On Tue, Jan 18, 2005 at 11:07:29AM -0500, Nick Bargnesi wrote: > > > I would suggest disabling it too. A better idea would be to have that > > > stuff executing in a cron job during down time. Remembering my > > > University years, I would not have wanted to wait for my workstation > > > to retrieve updates. > > Yeah, but you want the system to come up "clean" at first boot.... > How do you mean clean? I've never needed to reboot after package > updates. He could always run the job at a particular time with cron, > or with anacron, or atd, or whatever; and force a reboot afterwards. Not that. I mean that if a system has been down for a while, you don't want to wait N hours for security updates to be applied. You want them before system services even start, so there's no window of vulnerability. -- Matthew Miller mattdm@xxxxxxxxxx <http://www.mattdm.org/> Boston University Linux ------> <http://linux.bu.edu/>
