Bug#711826: no more unattended upgrades since Wheezy is out
Just for the records, this is my current configuration:
Unattended-Upgrade::Allowed-Origins {
${distro_id} stable;
${distro_id} oldstable;
${distro_id} stable-security;
${distro_id} oldstable-security;
${distro_id} stable-updates;
${distro_id} oldstable-updates;
${distro_id} ${distro_codename}-security;
${distro_id} ${distro_codename}-updates;
};
AFAICS it should continue to work when Jessie comes out,
does it?
Regards
Harri
--
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#711826: no more unattended upgrades since Wheezy is out
On Mon, Jul 08, 2013 at 12:09:24PM -0700, Andrew Pimlott wrote:
Jumping into this bug...
It would definitely help me to have one unattended-upgrades
configuration that works without change across multiple Debian releases,
even when I choose to stay behind the current stable for a while. The
problem is, the archive/suite in Debian release files seems to be
oldstable or stable, while ${distro_codename} is squeeze or wheezy. So
there's nothing I can put in Allowed-Origins to track my current
release.
[..]
The current version of unattended-upgrades has the following lines:
Unattended-Upgrade::Origins-Pattern {
origin=Debian,archive=${distro_codename},label=Debian-Security;
This should fix the problem. As a workaround you can put oldstable
into the allowed origins for now.
(By the way, the Allowed-Origins entries like
${distro_id} ${distro_codename}-security;
seem to be meaningless for Debian and should probably be removed to
reduce confusion.)
Its not in the debian package anymore.
Cheers,
Michael
--
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#711826: no more unattended upgrades since Wheezy is out
Excerpts from Michael Vogt's message of Sun Jul 14 23:18:14 -0700 2013:
The current version of unattended-upgrades has the following lines:
Unattended-Upgrade::Origins-Pattern {
origin=Debian,archive=${distro_codename},label=Debian-Security;
This should fix the problem. As a workaround you can put oldstable
into the allowed origins for now.
Cool, thanks!
Andrew
--
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#711826: no more unattended upgrades since Wheezy is out
Jumping into this bug...
It would definitely help me to have one unattended-upgrades
configuration that works without change across multiple Debian releases,
even when I choose to stay behind the current stable for a while. The
problem is, the archive/suite in Debian release files seems to be
oldstable or stable, while ${distro_codename} is squeeze or wheezy. So
there's nothing I can put in Allowed-Origins to track my current
release.
I think the easiest fix would be to add something like ${distro_archive}
with the current archive name. (I don't know where to get this from,
though, since it's not part of lsb_release.get_distro_information().) A
more flexible alternative would be to extend the Allowed-Origins syntax
to allow matching on the codename and label of the release. For
example, if you could match on the label Debian-Security, you could
really limit unattended-upgrades to security upgrades.
(By the way, the Allowed-Origins entries like
${distro_id} ${distro_codename}-security;
seem to be meaningless for Debian and should probably be removed to
reduce confusion.)
Andrew
--
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#711826: no more unattended upgrades since Wheezy is out
Hi Michael, On Mon, 17 Jun 2013 08:09:35 +0200 Michael Vogt m...@debian.org wrote: Attached is a patch for oldstable, unfortunately there is a chicken-and-egg problem here as the update itself will not come from stable-security. So it may well be that there is no solution other than to touch all the servers in one way or the other. Sorry for that. Attached? But this should definitely be improved for wheezy, I will prepare a update that includes oldstable. As written in the report, a solution for Wheezy would be fine. I guess the real problem is that the package owner sets the distribution name inside the package. A small typo or some misinterpreted naming guides might have severe impacts. Not to mention that the distribution information inside the package makes it suspicious for other distributions. Many thanx Harri -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#711826: no more unattended upgrades since Wheezy is out
On Fri, Jun 14, 2013 at 06:07:47AM +0200, Harald Dunkel wrote: Changing config files for 1 or 2 PCs is not the problem. The problem is, that its not unattended anymore. I have to access appr. 150 servers, desktops and laptops to make this work again. Thats a lot of work for a package that promised to do its job silently in the background. I would highly appreciate a better solution for Wheezy without breaking things when Jessie comes out. Attached is a patch for oldstable, unfortunately there is a chicken-and-egg problem here as the update itself will not come from stable-security. So it may well be that there is no solution other than to touch all the servers in one way or the other. Sorry for that. But this should definitely be improved for wheezy, I will prepare a update that includes oldstable. Cheers, Michael -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#711826: no more unattended upgrades since Wheezy is out
2013/6/14 Harald Dunkel ha...@afaics.de: Changing config files for 1 or 2 PCs is not the problem. The problem is, that its not unattended anymore. I have to access appr. 150 servers, desktops and laptops to make this work again. Thats a lot of work for a package that promised to do its job silently in the background. You can easily deploy such a small replace on your network with several tools (clusterssh / pssh / puppet). I would highly appreciate a better solution for Wheezy without breaking things when Jessie comes out. How is this breaking things?! U-A does what was instructed to do. Cheers -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#711826: no more unattended upgrades since Wheezy is out
Changing config files for 1 or 2 PCs is not the problem. The problem is, that its not unattended anymore. I have to access appr. 150 servers, desktops and laptops to make this work again. Thats a lot of work for a package that promised to do its job silently in the background. I would highly appreciate a better solution for Wheezy without breaking things when Jessie comes out. Harri -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#711826: no more unattended upgrades since Wheezy is out
Package: unattended-upgrades
Version: 0.62.2
Since Wheezy is out the unattended-upgrades for Squeeze
don't work anymore. The default configuration in
/etc/apt/apt.conf.d/50unattended-upgrades says
Unattended-Upgrade::Allowed-Origins {
${distro_id} stable;
${distro_id} ${distro_codename}-security;
// ${distro_id} ${distro_codename}-updates;
// ${distro_id} ${distro_codename}-proposed-updates;
};
but security upgrades like the most recent libkrb5-3
are not installed automagically. Looking at its
changelog entry I see
krb5 (1.8.3+dfsg-4squeeze7) oldstable-security; urgency=medium
* Fix cve-2002-2443: kpasswd udp ping-pong (Closes: #708267)
:
:
Note the oldstable-security.
Regards
Harri
--
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#711826: no more unattended upgrades since Wheezy is out
2013/6/10 Harald Dunkel harald.dun...@aixigo.de:
Since Wheezy is out the unattended-upgrades for Squeeze
don't work anymore. The default configuration in
/etc/apt/apt.conf.d/50unattended-upgrades says
Unattended-Upgrade::Allowed-Origins {
${distro_id} stable;
stable == wheezy now, thus you probably need to update your config
with oldstable.
Cheers
--
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
