automate updates in Lenny
in [Debian]
|
Prev: How do I get the mbr package to do its job quietly?
Next: Keyboard gets stuck when closing PPP (was: Problems when logging out Gnome)
From: Clive McBarton on 9 Apr 2010 19:40 -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Ron Johnson wrote: > Anyway, the cron-apt package does what you want. It is recommended, > though, to use it only for downloads. It does help the OP since he uses apt-get, but what about the people who normally use aptitude? There's no "cron-aptitude" package. And though cron-apt can be configured to actually run aptitude, I don't get the impression that it has really been tested that way. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.9 (GNU/Linux) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iEYEARECAAYFAku/ujoACgkQ+VSRxYk44081HACgi1eRESKUeGr3uCMTvANuvrFJ 6uUAni0/x+HETBqXee0iaemKsl3gAiff =zNjl -----END PGP SIGNATURE----- -- To UNSUBSCRIBE, email to debian-user-REQUEST(a)lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmaster(a)lists.debian.org Archive: http://lists.debian.org/4BBFBA3B.20009(a)web.de
From: John Hasler on 9 Apr 2010 20:30 Clive writes: > It does help the OP since he uses apt-get, but what about the people > who normally use aptitude? If you are only using it for downloads (usual) it doesn't matter. -- John Hasler -- To UNSUBSCRIBE, email to debian-user-REQUEST(a)lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmaster(a)lists.debian.org Archive: http://lists.debian.org/876340cgqo.fsf(a)thumper.dhh.gt.org
From: thib on 9 Apr 2010 21:10 Chris Hiestand wrote: > On Apr 7, 2010, at 12:27 PM, Ron Johnson wrote: > >> On 2010-04-07 13:52, Jozsi Vadkan wrote: >>> [snip] >> That's a foolish thing to do, since blind acceptance can lead to a broken system. > > Maybe so, but I've been using automatic upgrades for the last 2-3 years on many stable systems without a problem. The nice thing about staying within the stable distribution is that typically the only updates are security updates which are generally very small changes. > > When you get to the scale of managing tens or hundreds of debian systems it's easier to automatically upgrade and fix any problems in the off-chance they happen. If you wanted to be more careful, one solution is to setup your systems in such a way that a small group of computers get updated before the rest, as an early warning system. > > The major package changes happen between inter-distribution (eg etch -> lenny), which always need a human supervisor. This is acceptable on a larger scale because that only happens every 1.5 - 2 years. > > Also if you have other management software (eg cfengine, puppet) in place, it helps mitigate problems when upgrading debian packages or distributions - decreasing the cost of a package upgrade mishap across many systems. As nicely put in the reference (2.7.5): "If the risk of breaking an existing stable system by the automatic upgrade is smaller than that of the system broken by the intruder using its security hole which has been closed by the security update, you should consider using [the] automatic upgrade [...]" In other words, use automatic security upgrades if you can't maintain the system actively and have enemies. -thib -- To UNSUBSCRIBE, email to debian-user-REQUEST(a)lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmaster(a)lists.debian.org Archive: http://lists.debian.org/4BBFCF53.4050901(a)stammed.net
From: Clive McBarton on 10 Apr 2010 03:00 -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 John Hasler wrote: > Clive writes: >> It does help the OP since he uses apt-get, but what about the people >> who normally use aptitude? > > If you are only using it for downloads (usual) it doesn't matter. Certainly so. What I meant to ask is what to do if you (like the OP) want automatic upgrades (downloaded and installed without the admin present) but (unlike the OP) only use aptitude and never apt-get. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.9 (GNU/Linux) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iEYEARECAAYFAkvAH+QACgkQ+VSRxYk440/QbACgrL9aJaRWGQhmJ30aDYGTDnQF G5YAn3Rj1JHGPCZ3pZcPs5cpAQOvlRfx =TE7p -----END PGP SIGNATURE----- -- To UNSUBSCRIBE, email to debian-user-REQUEST(a)lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmaster(a)lists.debian.org Archive: http://lists.debian.org/4BC01FE4.8040501(a)web.de
From: Andrei Popescu on 10 Apr 2010 04:50
On Sat,10.Apr.10, 08:51:16, Clive McBarton wrote: > Certainly so. What I meant to ask is what to do if you (like the OP) > want automatic upgrades (downloaded and installed without the admin > present) but (unlike the OP) only use aptitude and never apt-get. It doesn't matter. Mixing apt-get and aptitude is not a problem anymore. Regards, Andrei -- Offtopic discussions among Debian users and developers: http://lists.alioth.debian.org/mailman/listinfo/d-community-offtopic |