Hello everyone,
I am working as a sysadmin in a smaller company and currently I am working on migrating and harmonization a handful of linux machines to ubuntu.
Most of them run software like gitea, bookstack, some docker containers, …
I was thinking of enabling unattended-upgrades but I am unsure if this can break things in future. I do have the following setup in unattended-upgrades:
// Note that in Ubuntu security updates may pull in new dependencies
// from non-security sources (e.g. chromium). By allowing the release
// pocket these get automatically pulled in.
Unattended-Upgrade::Allowed-Origins {
"${distro_id}:${distro_codename}";
"${distro_id}:${distro_codename}-security";
// Extended Security Maintenance; doesn't necessarily exist for
// every release and this system may not have it installed, but if
// available, the policy for updates is such that unattended-upgrades
// should also install from here by default.
"${distro_id}ESMApps:${distro_codename}-apps-security";
"${distro_id}ESM:${distro_codename}-infra-security";
// "${distro_id}:${distro_codename}-updates";
// "${distro_id}:${distro_codename}-proposed";
// "${distro_id}:${distro_codename}-backports";
};
So does e.g. a LAMP stack can get broken with this setup?