ClearOS has now passed its End Of Life date and should no longer be used.
It has had no updates since 31st July 2022 which means that vulnerabilities rated as Critical by NIST and patched in Centos7 and EPEL7 have not had their patches echoed through into ClearOS. At a minimum this affects httpd (Apache), webconfig-httpd, ClamAV, OpenSSH and squid. There may be others. There is a much bigger list of unpatched Severe or Important vulnerabilities.
The Samba Domains no longer work. Gateway Management no longer works.
If the lights go out at Clearcenter, the webconfig will slow to a crawl. To get round this you need a custom firewall rule to block outgoing traffic to 52.6.150.76.
I've been with ClearOS since it was ClarkConnect with maybe a handful of issues in the entire time, and none of them show-stoppers.
Unfortunately this is what happens when a good solid work-a-day project gets side-lined by the latest fad, then has the underlying distribution pulled from under it. It had already lost out to work on a "secure" cellular phone (ClearPhone) and yet another (why?) digital coin before RedHat pulled stable CentOS releases.
We're now rapidly approaching the end of support date and gotten nothing but radio silence; there has been no change on the development roadmap bug logs for more than a year, and it's really too late for a next version migration. The project has to be considered dead.
Digging around the forums, there are instructions for when the lights finally go out, but it will be much better to move to something else before then. Current reading suggests NethServer is a possibility.
ClearOS is effectively dead since they released their core maintainer in September 2022 and there have been no updates since the end of July 2022. It must be considered an insecure platform as it has a number of unpatched critical security issues and there is no one left who can do the patching and releasing. Their Domain offering no longer works with an up to date Windows despite upstream patches being available.
At the same, apparently time there has been a critical internal system failure so Clearcenter are no longer able to produce any updates even if they wanted to.
Based on CentOS, with some pretty decent additions, some paid.
The main thing to watch is what they plan to do now that IBM/RedHat has changed its model, and ClearOS must change from its current upstream provider. They have announced "version 9" and say it will be produced "in-house" but that was many months ago with no updates or details or ETA for a first look, let alone a release.
In other words, think of it as a mature (for 2020), secure server that might be good for simple applications that will only be used for a month or two, but not for long-term use, at least not until they have a clear roadmap for when we see a preview of their next version, and what their plan is for the next five or ten years.
I was hopeful for them. They have had some good people on staff and in their online community. But their current silence and lack of news or product updates suggest we use extreme caution with new installations, and give a high priority to plans for migrating to a different provider.
ClearOS has now passed its End Of Life date and should no longer be used.
It has had no updates since 31st July 2022 which means that vulnerabilities rated as Critical by NIST and patched in Centos7 and EPEL7 have not had their patches echoed through into ClearOS. At a minimum this affects httpd (Apache), webconfig-httpd, ClamAV, OpenSSH and squid. There may be others. There is a much bigger list of unpatched Severe or Important vulnerabilities.
The Samba Domains no longer work. Gateway Management no longer works.
If the lights go out at Clearcenter, the webconfig will slow to a crawl. To get round this you need a custom firewall rule to block outgoing traffic to 52.6.150.76.
I've been with ClearOS since it was ClarkConnect with maybe a handful of issues in the entire time, and none of them show-stoppers.
Unfortunately this is what happens when a good solid work-a-day project gets side-lined by the latest fad, then has the underlying distribution pulled from under it. It had already lost out to work on a "secure" cellular phone (ClearPhone) and yet another (why?) digital coin before RedHat pulled stable CentOS releases.
We're now rapidly approaching the end of support date and gotten nothing but radio silence; there has been no change on the development roadmap bug logs for more than a year, and it's really too late for a next version migration. The project has to be considered dead.
Digging around the forums, there are instructions for when the lights finally go out, but it will be much better to move to something else before then. Current reading suggests NethServer is a possibility.
ClearOS is effectively dead since they released their core maintainer in September 2022 and there have been no updates since the end of July 2022. It must be considered an insecure platform as it has a number of unpatched critical security issues and there is no one left who can do the patching and releasing. Their Domain offering no longer works with an up to date Windows despite upstream patches being available.
At the same, apparently time there has been a critical internal system failure so Clearcenter are no longer able to produce any updates even if they wanted to.
Based on CentOS, with some pretty decent additions, some paid.
The main thing to watch is what they plan to do now that IBM/RedHat has changed its model, and ClearOS must change from its current upstream provider. They have announced "version 9" and say it will be produced "in-house" but that was many months ago with no updates or details or ETA for a first look, let alone a release.
In other words, think of it as a mature (for 2020), secure server that might be good for simple applications that will only be used for a month or two, but not for long-term use, at least not until they have a clear roadmap for when we see a preview of their next version, and what their plan is for the next five or ten years.
I was hopeful for them. They have had some good people on staff and in their online community. But their current silence and lack of news or product updates suggest we use extreme caution with new installations, and give a high priority to plans for migrating to a different provider.
TUXEDO
TUXEDO Computers - Linux Hardware in a tailor made suite Choose from a wide range of laptops and PCs in various sizes and shapes at TUXEDOComputers.com. Every machine comes pre-installed and ready-to-run with Linux. Full 24 months of warranty and lifetime support included!
Learn more about our full service package and all benefits from buying at TUXEDO.
Advertisement
Star Labs
Star Labs - Laptops built for Linux.
View our range including the highly anticipated StarFighter. Available with coreboot open-source firmware and a choice of Ubuntu, elementary, Manjaro and more. Visit Star Labs for information, to buy and get support.
Copyright (C) 2001 - 2024 Atea Ataroa Limited. All rights reserved. All trademarks are the property of their respective owners. Privacy policy. Change privacy settings. DistroWatch.com is hosted at Copenhagen.