FOSS centralized patch management?
from iturnedintoanewt@lemm.ee to selfhosted@lemmy.world on 06 Feb 01:50
https://lemm.ee/post/54696792

Hi guys! I was wondering whatever solution you guys might use to check/update your servers/containers? I’d like not having to depend on any cloud, something running locally would be great.

Thanks!

#selfhosted

threaded - newest

sunoc@sh.itjust.works on 06 Feb 02:02 next collapse

I set and update my containers with Ansible. It works well, but it’s a bit slow and it’s a whole setup on top of your deployment!

catloaf@lemm.ee on 06 Feb 02:18 next collapse

Docker: ouroboros. Linux: unattended-upgrades or dnf-automatic. Windows: MECM.

I know those FOSS ones aren’t centralized, but I find it a lot easier for them to just update themselves as necessary.

fangleone2526@lemmy.world on 06 Feb 02:24 collapse

Why ouroborous over watchtower for docker ?

poVoq@slrpnk.net on 06 Feb 05:17 next collapse

Podman has that built in via Systemd.

possiblylinux127@lemmy.zip on 06 Feb 05:54 collapse

So does docker and pretty much everything else. I would be careful if you aren’t doing it manually.

lemmeBe@sh.itjust.works on 06 Feb 12:17 collapse

Yep. It’ll work fine until it doesn’t.

possiblylinux127@lemmy.zip on 06 Feb 05:55 next collapse

Ansible

tux0r@feddit.org on 06 Feb 06:57 next collapse

I update my servers with pkg_add -u. No reason to over complicate things.

Strit@lemmy.linuxuserspace.show on 06 Feb 07:50 next collapse

I run a script each week that updates docker images and restarts containers. And also every week I run a system update command and reboot the server afterwards.

You shouldn’t run a server, if you don’t have to time to maintain it.

monomon@programming.dev on 06 Feb 08:05 collapse

With Gitea/Forgejo you can run a local actions executor, which builds the images, pushes to gitea’s image registry, and using a script pulls them on the other side and restarts them. Worked fine in our small startup.