Linux – apt-get upgrade with exceptions

aptlinuxUbuntuupdateupgrade

I am running Ubuntu 14.04 and have let it get quite out of date with packages that need updating.

There are a couple of packages I don't want to upgrade like tomcat, php etc.. but I am not sure how I can run a blanket apt-get upgrade to upgrade everything except those packages. Most of the documentation and suggestions I can find only explain how to update specific packages, not the other way around..?

Thanks

Best Answer

What you want is "package pinning" -- essentially, telling apt, "I want to keep this package at this version". For a simple single-package pin, add this to /etc/apt/preferences (or in a new file in /etc/apt/preferences.d):

Package: tomcat8
Pin: version 8.0.14-1
Pin-Priority: 1001

Specify the package name you want, and the version you want to pin it to, and make sure the Pin-Priority is over 1000. Then the package will basically never, ever move from its current version.

You can do trickier things, like pinning to a release (trusty rather than trusty-updates, for example), selecting lots of packages with a glob pattern, and only letting packages update if they're security updates. See apt_preferences(5) for all the gory details.

Related Solutions

Ubuntu – How to manage apt efficiently on multiple machines

Landscape might be of interest to you. This is the "official" management tool for managing large Ubuntu deployments, and Canonical is probably very keen to get your dollars for its use.

RE-EDIT:

First, a disclaimer; I haven't used mirroring for Debian or Ubuntu, so I am not familiar with the software.

Second, it appears that apt-mirror would be "too heavy" a solution, my apologies. The original idea was that you would have a separate test machine (or test environment, probably a virtual machine?) to deploy the update on. Once you are satisfied with the performance of the update, you would pull/put the package into your "deploy" mirror (there would be the local mirror from the official sources, and a secondary mirror for just updates that you wish to deploy). The remote machines would then run an update at a pre-set time and pull it from your "deploy" mirror onto each machine, a cron job consisting of:

apt-get update && apt-get upgrade --quiet --assume-yes

Unfortunately, as I began to read through the details, it seems that apt-mirror will pull all kinds of stuff and not just the packages you are after. So, I'm going to abandon this idea, although the concept has some merit.

Linux – Specify update with apt-get upgrade

Once you have tested the upgrades, you can manually upgrade only those specific packages you have tested on the production server with:

apt-get install somepackage=someversion

Best Answer

Related Solutions

Ubuntu – How to manage apt efficiently on multiple machines

Linux – Specify update with apt-get upgrade

Related Topic