It comes from CloudLinux Inc., creators of the #1 Linux OS for web hosting. KernelCare improves your systems' stability and security, bringing more customer satisfaction and lower operational cost. Trusted by over 1500 companies of all sizes, KernelCare keeps your Linux kernels up to date, automatically. Security patches are installed on running systems without rebooting. These rebootless' updates take nanoseconds. System performance is not affected.
Now you can deliver a better, more secure Linux platform.
KernelCare keeps your kernel secure with automated and rebootless updates.
Linux is stable, but as with other operating systems, security issues are common. More than 450 Linux vulnerabilities were found in 2017, up from over 200 a year before. Vulnerabilities expose servers to malicious intent by threat actors on multiple attack vectors. On open source environments, kernel vulnerabilities become public almost immediately. They should be fixed (or patched) before they can be exploited.
KernelCare works fast, before any vulnerabilities can be exploited to attack your server. It was the only multi-distribution Linux live patching service to fix Meltdown and Spectre(spectre-v1) vulnerabilities without the need to reboot servers.
There are no service interruptions; KernelCare fixes only the affected part of the kernel code -there is no need to reboot.
KernelCare patches kernels without causing downtime or interrupting service.
Your uptime statistics are improved. Once installed, KernelCare checks for new patches every four hours. It downloads and applie them automatically. You don't need to check for updates or install them yourself - KernelCare takes care of everything. Your servers are always running with the latest kernel security patches.
KernelCare works on most mainstream distributions of Linux and virtual environments.
If needed, complex and custom kernel patch configurations can be maintained and applied with the KernelCare ePortal. This means you can update development and production environments with one patch repository. When active, there is no impact on server performance. It is fast and simple to run.
For servers behind firewalls or with limited internet access, the KernelCare ePortal lets you run your own patch repository server. Patches are automatically downloaded from the central KernelCare repository to your own local ePortal server.
KernelCare ensures that your Linux servers are compliant with best-practices.
Clauses in many SLA contracts define a maximum period that servers may remain unpatched. Exceeding this time frame can lead to violation of the contract. Kernel updates are therefore extremely important for the security and compliance of your Linux systems and should be done at least once a month.
All patch corrections are fully auditable, and the patches can be selectively pre-tested and approved before distribution. If you want to roll them back, you can do so at any time with no impact.
The KernelCare team also runs hundreds of regression tests to ensure kernel patches are always of the highest quality.
KernelCare is the most cost-effective live kernel patching solution on the market.
It lets you release IT resources to work on strategic initiatives, rather than patching and maintaining servers. It helps you avoid system downtime. It removes the need for complex plans and schedules covering dispersed business units. There is no longer need for routine security patch management. As a result, you lower your operating costs.
Our support team are experts with a unique focus on client care.
Together, they have more than 450 years' worth of experience in hosting, kernel development and open-source software.
KernelCare comes with unlimited 24/7 support and you can cancel the service at any time. The status of your hosts and subscriptions can be checked with our self-service control panels at https://cln.cloudlinux.com. You can integrate our live patching technology into any third-party system supporting a REST API.
The benefits of KernelCare bring peace of mind.