Hello we are a web-hosting company with about 300 debian linux servers and we would like to have some tools that ease our job regrading patch management.
We'd like to have two areas covered:
1st: keeping an eye on those servers that are missing security updates (establish a software / security baseline)
2nd: finding a way to automatize patch management like some kind of distribution system, so we don't have to logon on each server applying these patches but just getting a list of the results.
What are your ways / tools to make certain that your Linux servers are all fully patched.