Should I enable automatic security updates on a Ubuntu server? [closed]

security linux ubuntu ubuntu-12.04 ubuntu-14.04

It depends on what your machine does ultimately. Does it run mission critical applications that can not crash EVER? Probably not the best for auto updates then. Is it sitting on the egress point of your network? probably a good candidate.

It comes down to weighing security vs stability and finding what your acceptable compromises are. Most likely you're not going to be the target of a zero day but maybe you have very sensitive data that absolutely can't get out, it's a decision you have to make.

My suggestion is to design your network in such a way that the most security filtering is done on the edge of your network (blocking external applications, smart fire-walling, possible DMZ, etc.) and then treating the rest in a way that is most appropriate for your organization - whether that means nightly reboots with updates or weekly or automatic :)


Yes. You should enable these automatic updates. You are far more likely to have your system compromised by missing or delaying an update than for these updates to impact your running system negatively.

Related

$X^m-a$ and $X^m-b$ irreducible with same splitting field, prove relation between $a$ and $b$.
AH01797: client denied by server configuration: /usr/share/doc
How to troubleshoot rx_missed_errors?
Number of real roots for $x^4+5|x^3|+3x^2+20|x|+10=0$ are?
Applications of Hille-Yosida Theorem to Partial Differential Equations
how to easily reconnect to "unavailable" network shares
How to reference a hiera variable from elsewhere the hierarchy?
Closed semialgebraic subset of $\mathbb{R}^2$
Capture template output on the fly
Is it possible to get a windows-version from a powershell command on Windows Server 2016 Nano?
How to prove that $7^{31} > 8^{29}$
Git clone from Bitbucket.org on EC2 server using SSH keys