I'd like to keep a desktop automatically up to date with 'security updates' without any user input (as my friend is not comfortable applying updates).
I was thinking of using the debian package 'unattended-upgrade' on this LMDE install for a friend. Looks like it may be designed for this??
I've noticed that you can select the 'unattended-upgrades service' (Control centre - services) but I'm unsure when the unattended-upgrades package will be scheduled to run (I've not been able to figure this out from the documentation). The desktop is booted up most days but does not remain 'on' for extended periods of time.
What is the best way of keeping an LMDE system up to date automatically with just security updates?
Best way to automatically apply security updates??
Forum rules
LMDE 2 has reached end of support as of 1-1-2019
LMDE 2 has reached end of support as of 1-1-2019
Best way to automatically apply security updates??
Last edited by LockBot on Wed Dec 28, 2022 7:16 am, edited 1 time in total.
Reason: Topic automatically closed 6 months after creation. New replies are no longer allowed.
Reason: Topic automatically closed 6 months after creation. New replies are no longer allowed.
Re: Best way to automatically apply security updates??
Setup a script that runs:
Code:
apt-get update && apt-get install $(debsecan --suite testing --format packages --only-fixed)
Description: Debian Security Analyzer
debsecan is a tool to generate a list of vulnerabilities which affect
a particular Debian installation. debsecan runs on the host which is
to be checked, and downloads vulnerability information over the
Internet. It can send mail to interested parties when new
vulnerabilities are discovered or when security updates become
available.
Never really a good idea to autoupdate Testing or sid.
Code:
apt-get update && apt-get install $(debsecan --suite testing --format packages --only-fixed)
Description: Debian Security Analyzer
debsecan is a tool to generate a list of vulnerabilities which affect
a particular Debian installation. debsecan runs on the host which is
to be checked, and downloads vulnerability information over the
Internet. It can send mail to interested parties when new
vulnerabilities are discovered or when security updates become
available.
Never really a good idea to autoupdate Testing or sid.