How to set up a staging apt repository to securely manage upgrades

Posted by andreash on Server Fault See other posts from Server Fault or by andreash
Published on 2010-05-22T12:42:39Z Indexed on 2010/05/22 12:51 UTC
Read the original article Hit count: 299

Filed under:
|

Hello,

I would like to be able to run automatic apt-get upgrade (once per hour) on our servers (Ubuntu 10.04), so that I don't have to do it manually on all of them (about 15). However, for production machines, that's not a good idea ...

So here's my idea:

Set up a local repository for all 'approved' updates for critical packages. I would then push updated packages from upstream to our local repo after I tested them, and all servers could automatically (apt-cron?) upgrade from this repository.

So my question is this: How do I configure apt on the clients so that they use the local repository only for all packages which exist on the local repository, and the upstream one for all other packages?

Does this actually make sense? Or am I missing something?

Anyways, thanks for your insight!

Andreas.

© Server Fault or respective owner

Related posts about apt

Related posts about repository