Automatic and silent installation of security updates
Zach
uid000 at gmail.com
Fri Jul 8 22:38:58 CDT 2005
Where I work we have one central machine download and maintain a local
repository of updated packages. Then updates are pushed out locally.
This reduces load on the mirrors, and reduces bandwidth consumption.
Also updates are much quicker and standardized. I believe cfengine is
used to enforce this.
On 7/8/05, Jerry Haltom <wasabi at larvalstage.net> wrote:
> > You can't force people to upgrade.
>
> In a corporate deployment it is almost unacceptable to not be able to.
> At the same time, I don't want to schedule a cron at 2 AM because people
> might turn their system off. I also don't want to force it at boot
> because people might want to do it later because they have a job to do
> and can't spare the time.
>
> A decent ability to require updates to be installed that are more than a
> week old, and to automatically install/reboot when not logged on, would
> be awesome. That's what we do with our Windows desktops and it works
> nearly perfectly.
>
More information about the ubuntu-devel
mailing list