Ubuntu
unattended-upgrades package

package should set up sensible config

Bug #84918 reported by Dave Love
18
This bug affects 1 person
Affects Status Importance Assigned to Milestone
pkgsel (Ubuntu)
Fix Released
Undecided
Colin Watson
unattended-upgrades (Ubuntu)
Fix Released
High
Unassigned
Ubuntu ubuntu-8.10

Bug Description

Binary package hint: unattended-upgrades

I have a dapper server system with unattended-upgrades installed.
It doesn't actually do anything since the package doesn't install
(something like) /etc/apt/apt.conf.d/10periodic from the
update-manager package to configure it to make the upgrades
happen. Its description suggests that just installing it will DTRT,
especially in the absence of any documentation, and it fooled
me as a non-beginner.

It's a security issue because people installing the package would
reasonably expect to get security updates automatically but won't
get them.

Revision history for this message
Michael Vogt (mvo) wrote :

This is not trivial because unattended-upgrades is installed by default on all ubuntu systems.

Changed in unattended-upgrades:
status: Unconfirmed → Confirmed
Revision history for this message
sam tygier (samtygier) wrote :

so how does one enable it on a server?

Revision history for this message
Wouter Stomp (wouterstomp-deactivatedaccount) wrote :

If it is installed by default, then there should be an easy to enable option in e.g. the synaptic preferences.

Revision history for this message
Andrew Conkling (andrewski) wrote :

Wouter, but assuming this is a production server, can we count on the Synaptic preferences for this? AFAIK the only means for doing this is in the Software Sources capplet; how would one do this on a server?

Revision history for this message
Wouter Stomp (wouterstomp-deactivatedaccount) wrote :

I think it would be a good idea to enable automatic unattended security updates by default.

Revision history for this message
Mathias Gug (mathiaz) wrote :

In the case of a server install, update-notifier is not installed.

What about adding a package that drops a file in /etc/apt/apt.conf.d/ to enable automatic security upgrades ? Something like (unattended-upgrade-auto or unattended-upgrade-server) ?

Another option would be to rename unattended-upgrade to unattended-upgrade-common and change unattended-upgrade to create the apt configuration file in /etc/apt/apt.conf.d/.

Revision history for this message
Mathias Gug (mathiaz) wrote :

If unattended-upgrades is chosen as the update-policy during installation the package is installed but security updates are not applied.

Raising the importance to High and milestoning for 8.10.

Changed in unattended-upgrades:
importance: Undecided → High
milestone: none → ubuntu-8.10
status: Confirmed → Triaged
Revision history for this message
Colin Watson (cjwatson) wrote :

We can have the installer do more or less whatever you like here. For preference, though, it would involve preseeding a debconf question before installing unattended-upgrades; that much is trivial.

Revision history for this message
Mathias Gug (mathiaz) wrote :

I've pushed a branch adding a debconf question (unattended-upgrades/enable_auto_updates) at priority medium to ask whether automatic upgrades should be automatically enabled.

Michael could you review it?

The branch is located at lp:~mathiaz/unattended-upgrades/auto-upgrades.

Revision history for this message
Launchpad Janitor (janitor) wrote :

This bug was fixed in the package unattended-upgrades - 0.32ubuntu1

---------------
unattended-upgrades (0.32ubuntu1) intrepid; urgency=low

  * Add debconf question to ask whether automatic updates should be configured
    by default: add debconf template, postinst and postrm scripts that uses
    ucf to manage /etc/apt/apt.conf.d/20auto-upgrades since we don't want to
    enable automatic updates by default. (LP: #84918)

 -- Mathias Gug <email address hidden> Wed, 08 Oct 2008 21:01:52 -0400

Changed in unattended-upgrades:
status: Triaged → Fix Released
Revision history for this message
Colin Watson (cjwatson) wrote :

pkgsel (0.20ubuntu9) intrepid; urgency=low

  * Preseed unattended-upgrades/enable_auto_updates to true if
    unattended-upgrades is selected.

 -- Colin Watson <email address hidden> Fri, 10 Oct 2008 20:59:09 +0100

Changed in pkgsel:
assignee: nobody → kamion
status: New → Fix Released
To post a comment you must log in.
This report contains Public information  
Everyone can see this information.
Subscribing...

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.