your downtime windows. The SL audience ranges from professional systems admins to graduate students with little training in systems administration. This leaves the systems in a 'default less hackable' state, and, to my mind, helps protect less experienced users as well as the wider internet from the possible side effects of unpatched systems. There are still systems out there vulnerable to Heartbleed. But none of those are SL boxes left in their default state. Pat -- Pat Riehecky Scientific Linux developer http://www.scientificlinux.org/