When looking into /etc/passwd and /etc/shadow I found many non human users. I read a bit about it and know what they do (as a group, though specifically I see many I have no clue about). All of them (excluding root (locked pwd) and my human user account) have never established passwords (*'s).
Are there any tests or things I can or should do to ensure these are not leaks and we can trust them.
I wonder what
"${distro_id}ESM:${distro_codename}";
is in the 50unattended-upgrades file. It was enabled by default for me (after enabeling unattended-upgrades package at least.) Right now I disabled it and only have -security enabled for automatic upgrades but I would like to understand what it is and whether it would be good to uncomment that line again.
Here is the block it's in;
Unattended-Upgrade::Allowed-Origins { //
"${distro_id}:${distro_codename}";
"${distro_id}:${distro_codename}-security";
// Extended Security Maintenance; doesn't necessarily exist for
// every release and this system may not have it installed, but if
// available, the policy for updates is such that unattended-upgrades
// should also install from here by default.
// "${distro_id}ESM:${distro_codename}";
// "${distro_id}:${distro_codename}-updates";
// "${distro_id}:${distro_codename}-proposed";
// "${distro_id}:${distro_codename}-backports";
};
Is it some sort of mother that should be enabled before I can enable the -updates, -proposed, -backports?
Thanks a lot.