>> For us, we always use pg_upgrade even for minor updates because it >> feels safer to me. That being said, we rarely do minor updates and >> just do majors because upgrading is just hard enough (lots of >> testing!) we tend to wait and then jump further. Upgrading is known to >> take a maintenance window; we just plan things that way. Your organization may have different needs. > >Yeah, but that way you're almost guaranteed to run an unsupported & vulnerable release for quite some time, until the next major one is ready ) If we ran into a true bug that affected us, we'd upgrade sooner. Thankfully, the PG team is great about putting out quality software with a low bug rate. Running a few minor versions back from the current is OK for us; we're always on a supported major version (so we could upgrade to the current minor version if really required). This is an organizational decision based on where it's better to spend time and effort. OTOH, the better partitioning of v12 is a feature that will get us to upgrade sooner. :) As for security, we run in a very protected environment. If we are compromised, it'll be by an inside person and there's really no tech defense against that. Upgrading the Pg software isn't all that hard, we even have it automated. The upgrade process for our application is what's so hard -- again, lots of testing/man-hours required. HTH, Kevin This e-mail transmission, and any documents, files or previous e-mail messages attached to it, may contain confidential information. If you are not the intended recipient, or a person responsible for delivering it to the intended recipient, you are hereby notified that any disclosure, distribution, review, copy or use of any of the information contained in or attached to this message is STRICTLY PROHIBITED. If you have received this transmission in error, please immediately notify us by reply e-mail, and destroy the original transmission and its attachments without reading them or saving them to disk. Thank you.