Installing all updates via unattended-upgrades

Problem Description

I’ve noticed that Sympl has unattended-upgrades configured with the default settings, i.e. only installing security updates. Is it likely to break anything if I enable:

"origin=Debian,codename=${distro_codename}-updates";

This is what I do on other non-Sympl servers because I’ve found over many years that the hassle of manually logging into to boxes and applying updates is higher than any hassle caused by a broken update (which rarely happens for my use cases).

Environment

• Sympl Version [9.0/10.0]: 10.0
• Sympl Testing Version? [Yes/No] No
• Debian Version [Buster/Stretch]: Buster
• Hardware Type? [Dedicated/Virtual/Pi] Virtual
• Hosted On? [name of hosting co] Mythic Beasts

There’s not usually that much movement on the -updates repo (stuff like tzdata, CA certs and clamav updates seem to be all that been added this year), so it should be fairly safe, although I suspect you may need to adjust APT pinning for it to consider things from that repo.

As is, the vast majority of users should be fine with just the normal security fixes unless they have something very specific they need a new version of.

This topic was automatically closed 10 days after the last reply. New replies are no longer allowed.