Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Change Updatenotification #2461

Merged
merged 12 commits into from Apr 1, 2023
Merged

Change Updatenotification #2461

merged 12 commits into from Apr 1, 2023

Conversation

enoch85
Copy link
Member

@enoch85 enoch85 commented Mar 31, 2023
edited

Follow up on: 7c7b5f5

@szaimen Any thoughts on this? I ask becasue you implemented it.

My idea here is to run updates less frequently. Once per month is enough.

@enoch85
Change Updatenotification
be51283 
Signed-off-by: Daniel Hansson <mailto@danielhansson.nu>
@enoch85
update during installation
981b1fa 
Signed-off-by: Daniel Hansson <mailto@danielhansson.nu>
@enoch85
fix crontab
537f408 
Signed-off-by: Daniel Hansson <mailto@danielhansson.nu>
@enoch85
once per week is not so spammy either
afc25d4 
Signed-off-by: Daniel Hansson <mailto@danielhansson.nu>
@enoch85 enoch85 requested a review from szaimen March 31, 2023 11:49
@szaimen
Copy link
Collaborator

szaimen commented Mar 31, 2023

Hm... Is there a specific reason why the update script should only run once a month and not every week? This means some instances might be vulnerable in worst case for a whole month without any updates installed...

@enoch85
Copy link
Member Author

enoch85 commented Mar 31, 2023

Hm... Is there a specific reason why the update script should only run once a month and not every week? This means some instances might be vulnerable in worst case for a whole month without any updates installed...

Yes, it's about uptime. I'm aware of the downside, but if you want to update more frequently then you can just change the crontab. Once per month is enough from a security standpoint if you ask me. In worst case, some CVE might not be patched instantly (aka next week) but 3 weeks more is not a problem I'd say - maybe if you're a government, but not a "regular user".

szaimen
szaimen requested changes Apr 1, 2023
View reviewed changes
nextcloud_install_production.sh Outdated Show resolved Hide resolved
nextcloud_update.sh Show resolved Hide resolved
nextcloud_update.sh Outdated Show resolved Hide resolved
static/updatenotification.sh Show resolved Hide resolved
szaimen
szaimen reviewed Apr 1, 2023
View reviewed changes
Copy link
Collaborator

@szaimen szaimen left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

So if you really want to change it to monthly adjusting only the wording shoupd be enough

@enoch85
check every day
e666563 
Signed-off-by: Daniel Hansson <mailto@danielhansson.nu>
@enoch85
check every day
f6d7d04 
Signed-off-by: Daniel Hansson <mailto@danielhansson.nu>
@enoch85
check every day
e813cc2 
Signed-off-by: Daniel Hansson <mailto@danielhansson.nu>
@enoch85
use the recomended method
e02ace4 
Signed-off-by: Daniel Hansson <mailto@danielhansson.nu>
@enoch85
check for major version - ask to update
2577e8f 
Signed-off-by: Daniel Hansson <mailto@danielhansson.nu>
@enoch85 enoch85 merged commit 197e233 into master Apr 1, 2023
7 checks passed
@delete-merged-branch delete-merged-branch bot deleted the updatenotification branch April 1, 2023 23:52
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@szaimen szaimen szaimen requested changes

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

None yet
2 participants
@enoch85 @szaimen