From 842097b3db39c8de89da166ab7ad01dfe913ca95 Mon Sep 17 00:00:00 2001 From: Konrad Bucheli Date: Fri, 4 Oct 2024 14:09:50 +0200 Subject: [PATCH] create software management subdirectory --- admin-guide/guidelines.md | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/admin-guide/guidelines.md b/admin-guide/guidelines.md index 4dd7d058..a18f7931 100644 --- a/admin-guide/guidelines.md +++ b/admin-guide/guidelines.md @@ -39,7 +39,7 @@ It is in the responsibilty of the owner/administrator of a system to care about By default once a week (in the night from Sunday to Monday) security updates are automatically applied. Other updates, including Kernel updates, need to be installed manually. -This is [configurable](configuration/package_updates.md), you may switch it off completely, make it run daily or make it install all updates. +This is [configurable](configuration/software/package_updates.md), you may switch it off completely, make it run daily or make it install all updates. Reboots are never done automatically. @@ -47,7 +47,7 @@ Also for software which have been installed from other sources than RPM package ### Snapshots -On specially protected systems where stability is more important than being up-to-date, there is the option to freeze the provided RPM package version to a specified date. Also this can be [configured in Hiera](configuration/package_repositories.md)(chapter "Using Specific Package Repository Snapshot"). If such a system is set by such a "Repo Tag" to a specific snapshot, the update procedure cannot get newer than the given state. +On specially protected systems where stability is more important than being up-to-date, there is the option to freeze the provided RPM package version to a specified date. Also this can be [configured in Hiera](configuration/software/package_repositories.md)(chapter "Using Specific Package Repository Snapshot"). If such a system is set by such a "Repo Tag" to a specific snapshot, the update procedure cannot get newer than the given state. Again, this should only be done for nodes in protected networks, e.g. with access restrictions through an [ssh gateway](../services/admin-guide/ssh_gateways.md) and requires consent with IT Security.