How to Enable/Disable Unattended Upgrades in Ubuntu 16.04

Dwijadas Dey 2017-07-19 Channel: Linux

Abstract: execute the following command in the terminal. # sudo apt install unattended-upgrades Enable unattended upgrades in ubuntu 16.04 To pick which update

Debian Ubuntu . How-to-Install-Webmin-on-Debian-9-Ubuntu-1604

Ubuntu Debian . How-to-Install-PHP-56-on-Ubuntu-1604--Debian-9

Debian Linux Mint Ubuntu . How-to-Configure-Static-IP-Address-in-Ubuntu-1804-1604-Debian-9-LinuxMint-18

To protect your data in any ubuntu based system, it is imperative to update packages and apply security patches regularly. It is much better if the system itself applies the security updates. The unattended upgrades in Ubuntu 16.04 allow system administrator to automatically install updated packages and security patches whenever it becomes available.

This article covers the installation and configuration of unattended upgrades in Ubuntu 16.04.

Related Read: How to Enable Automatic Updates on Ubuntu 20.04

Install unattended upgrades in ubuntu 16.04

To install unattended-upgrades, execute the following command in the terminal.

 # sudo apt install unattended-upgrades

Enable unattended upgrades in ubuntu 16.04

To pick which updates you want to make automatic by editing the file /etc/apt/apt.conf.d/50unattended-upgrades. This allows apt to search for new updates and upgrades. The default option is security.

# vi /etc/apt/apt.conf.d/50unattended-upgrades

Adjust the following lines that suit your needs.

Unattended-Upgrade::Allowed-Origins {
 "${distro_id}:${distro_codename}";
 "${distro_id}:${distro_codename}-security";
 ..........................
 ..........................
 ..........................
 "${distro_id}ESM:${distro_codename}";
 // "${distro_id}:${distro_codename}-updates";
 // "${distro_id}:${distro_codename}-proposed";
 // "${distro_id}:${distro_codename}-backports";
 };

The default configuration upgrades security packages from security APT source to automatically. You can also configure automatic updates from other APT sources such as updates, proposed and back-ports by uncommenting the above corresponding lines.

Block packages from automatic updating

You can blacklist few packages from being automatically updated by adding them in the blacklist section like below. Anything that comes under this list will not be updated automatically. In the following configuration, the packages vim, libc6, libc6-dev, libc6-i686 will not be automatically updated.

Unattended-Upgrade::Package-Blacklist {
 "vim";
 "libc6";
 "libc6-dev";
 "libc6-i686";
};

At last, edit the file /etc/apt/apt.conf.d/10periodic to configure when update, upgrade and auto-clean should run.

# vi /etc/apt/apt.conf.d/10periodic
APT::Periodic::Update-Package-Lists "1";
APT::Periodic::Download-Upgradeable-Packages "1";
APT::Periodic::AutocleanInterval "7";
APT::Periodic::Unattended-Upgrade "1";

The above configuration lets unattended upgrades update the package list, downloads and installs available upgrades every day and the local download archive is cleaned every week. If you want to disable automatic updates, just change the value 1 to 0. Check the log of unattended-upgrades inside the folder /var/log/unattended-upgrades. You can disable the automatic updates by making the value of the parameter APT::Periodic::Update-Package-Lists to "0".

Or you can get rid of the tool itself by below command

$ sudo apt-get remove unattended-upgrades

For older versions, try below command

$ sudo apt-get remove update-manager

Now you can keep important services in any Ubuntu based system up to date and will be automatic. The automatic updates will be applied only to the services provided by the package repositories and will not be applied to the services compiled from source.