undefined | Better HN

0 pointsroryisok7y ago0 comments

Wait... Do Linux apps (Firefox etc) not self update like Windows and MacOS?

0 comments

Nope, they use a much more sane paradigm of letting the package manager handle updates, much like in iOS or Android. That way you can have your entire system update when needed, rather than whenever you start each individual program.

Programs are not supposed to update themselves, but some like Telegram or Steam annoyingly do.

pasta7y ago

No. And there are multiple reasons for this.

One example: when Firefox decides to integrade a keylogger it is very unlikely you will find that release on your Ubuntu installation.

But in my experience Firefox is updated very soon after official releases.

mverwijs7y ago

Ubuntu has long since flagged Firefox as a 'volatile' package, resulting in up-to-date Firefox packages when using the standard package manager.

dogma11387y ago

On the other hand the only users that predictively fall to browser exploits when we run end user targeted red-team ops are the devs and IT peeps that run Linux instead of OSX/Windows.

In fact across the board Linux machines in many enterprises are more likely to run outdated and possibly vulnerable software.

swebs7y ago

It sounds like that's a failure of your IT team to handle updates. Either that or your sourceless claims are just to spread FUD.

Most distros have different update channels so that you can install security updates without feature updates. Tools like unattended-upgrades make it trivial to automatically install daily security updates. You can then manually install other updates at a later time if you're concerned with breakage.

https://wiki.debian.org/UnattendedUpgrades

1 more reply

jhasse7y ago

This is because Ubuntu doesn't automatically install updates by default. On Fedora you can install updates when shutting down your computer, resulting in less people delaying it.

1 more reply

Schiphol7y ago

That's not for "Linux" to say. It would be easy to set up a Linux system that updates automatically, but it's more sensible to have the user review changes before updating. This is the default policy in all Linux distributions I'm familiar with.

thibran7y ago

* Traditional Windows Apps => bazaar, everyone does whatever they want

* Snap Apps => centralized, the snap-system updates the apps on a regular schedule

Traditionally on Linux there was only the system-package-manager to update the system and applications. Snaps are confined (unless declared --classic) and allow to have a stable base-system and up-to-date applications.

PS: Can't say much about how snaps compare to macOS.

yoz-y7y ago

On macOS it is a combination of centralized (if you install through the App Store) and free for all. Almost all applications that auto update use the same framework though (Spark) so the update look&feel is usually the same.

dingo_bat7y ago

No, they depend on the package manager to do that.

adamtulinius7y ago

No, that is usually the responsibility of the system wide package management system. :)

pqb7y ago

Xkcd "Standards" https://xkcd.com/927/ is obligatory here.

There are five ways to have update software on Ubuntu Linux these days:

* Ubuntu Store (snap).

* Via Flathub (flatpak).

* Official deb repository pool (apt-get).

* Community maintained PPAs (apt-get).

* Other, tools like appimage, nix, linuxbrew etc. etc.

If you are not fan of terminal tools, sometimes "Software Updates" popup will appear to ask you if you would like to install new updates.

By default there isn't any self-update enabled (please correct me if I am wrong), though it is recommended to configure automatic updates of unattended-upgrades [1]. In my experience 17.10 were asking about installing updates when you were shutting down or restarting OS.

[1]: https://help.ubuntu.com/lts/serverguide/automatic-updates.ht...

j / k navigate · click thread line to collapse

0 comments

swebs7y ago

Programs are not supposed to update themselves, but some like Telegram or Steam annoyingly do.

pasta7y ago

No. And there are multiple reasons for this.

One example: when Firefox decides to integrade a keylogger it is very unlikely you will find that release on your Ubuntu installation.

But in my experience Firefox is updated very soon after official releases.

mverwijs7y ago

Ubuntu has long since flagged Firefox as a 'volatile' package, resulting in up-to-date Firefox packages when using the standard package manager.

dogma11387y ago

On the other hand the only users that predictively fall to browser exploits when we run end user targeted red-team ops are the devs and IT peeps that run Linux instead of OSX/Windows.

In fact across the board Linux machines in many enterprises are more likely to run outdated and possibly vulnerable software.

swebs7y ago

It sounds like that's a failure of your IT team to handle updates. Either that or your sourceless claims are just to spread FUD.

https://wiki.debian.org/UnattendedUpgrades

1 more reply

jhasse7y ago

This is because Ubuntu doesn't automatically install updates by default. On Fedora you can install updates when shutting down your computer, resulting in less people delaying it.

1 more reply

Schiphol7y ago

thibran7y ago

* Traditional Windows Apps => bazaar, everyone does whatever they want

* Snap Apps => centralized, the snap-system updates the apps on a regular schedule

PS: Can't say much about how snaps compare to macOS.

yoz-y7y ago

dingo_bat7y ago

No, they depend on the package manager to do that.

adamtulinius7y ago

No, that is usually the responsibility of the system wide package management system. :)

pqb7y ago