On Thu, Mar 3, 2016 at 12:38 AM, Jérôme Pinguet wrote: > I already knew about unattended upgrades but they sound a bit too risky > for production. > apticron is not security oriented and, as far as i know, it needs lots > of tweaking to limit itself to security updates.
apticron supports sending email without doing the upgrades. > debsecan offers a daily email warning by default but I couldn't > understand if it is sent at a fixed time or as soon as new security > fixes get available... Fixed time. > I ended up adding an @hourly cron job with this command: > debsecan --suite wheezy --only-fixed --format report --mailto > [email protected] --update-history > > I wonder if I will be warned only once when new security fixes appear or > on an hourly basis until I upgrade the server... Hourly basis. -- bye, pabs https://wiki.debian.org/PaulWise
