Re: tailored security annoucements for Debian Stable
On Thu, Mar 3, 2016 at 12:38 AM, Jérôme Pinguet wrote:
> I already knew about unattended upgrades but they sound a bit too risky
> for production.
> apticron is not security oriented and, as far as i know, it needs lots
> of tweaking to limit itself to security updates.
apticron supports sending email without doing the upgrades.
> debsecan offers a daily email warning by default but I couldn't
> understand if it is sent at a fixed time or as soon as new security
> fixes get available...
Fixed time.
> I ended up adding an @hourly cron job with this command:
> debsecan --suite wheezy --only-fixed --format report --mailto
> my@email.com --update-history
>
> I wonder if I will be warned only once when new security fixes appear or
> on an hourly basis until I upgrade the server...
Hourly basis.
--
bye,
pabs
https://wiki.debian.org/PaulWise
Reply to: