are unattended updates a good idea?

To: debian-security@lists.debian.org
Subject: are unattended updates a good idea?
From: Ml Ml <mliebherr99@googlemail.com>
Date: Sat, 31 Jan 2015 09:58:39 +0100
Message-id: <[🔎] CANFxOjB-WBmSn3Q4i4eqEvvDNjbSG5wRSkHdvrYBeBzGW=5yTA@mail.gmail.com>

Hello List,

i have got about 50 Debian 6+7 Servers. They are doing all kind of
things like Webserver, Mailserver, DNS, etc…

I am using apticron to keep track of the updates, but i seem to use
more and more time updating the hosts.

Recently i came across the unattended-upgrade project
https://wiki.debian.org/UnattendedUpgrades.

Do you think it is a good idea to do security updates automatically? I
just don’t want to wake up one morning not having ssh access to my
Servers because an update broke everything. The servers are still very
important. I should not crash them at any time. On the other hand i
would like to be up2date with my security patches.

Is anyone else facing the same problem? What are your experiences
doing (blind) automatic security updates.

Or are you maybe using something completly diffrent like puppet?

Whats your practical experience with lots of servers?  (i am not
interested in theoretical advises :-P )

Thanks a lot,
Mario

Reply to:

Follow-Ups:
- Re: are unattended updates a good idea?
  - From: Andrew Beverley <andy@andybev.com>
- Re: are unattended updates a good idea?
  - From: Michael Zoet <Michael.Zoet@zoet.de>
- Re: are unattended updates a good idea?
  - From: Stephen Dowdy <sdowdy@ucar.edu>

Prev by Date: Re: [SECURITY] [DSA 3145-1] privoxy security update
Next by Date: Re: are unattended updates a good idea?
Previous by thread: Re: [SECURITY] [DSA 3145-1] privoxy security update
Next by thread: Re: are unattended updates a good idea?
Index(es):
- Date
- Thread