Software source not enabled after install

Bug #181294 reported by KevinM
258
Affects Status Importance Assigned to Milestone
Ubuntu
New
Undecided
Unassigned

Bug Description

After installing either Ubuntu 7.10 i-386 or 64-bit (on a AMD64), no Software source has been enabled as default. This means that as soon as Update Manager is run, no updates seem to be needed. This is incorrect as any security updates, that are required, will not be installed. I suggest that at least Canonical supported Open software should be activated under the Ubuntu Software Tab of Software Sources. Once activated, Update Manager will find that several items need to be updated.
During both installations a message was displayed 'The security updates on security.ubuntu.com have not been installed' as well as something about /etc/apt/sources.list file being commented out. This may have caused the problem.

ProblemType: Bug
Architecture: i386
Date: Tue Jan 8 16:43:48 2008
DistroRelease: Ubuntu 7.10
Package: firefox 2.0.0.11+2nobinonly-0ubuntu0.7.10
PackageArchitecture: i386
SourcePackage: firefox
Uname: Linux kevin-desktop 2.6.22-14-generic #1 SMP Tue Dec 18 08:02:57 UTC 2007 i686 GNU/Linux

Tags: apport-bug
Revision history for this message
KevinM (kevbert1) wrote :
Revision history for this message
KevinM (kevbert1) wrote :

Hi,
I now know why this problem occurred. When installing Ubuntu 7.10 (any version) from CD the installer assumes that an internet connection is available. In my case this was not so. To remedy the problem of 'security updates' during installation I connected the PC to a router via a network to get web access. On a new installation no security update message errors were displayed and two software sources were automatically enabled with no manual intervention.
I still believe that these two software sources should be enabled where no web access is available during installation. These are Canonical supported Open Source software (main) and community maintained Open Source software (universe).

Revision history for this message
Augusto Santos (mkhaos7) wrote :

IMHO, ALL update/security sources should be available after any install, even if it is made offline.
This might be the case in enterprises where people install Ubuntu offline and later put it online.

This surely is a high level security issue, since, for me, this is not expected behavior, and can lead to server misconfiguration.

To post a comment you must log in.
This report contains Public Security information  
Everyone can see this security related information.

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.