A presentation by Justin Mayer
Friday, February 20, 2015
Familiarity with Linux package management…
and Docker containers…
will be useful but not required ☺
There is no menu of choices
“Safer” not to upgrade automatically
Installing manually is easy enough:
apt-get install unattended-upgrades
You think you are covered
Create /etc/apt/apt.conf.d/20auto-upgrades
:
APT::Periodic::Update-Package-Lists "1";
APT::Periodic::Unattended-Upgrade "1";
Kernel updates require a reboot to take effect
How do you know when that is? (when you log in)
Just landed:
https://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=1d9c5d79e6e4385aea6f69c23ba543717434ed70
unattended-upgrades
?Mark the upstream repository as linked
Still need to pull the new image
… and respawn the container
Justin Mayer — @jmayer
Monitorial — @monitorial
This presentation:
justinmayer.com/talks/scale13x/server-security/