On Sun, Jan 19, 2003 at 01:33:54PM +0100, Horst Pflugstaedt wrote: > On Sun, Jan 19, 2003 at 12:45:03PM +0100, Ivo Marino wrote: > > Hello debian-security folks, > > > > I'll post my question on this mailing list in the hope to find some > > interesting pointers and I'm quite sure someone in here has or has > > allready solved my same problems. > > > > Well, I admin different Debian GNU/Linux stable machines on different > > networks, each time a new security update comes out from the DSA I actually > > update by hand via ssh all the Debian GNU/Linux servers in my network. > > Although a cron-job is generally seen as insecure you might think about one > local repository for downloaded .debs which you could use for all your > other servers to use for a cron'd update/upgrade. > > Any suggestions?
I've setup apt-proxy server in my network, all Debian packages for each server in this network are downloaded from there. I think using a cron-job like cron-apt for updating security related packages automaticly on the servers not only could be a problem considering the securtiy point of view but also this could corrupt a server configuration and leave the system/service out of function. I prefer to launch manually a script which logs via ssh into each server and performs the packages update procedure. Anyone has allready written a script like the one described above or maybe knows an allready existing application which could perform this task? Thanks. > > > Greetings > Horst. > > -- > Up against the net, redneck mother, > Mother who has raised your son so well; > He's seventeen and hackin' on a Macintosh, > Flaming spelling errors and raisin' hell... > > > -- > To UNSUBSCRIBE, email to [EMAIL PROTECTED] > with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED] > -- =-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-= Ivo Marino [EMAIL PROTECTED] UN*X Developer, running Debian GNU/Linux irc.FreeNode.net #debian http://eimbox.org/~eim http://eimbox.org =-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=
pgp6GAnW8PUyU.pgp
Description: PGP signature
