Is there a mailing list where I can get updates on the latest patches/packages for Linux (Red Hat 7.1) that are considered tested and safe to install? I know it's not a good idea to install a new patch right after it's out (I've had to rebuild the server once becase of that)...

Linuxsecurity.com has secure patches sent out in mailing lists I think.

Given this server is running redhat linux...

I was wondering whether people use or recommend the redhat network and up2date as a means of keeping ahead of bugs and fixes.

I have registered my server with the red hat network rhn.redhat.com and have used it to update a couple of packages (you can register one box per account for free). However, I wouldn't trust it to just automatically do what ever it wants through the rehat up2date agent.

Curious what others think about rhn and up2date.

we do use it and like it - we do not have it set to automatically update and we manually verify each package, but the kernal update was a breeze using it

I use and love RedHat Linux, but have never delved into the RH Network or Up2date services yet. Personally, I keep up on the BugTraq lists (http://www.securityfocus.com). RedHat (as well as other vendors) regularly post security-related updates to BugTraq. I also keep up in other sources (geek news sites, etc), and update things as I see necessary.

An example would be the recent potential telnet exploit. Heard about the exploit, and within a week, RedHat had posted links to the appropriate RPMs on the BugTraq list.

The hard part is when installing a fresh system using an older RedHat distro. I personally feel that the x.2 releases of RedHat are always the best, thus on servers I'm sticking with 6.2 until 7.2 is released (and I've had a chance to test it on a couple development boxes). When installing 6.2, I have to go through and find/remember all of the appropriate updates.

That's one case where RedHat Network and/or up2date might be handy, but I've been working with 6.2 for quite some time, so for me it's not really difficult. I have a 'reference' system on my home network that's going on 2 years since last reinstall. I've been keeping updated RPMs in a specific directory for easy reference on what updates have been released since 6.2 came out, and I can just apply them to a new system quickly.

You'll eventually come up with your own system; it might be as simple as using RedHat Network/up2date or a third party support service, or it might be scanning various lists and websites, or something entirely different.