I followed the documentation for enabling automatic upgrades in Ubuntu servers, but it's not really updating anything at all.
My /etc/apt/apt.conf.d/50unattended-upgrades looks almost like the default.
// Automatically upgrade packages from these (origin, archive) pairs
Unattended-Upgrade::Allowed-Origins {
"Ubuntu karmic-security";
"Ubuntu karmic-updates";
};
// List of packages to not update
Unattended-Upgrade::Package-Blacklist {
// "vim";
// "libc6";
// "libc6-dev";
// "libc6-i686";
};
// Send email to this address for problems or packages upgrades
// If empty or unset then no email is sent, make sure that you
// have a working mail setup on your system. The package 'mailx'
// must be installed or anything that provides /usr/bin/mail.
Unattended-Upgrade::Mail "[email protected]";
// Automatically reboot *WITHOUT CONFIRMATION* if a
// the file /var/run/reboot-required is found after the upgrade
//Unattended-Upgrade::Automatic-Reboot "false";
The directory /var/log/unattended-upgrades/ is empty. Running /etc/init.d/unattended-upgrades start is not very nice:
root@mozart:~# /etc/init.d/unattended-upgrades start
Checking for running unattended-upgrades: root@mozart:~#
Something seems to be broken, but I'm not sure why.
I have pending updates and they are not being applied:
root@mozart:~# aptitude safe-upgrade
Reading package lists... Done
Building dependency tree
Reading state information... Done
Reading extended state information
Initializing package states... Done
The following packages will be upgraded:
linux-libc-dev
1 packages upgraded, 0 newly installed, 0 to remove and 0 not upgraded.
Need to get 0B/743kB of archives. After unpacking 4096B will be used.
Do you want to continue? [Y/n/?]
In all the servers I have, unattended upgrades seems to have been disabled:
root@mozart:~# apt-config shell UnattendedUpgradeInterval APT::Periodic::Unattended-Upgrade
root@mozart:~#
Any ideas what am I missing?
Check the actual documentation for your Ubuntu version here:
For Ubuntu 11.10, to enable it, you do:
(it's an interactive dialog) which will create
/etc/apt/apt.conf.d/20auto-upgradeswith the following contents:So indeed the information in Ubuntu 10.04 server guide is out-of-date.
If you're using Puppet like we do at Bippo and Soluvas, you can use something like this to automate proper unattended-upgrades configuration:
Make sure to provide the templates/files
50unattended-upgradesand20auto-upgradesas you see fit.I'm also updating the Ubuntu Wiki page to reflect this.
I don't see anything wrong with your
/etc/apt/apt.conf.d/50unattended-upgrades. Mine looks almost like yours but I only let security upgrades be applied automatically, nothing else. I also have it set to send mail simply to "root" (Postfix handles the rest).But: the init script
/etc/init.d/unattended-upgradesis not for running unattended upgrades. It just checks whether the unattended upgrade process is running and waits until it exits. I don't really know why it is needed or why it does what it does (it wasn't even present on previous Ubuntu versions) but it is not the way to do unattended upgrades.Instead there is, on Ubuntu, a Python program called
unnattended-upgradesthat does the work. Try running that manually and see what happens. Also check the output of the commandIt should say
UnattendedUpgradeInterval='1', indicating that you configured APT correctly to allow for unattended upgrades.Ubuntu runs
/etc/cron.daily/aptdaily from cron. If you look at that script you see that it does various APT-related things, among them unattended upgrades. My guess is that you somehow disabled that cron script and so nothing happens unattended.That's it, more or less, off the top of my head. Please post a followup if you have tried my ideas without success.
HTH
Have you check /etc/apt/apt.conf.d/10periodic ?
it should have the last line