實作環境:Ubuntu 18.04.5 LTS
1. 安裝unattended-upgrades
apt install unattended-upgrades2. 檢查狀態
systemctl status unattended-upgrades● unattended-upgrades.service - Unattended Upgrades Shutdown
Loaded: loaded (/lib/systemd/system/unattended-upgrades.service; enabled; vendor preset: enabled)
Active: active (running) since Fri 2020-09-18 19:16:16 HKT; 7min ago
Docs: man:unattended-upgrade(8)
Main PID: 1107 (unattended-upgr)
Tasks: 2 (limit: 2165)
CGroup: /system.slice/unattended-upgrades.service
└─1107 /usr/bin/python3 /usr/share/unattended-upgrades/unattended-upgrade-shutdown --wait-for-signal
3.修改設置
nano /etc/apt/apt.conf.d/50unattended-upgrades取消以下幾項注解"${distro_id}:${distro_codename}-security";
...
Unattended-Upgrade::Mail "user@example.com";
...
Unattended-Upgrade::MailOnlyOnError "true";
nano /etc/apt/apt.conf.d/20auto-upgrades"1"表示自動更新,"0"表示不更新
APT::Periodic::Update-Package-Lists "1";
APT::Periodic::Unattended-Upgrade "1";
4. 測試
unattended-upgrades --dry-run -–debug如無意外,便完成了。
ref:
https://phoenixnap.com/kb/automatic-security-updates-ubuntu
