Automatic Security Updates
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
AppCenter |
Confirmed
|
Wishlist
|
Unassigned |
Bug Description
We should ensure that automatic security updates are enabled out of the box in elementary OS. Security vulnerabilities are found, fixed, and released upstream frequently enough that we really should just deliver these automatically.
One concern that has been raised is bandwidth caps; I agree that not *all* updates should necessarily be automatic (especially on metered connections), but the counterargument for pushing automatic security updates is that if the user's system is online at all, it's not safe unless they have the latest security updates.
unattended-upgrade might be one route (see: https:/
Changed in elementaryos: | |
status: | New → Confirmed |
milestone: | none → loki-beta1 |
assignee: | nobody → Cody Garver (codygarver) |
information type: | Public → Public Security |
Changed in appcenter: | |
milestone: | loki-beta1 → none |
After some research and consideration I decided it would be dangerous for us to do background updates, since the system could shutdown unknowingly or lose power during an upgrade. So there would need to be some kind of GUI inhibiting an unsafe shutdown. And our GUI for installing updates is appcenter, so it's the logical place for this to happen. What exactly this should look like, I'm not sure.