Re: How do I permanently disable unattended downloads of software/security updates?
Hi.
On Tue, Jun 01, 2021 at 07:27:22PM +0200, Stella Ashburne wrote:
> > I'm curious what will be shown in this configuration by:
> >
> > apt-config dump | grep Periodic
> >
> One kind person has already asked me for the output of
My bad. I haven't followed this thread closely until now.
> apt-config dump | grep -i APT::Periodic
>
> Below is the output of the above command:
>
> APT::Periodic "";
> APT::Periodic::Download-Upgradeable-Packages "0";
> APT::Periodic::Unattended-Upgrade "0";
Ok, that complicates things slightly.
Is there anything that can be attributed to this behaviour at
/var/log/apt/history.log* ? Could be anything, you'll need to evaluate
Start-Date attribute.
Of course, it's unlikely there will be anything, so it's time for an
old magic trick - auditd.
Install auditd package.
Invoke:
auditctl -w /usr/bin/apt -p rx
auditctl -w /usr/bin/apt-get -p rx
Wait for the next occurence of the problem, to speed things up - invoke
"apt clean".
To know exact time someone invoked apt without your knowledge - invoke
"ausearch -f /usr/bin/apt -i".
Once you know an exact time the problem happens - it should be trivial
to search, say, journald entries for anything related.
In short, dear listers, auditd. Have it, use it. Thing solves issues,
and does it in non-intrusive way.
Oh, and another question. Do you happen to have packagekit to be
installed? This Fine Piece™ of RedHat middleware (have to keep the
archives list PG-13 compliant, you see ;) is known to perform
questionable tricks like this.
Reco
Reply to: