Me gusta 0
Bifurcar 0

Última actividad 6 months ago

Jan Wagner revisó este gist 4 years ago. Ir a la revisión

2 files changed, 3 insertions, 195 deletions

README.md(archivo creado)

@@ -0,0 +1,3 @@
1 + # New location
2 +
3 + Head over to https://github.com/waja/debian-update-cheatsheets/blob/buster2bullseye/buster2bullseye.sh

buster2bullseye.sh (archivo eliminado)

@@ -1,195 +0,0 @@
1 - Please also refer to http://www.debian.org/releases/bullseye/releasenotes and use your brain! If you can’t figure out what one of the commands below does, this is not for you. Expert mode only :)
2 -
3 - # Crossgrading ?!?
4 - [ "$(dpkg --print-architecture)" == "i386" ] && echo "How about crossgrading to amd64 as described in https://stbuehler.de/blog/article/2017/06/28/debian_buster__upgrade_32-bit_to_64-bit.html?"
5 -
6 - # upgrade to UTF-8 locales (http://www.debian.org/releases/bullseye/amd64/release-notes/ap-old-stuff.en.html#switch-utf8)
7 - dpkg-reconfigure locales
8 -
9 - # remove unused config file
10 - rm -rf /etc/network/options /etc/environment
11 -
12 - # are there 3rd party packages installed? (https://www.debian.org/releases/bullseye/amd64/release-notes/ch-upgrading.de.html#system-status)
13 - aptitude search '~i(!~ODebian)'
14 -
15 - # check for ftp protocol in sources lists (https://www.debian.org/releases/bullseye/amd64/release-notes/ch-information.en.html#deprecation-of-ftp-apt-mirrors)
16 - rgrep --color "deb ftp" /etc/apt/sources.list*
17 -
18 - # Transition and remove entries from older releases
19 - sed -i /lenny/d /etc/apt/sources.list*
20 - sed -i /sarge/d /etc/apt/sources.list*
21 - sed -i /squeeze/d /etc/apt/sources.list*
22 - sed -i /wheezy/d /etc/apt/sources.list*
23 - sed -i /jessie/d /etc/apt/sources.list*
24 - sed -i /volatile/d /etc/apt/sources.list*
25 - sed -i /proposed-updates/d /etc/apt/sources.list*
26 - # change distro (please move 3rd party sources to /etc/apt/sources.list.d/), maybe look into http://ftp.cyconet.org/debian/sources.list.d/
27 - sed -i s/buster/bullseye/g /etc/apt/sources.list*
28 - sed -i "s/ stable/ bullseye/g" /etc/apt/sources.list*
29 - sed -i s/buster/bullseye/g /etc/apt/preferences*
30 - sed -i s/buster/bullseye/g /etc/apt/sources.list.d/*buster*
31 - # Fix secuity suite (https://www.debian.org/releases/bullseye/amd64/release-notes/ch-information#security-archive)
32 - sed -i "s/bullseye\/updates/bullseye-security/" /etc/apt/sources.list*
33 - rename.ul buster bullseye /etc/apt/sources.list.d/*buster*
34 - rgrep --color buster /etc/apt/sources.list*
35 - apt update
36 -
37 - # check package status
38 - dpkg --audit
39 - aptitude search "~ahold" | grep "^.h"
40 - dpkg --get-selections | grep hold
41 - dpkg --get-selections "*" > ~/curr-pkgs.txt
42 -
43 - # unmark packages auto
44 - aptitude unmarkauto vim net-tools && \
45 - aptitude unmarkauto libapache2-mpm-itk && \
46 - aptitude unmarkauto monitoring-plugins-contrib && \
47 - aptitude unmarkauto $(dpkg-query -W 'linux-image-4.19.0*' | cut -f1)
48 -
49 - # have a look into required and free disk space
50 - apt-get -o APT::Get::Trivial-Only=true dist-upgrade || df -h
51 -
52 - # purge already remove packages
53 - apt purge $(dpkg -l | awk '/^rc/ { print $2 }')
54 -
55 - # check for a linux-image meta package
56 - dpkg -l "linux-image*" | grep ^ii | grep -i meta || echo "Please have a look into https://www.debian.org/releases/bullseye/amd64/release-notes/ch-upgrading.en.html#kernel-metapackage!"
57 - # record session
58 - script -t 2>~/upgrade-bullseye.time -a ~/upgrade-bullseye.script
59 -
60 - # install our preseed so libc doesn't whine
61 - cat > /tmp/buster.preseed <<EOF
62 - libc6 glibc/upgrade boolean true
63 - libc6 glibc/restart-services string
64 - libc6 libraries/restart-without-asking boolean true
65 - EOF
66 - /usr/bin/debconf-set-selections /tmp/buster.preseed
67 -
68 - # transition sshd port changes and adjusted authkeyfile before starting the update
69 - if [ ! -d /etc/ssh/sshd_config.d ]; then mkdir -p /etc/ssh/sshd_config.d; fi
70 - if [ ! $(grep ^Port /etc/ssh/sshd_config | tee /etc/ssh/sshd_config.d/port.conf | wc -l) -gt 0 ]; then rm /etc/ssh/sshd_config.d/port.conf; fi
71 - if [ ! $(grep ^AuthorizedKeysFile /etc/ssh/sshd_config | tee /etc/ssh/sshd_config.d/authorizedkeysfile.conf | wc -l) -gt 0 ]; then rm /etc/ssh/sshd_config.d/authorizedkeysfile.conf ; fi
72 - # transition ssh changes
73 - if [ ! -d /etc/ssh/ssh_config.d ]; then mkdir -p /etc/ssh/ssh_config.d; fi
74 - if [ ! $(grep "^ *Port" /etc/ssh/ssh_config | tee /etc/ssh/ssh_config.d/port.conf | wc -l) -gt 0 ]; then rm /etc/ssh/ssh_config.d/port.conf; fi
75 -
76 - # update aptitude and apt first
77 - [ "$(which aptitude)" = "/usr/bin/aptitude" ] && apt install aptitude && \
78 - [ "$(which apt)" = "/usr/bin/apt" ] && apt install apt
79 -
80 - # minimal system upgrade
81 - apt upgrade --without-new-pkgs
82 -
83 - # (re)enable wheel
84 - if [ -f /etc/pam.d/su.dpkg-new ]; then CFG=/etc/pam.d/su.dpkg-new; else CFG=/etc/pam.d/su; fi
85 - sed -i "s/# auth required pam_wheel.so/auth required pam_wheel.so/" $CFG
86 -
87 - # chrony update, modify the new config to our needs and place it where it is expected.
88 - if [ ! -d /etc/chrony/conf.d/ ]; then mkdir -p /etc/chrony/conf.d/; fi; echo "pool 0.de.pool.ntp.org iburst" > /etc/chrony/conf.d/pool.conf
89 -
90 - # full-upgrade
91 - apt full-upgrade
92 -
93 - # (re)configure snmpd
94 - COMMUNITY="$(grep ^rocommunity /etc/snmp/snmpd.conf | cut -d" " -f2)"; \
95 - if [ -f /etc/snmp/snmpd.conf.dpkg-new ]; then CFG=/etc/snmp/snmpd.conf.dpkg-new; \
96 - else CFG=/etc/snmp/snmpd.conf; fi
97 - sed -i "s/^agentaddress.*/agentaddress udp:161,udp6:[::1]:161/g" $CFG
98 - sed -i "s/public default.*/$COMMUNITY default/g" $CFG
99 - grep ^extend /etc/snmp/snmpd.conf >> $CFG
100 -
101 - # reintroduce our own bridge script in xen
102 - SCRIPT="$(grep ^vif.default.script /etc/xen/xl.conf)"; \
103 - if [ ${SCRIPT} ]; then sed -i "s/#\?vif.default.script=.*/$SCRIPT/g" /etc/xen/xl.conf.dpkg-new; fi
104 -
105 - # migrate unattended-upgrades config, modify the new config to our needs and place it where it is expected.
106 - # Keep LOCAL config if asked when upgrading (and run this snippet afterwards, when dpkg is not blocked anymore and choose 'package maintainer version' then, cause this is the one we are adjusting here)
107 - if [ -f /etc/apt/apt.conf.d/50unattended-upgrades.ucf-old ]; then CFG=/etc/apt/apt.conf.d/50unattended-upgrades.ucf-old; else CFG=/etc/apt/apt.conf.d/50unattended-upgrades; fi && \
108 - cp /usr/share/unattended-upgrades/50unattended-upgrades /tmp/ && \
109 - MAIL=$(grep ^Unattended-Upgrade::Mail $CFG | awk -F\" '{print $2}'); sed -i 's#//Unattended-Upgrade::Mail ".*";#Unattended-Upgrade::Mail "'${MAIL}'";#g' /tmp/50unattended-upgrades && \
110 - TIME=$(grep ^Unattended-Upgrade::Automatic-Reboot-Time $CFG | awk -F\" '{print $2}'); if [ "${TIME}" != "" ]; then sed -i 's#//Unattended-Upgrade::Automatic-Reboot-Time "02:00"#Unattended-Upgrade::Automatic-Reboot-Time "'${TIME}'"#' /tmp/50unattended-upgrades; fi
111 - sed -i 's#// "origin=Debian,codename=${distro_codename}-updates"# "origin=Debian,codename=${distro_codename}-updates"#' /tmp/50unattended-upgrades && \
112 - sed -i 's#//Unattended-Upgrade::Remove-Unused-Dependencies "false"#Unattended-Upgrade::Remove-Unused-Dependencies "true"#' /tmp/50unattended-upgrades && \
113 - sed -i 's#//Unattended-Upgrade::Automatic-Reboot "false"#Unattended-Upgrade::Automatic-Reboot "true"#' /tmp/50unattended-upgrades && \
114 - sed -i '/codename=..distro_codename.-updates/ s#^//# #' /tmp/50unattended-upgrades && \
115 - sed -i 's#//Unattended-Upgrade::MailReport "on-change"#Unattended-Upgrade::MailReport "on-change"#' /tmp/50unattended-upgrades && \
116 - /bin/bash /usr/bin/ucf --three-way --debconf-ok /tmp/50unattended-upgrades /etc/apt/apt.conf.d/50unattended-upgrades && \
117 - [ "$CFG" == "/etc/apt/apt.conf.d/50unattended-upgrades.ucf-old" ] && mv $CFG /etc/apt/apt.conf.d/50unattended-upgrades.ucf-save
118 -
119 - # Migrate (webserver) from php7.3 to php7.4
120 - apt install $(dpkg -l |grep php7.3 | awk '/^i/ { print $2 }' |grep -v ^php7.3-opcache |sed s/php7.3/php/)
121 - [ -L /etc/apache2/mods-enabled/mpm_prefork.load ] && a2dismod php7.3 && a2enmod php7.4 && systemctl restart apache2; ls -la /etc/php/7.3/*/conf.d/
122 - # php-fpm
123 - tail -10 /etc/php/7.3/fpm/pool.d/www.conf
124 - vi /etc/php/7.4/fpm/pool.d/www.conf
125 - systemctl disable php7.3-fpm && systemctl stop php7.3-fpm && systemctl restart php7.4-fpm
126 - # nginx
127 - rename s/php73/php74/g /etc/nginx/conf.d/*php73*.conf
128 - sed -i s/php7.3-fpm/php7.4-fpm/g /etc/nginx/conf.d/*.conf /etc/nginx/snippets/*.conf /etc/nginx/sites-available/*
129 - systemctl restart nginx
130 -
131 - # transition docker-ce to bullseye package
132 - DOCKER_VER="$(apt-cache policy docker-ce | grep debian-bullseye | head -1 | awk '{print $1}')" && [ -n "${DOCKER_VER}" ] && apt install docker-ce=${DOCKER_VER} docker-ce-cli=${DOCKER_VER}
133 -
134 - # transition icingaweb2 to bullseye package
135 - ICINGAWEB2_VER="$(apt-cache policy icingaweb2 | grep "\.bullseye" | head -1 | awk '{print $1}')" && [ -n "${ICINGAWEB2_VER}" ] && apt install icingaweb2=${ICINGAWEB2_VER} icingaweb2-common=${ICINGAWEB2_VER} icingaweb2-module-monitoring=${ICINGAWEB2_VER} php-icinga=${ICINGAWEB2_VER} icingacli=${ICINGAWEB2_VER}
136 -
137 - # transition icinga2 to bullseye packages
138 - apt-get install $(dpkg -l | grep icinga2 | grep -v common | awk '{print $2"/icinga-bullseye"}')
139 -
140 - # Mitigate #991235 (fail2ban and bsd-mailx)
141 - if [ $(dpkg -l | grep -cE "(bsd-mailx|fail2ban)") -ge 2 ]; then sed -i "s/mail -E 'set escape'/mail/g" /etc/fail2ban/action.d/mail*.conf && service fail2ban reload; fi
142 -
143 - # Remove libgcc1 so cpp-8 can be updated
144 - apt remove libgcc1 && apt full-upgrade
145 -
146 - # remove old squeeze packages left around (keep eyes open!)
147 - apt autoremove && \
148 - apt purge $(aptitude search ?obsolete | grep -v -E 'linux-image|mailscanner|check-openmanage|check-linux-bonding|webalizer|icinga' | awk '/^i *A/ { print $3 }') && \
149 - apt purge $(aptitude search ?obsolete | grep -v -E 'linux-image|mailscanner|check-openmanage|check-linux-bonding|webalizer|icinga' | awk '/^i/ { print $2 }') && \
150 - apt purge $(dpkg -l | grep etch | grep -v xen | grep -v unbound | grep -v finch | awk '/^rc/ { print $2 }') && \
151 - apt purge $(dpkg -l | grep lenny | grep -v xen | awk '/^rc/ { print $2 }') && \
152 - apt purge $(dpkg -l | grep -E 'deb6|squeeze' | grep -v xen | awk '/^rc/ { print $2 }') && \
153 - apt purge $(dpkg -l | grep -E 'deb7|wheezy' | grep -v xen | grep -v -E 'linux-image|mailscanner|openswan|debian-security-support' | awk '/^rc/ { print $2 }') && \
154 - apt purge $(dpkg -l | grep -E 'deb8|jessie' | grep -v xen | grep -v -E 'linux-image|debian-security-support' | awk '{ print $2 }') && \
155 - apt purge $(dpkg -l | grep -E 'deb9|stretch' | grep -v xen | grep -v -E 'linux-image|debian-security-support|icinga2|phpmyadmin' | awk '{ print $2 }') && \
156 - apt purge $(dpkg -l | grep -E 'deb10|buster' | grep -v xen | grep -v -E 'linux-image|debian-security-support|icinga2|phpmyadmin' | awk '{ print $2 }') && \
157 - apt -y install deborphan && apt purge $(deborphan | grep -v xen | grep -v -E 'libpam-cracklib|libapache2-mpm-itk')
158 - apt purge $(dpkg -l | awk '/^rc/ { print $2 }')
159 -
160 - # for the brave YoloOps crowd
161 - reboot && sleep 180; echo u > /proc/sysrq-trigger ; sleep 2 ; echo s > /proc/sysrq-trigger ; sleep 2 ; echo b > /proc/sysrq-trigger
162 -
163 - ### not needed until now
164 -
165 - # randomize crontab
166 - if [ -f /etc/crontab.dpkg-new ]; then CFG=/etc/crontab.dpkg-new; else CFG=/etc/crontab; fi
167 - sed -i 's#root cd#root perl -e "sleep int(rand(300))" \&\& cd#' $CFG
168 - sed -i 's#root\ttest#root\tperl -e "sleep int(rand(3600))" \&\& test#' $CFG
169 -
170 - ## phpmyadmin
171 - if [ -f /etc/phpmyadmin/config.inc.php.dpkg-new ]; then CFG=/etc/phpmyadmin/config.inc.php.dpkg-new; \
172 - else CFG=/etc/phpmyadmin/config.inc.php; fi
173 - sed -i "s/\['auth_type'\] = 'cookie'/\['auth_type'\] = 'http'/" $CFG
174 - sed -i "s#//\$cfg\['Servers'\]\[\$i\]\['auth_type'\] = 'http';#\$cfg['Servers'][\$i]['auth_type'] = 'http';#" $CFG
175 -
176 - # Update old postfix configurations
177 - cp /etc/postfix/main.cf /tmp/main.cf && \
178 - if [ $(postconf -n smtpd_relay_restrictions | wc -l) -eq 0 ]; then sed -i '/^myhostname.*/i smtpd_relay_restrictions = permit_mynetworks permit_sasl_authenticated defer_unauth_destination' /etc/postfix/main.cf; fi && \
179 - if [ -z $(postconf -nh compatibility_level) ]; then sed -iE 's/^readme_directory = no/readme_directory = no\n\n# See http:\/\/www.postfix.org\/COMPATIBILITY_README.html -- default to 2 on\n# fresh installs.\ncompatibility_level = 2\n\n/' /etc/postfix/main.cf; fi && \
180 - diff -Nur /tmp/postfix/main.cf /etc/postfix/main.cf && \
181 - postfix reload
182 -
183 - # Upgrade postgres
184 - # See also https://www.debian.org/releases/buster/amd64/release-notes/ch-information.de.html#plperl
185 - if [ "$(dpkg -l | grep "postgresql-9.4" | awk {'print $2'})" = "postgresql-9.4" ]; then \
186 - apt install postgresql-9.6 && \
187 - pg_dropcluster --stop 9.6 main && \
188 - /etc/init.d/postgresql stop && \
189 - pg_upgradecluster -v 9.6 9.4 main && \
190 - sed -i "s/^manual/auto/g" /etc/postgresql/9.6/main/start.conf && \
191 - sed -i "s/^port = .*/port = 5432/" /etc/postgresql/9.6/main/postgresql.conf && \
192 - sed -i "s/^shared_buffers = .*/shared_buffers = 128MB/" /etc/postgresql/9.6/main/postgresql.conf && \
193 - /etc/init.d/postgresql restart; \
194 - fi
195 - pg_dropcluster 9.4 main

Jan Wagner revisó este gist 4 years ago. Ir a la revisión

1 file changed, 2 insertions, 2 deletions

buster2bullseye.sh

@@ -145,8 +145,8 @@ apt remove libgcc1 && apt full-upgrade
145 145
146 146 # remove old squeeze packages left around (keep eyes open!)
147 147 apt autoremove && \
148 - apt purge $(aptitude search ?obsolete | grep -v -E 'linux-image|mailscanner|check-openmanage|check-linux-bonding|webalizer' | awk '/^i *A/ { print $3 }') && \
149 - apt purge $(aptitude search ?obsolete | grep -v -E 'linux-image|mailscanner|check-openmanage|check-linux-bonding|webalizer' | awk '/^i/ { print $2 }') && \
148 + apt purge $(aptitude search ?obsolete | grep -v -E 'linux-image|mailscanner|check-openmanage|check-linux-bonding|webalizer|icinga' | awk '/^i *A/ { print $3 }') && \
149 + apt purge $(aptitude search ?obsolete | grep -v -E 'linux-image|mailscanner|check-openmanage|check-linux-bonding|webalizer|icinga' | awk '/^i/ { print $2 }') && \
150 150 apt purge $(dpkg -l | grep etch | grep -v xen | grep -v unbound | grep -v finch | awk '/^rc/ { print $2 }') && \
151 151 apt purge $(dpkg -l | grep lenny | grep -v xen | awk '/^rc/ { print $2 }') && \
152 152 apt purge $(dpkg -l | grep -E 'deb6|squeeze' | grep -v xen | awk '/^rc/ { print $2 }') && \

Jan Wagner revisó este gist 4 years ago. Ir a la revisión

1 file changed, 6 insertions

buster2bullseye.sh

@@ -134,6 +134,12 @@ DOCKER_VER="$(apt-cache policy docker-ce | grep debian-bullseye | head -1 | awk
134 134 # transition icingaweb2 to bullseye package
135 135 ICINGAWEB2_VER="$(apt-cache policy icingaweb2 | grep "\.bullseye" | head -1 | awk '{print $1}')" && [ -n "${ICINGAWEB2_VER}" ] && apt install icingaweb2=${ICINGAWEB2_VER} icingaweb2-common=${ICINGAWEB2_VER} icingaweb2-module-monitoring=${ICINGAWEB2_VER} php-icinga=${ICINGAWEB2_VER} icingacli=${ICINGAWEB2_VER}
136 136
137 + # transition icinga2 to bullseye packages
138 + apt-get install $(dpkg -l | grep icinga2 | grep -v common | awk '{print $2"/icinga-bullseye"}')
139 +
140 + # Mitigate #991235 (fail2ban and bsd-mailx)
141 + if [ $(dpkg -l | grep -cE "(bsd-mailx|fail2ban)") -ge 2 ]; then sed -i "s/mail -E 'set escape'/mail/g" /etc/fail2ban/action.d/mail*.conf && service fail2ban reload; fi
142 +
137 143 # Remove libgcc1 so cpp-8 can be updated
138 144 apt remove libgcc1 && apt full-upgrade
139 145

Jan Wagner revisó este gist 4 years ago. Ir a la revisión

1 file changed, 4 insertions

buster2bullseye.sh

@@ -98,6 +98,10 @@ sed -i "s/^agentaddress.*/agentaddress udp:161,udp6:[::1]:161/g" $CFG
98 98 sed -i "s/public default.*/$COMMUNITY default/g" $CFG
99 99 grep ^extend /etc/snmp/snmpd.conf >> $CFG
100 100
101 + # reintroduce our own bridge script in xen
102 + SCRIPT="$(grep ^vif.default.script /etc/xen/xl.conf)"; \
103 + if [ ${SCRIPT} ]; then sed -i "s/#\?vif.default.script=.*/$SCRIPT/g" /etc/xen/xl.conf.dpkg-new; fi
104 +
101 105 # migrate unattended-upgrades config, modify the new config to our needs and place it where it is expected.
102 106 # Keep LOCAL config if asked when upgrading (and run this snippet afterwards, when dpkg is not blocked anymore and choose 'package maintainer version' then, cause this is the one we are adjusting here)
103 107 if [ -f /etc/apt/apt.conf.d/50unattended-upgrades.ucf-old ]; then CFG=/etc/apt/apt.conf.d/50unattended-upgrades.ucf-old; else CFG=/etc/apt/apt.conf.d/50unattended-upgrades; fi && \

Jan Wagner revisó este gist 4 years ago. Ir a la revisión

1 file changed, 3 insertions, 3 deletions

buster2bullseye.sh

@@ -87,6 +87,9 @@ sed -i "s/# auth required pam_wheel.so/auth required pam_wheel.s
87 87 # chrony update, modify the new config to our needs and place it where it is expected.
88 88 if [ ! -d /etc/chrony/conf.d/ ]; then mkdir -p /etc/chrony/conf.d/; fi; echo "pool 0.de.pool.ntp.org iburst" > /etc/chrony/conf.d/pool.conf
89 89
90 + # full-upgrade
91 + apt full-upgrade
92 +
90 93 # (re)configure snmpd
91 94 COMMUNITY="$(grep ^rocommunity /etc/snmp/snmpd.conf | cut -d" " -f2)"; \
92 95 if [ -f /etc/snmp/snmpd.conf.dpkg-new ]; then CFG=/etc/snmp/snmpd.conf.dpkg-new; \
@@ -109,9 +112,6 @@ sed -i 's#//Unattended-Upgrade::MailReport "on-change"#Unattended-Upgrade::MailR
109 112 /bin/bash /usr/bin/ucf --three-way --debconf-ok /tmp/50unattended-upgrades /etc/apt/apt.conf.d/50unattended-upgrades && \
110 113 [ "$CFG" == "/etc/apt/apt.conf.d/50unattended-upgrades.ucf-old" ] && mv $CFG /etc/apt/apt.conf.d/50unattended-upgrades.ucf-save
111 114
112 - # full-upgrade
113 - apt full-upgrade
114 -
115 115 # Migrate (webserver) from php7.3 to php7.4
116 116 apt install $(dpkg -l |grep php7.3 | awk '/^i/ { print $2 }' |grep -v ^php7.3-opcache |sed s/php7.3/php/)
117 117 [ -L /etc/apache2/mods-enabled/mpm_prefork.load ] && a2dismod php7.3 && a2enmod php7.4 && systemctl restart apache2; ls -la /etc/php/7.3/*/conf.d/

Jan Wagner revisó este gist 4 years ago. Ir a la revisión

1 file changed, 4 insertions

buster2bullseye.sh

@@ -80,6 +80,10 @@ if [ ! $(grep "^ *Port" /etc/ssh/ssh_config | tee /etc/ssh/ssh_config.d/port.con
80 80 # minimal system upgrade
81 81 apt upgrade --without-new-pkgs
82 82
83 + # (re)enable wheel
84 + if [ -f /etc/pam.d/su.dpkg-new ]; then CFG=/etc/pam.d/su.dpkg-new; else CFG=/etc/pam.d/su; fi
85 + sed -i "s/# auth required pam_wheel.so/auth required pam_wheel.so/" $CFG
86 +
83 87 # chrony update, modify the new config to our needs and place it where it is expected.
84 88 if [ ! -d /etc/chrony/conf.d/ ]; then mkdir -p /etc/chrony/conf.d/; fi; echo "pool 0.de.pool.ntp.org iburst" > /etc/chrony/conf.d/pool.conf
85 89

Jan Wagner revisó este gist 4 years ago. Ir a la revisión

1 file changed, 1 insertion, 1 deletion

buster2bullseye.sh

@@ -78,7 +78,7 @@ if [ ! $(grep "^ *Port" /etc/ssh/ssh_config | tee /etc/ssh/ssh_config.d/port.con
78 78 [ "$(which apt)" = "/usr/bin/apt" ] && apt install apt
79 79
80 80 # minimal system upgrade
81 - apt upgrade
81 + apt upgrade --without-new-pkgs
82 82
83 83 # chrony update, modify the new config to our needs and place it where it is expected.
84 84 if [ ! -d /etc/chrony/conf.d/ ]; then mkdir -p /etc/chrony/conf.d/; fi; echo "pool 0.de.pool.ntp.org iburst" > /etc/chrony/conf.d/pool.conf

Jan Wagner revisó este gist 4 years ago. Ir a la revisión

1 file changed, 2 insertions

buster2bullseye.sh

@@ -28,6 +28,8 @@ sed -i s/buster/bullseye/g /etc/apt/sources.list*
28 28 sed -i "s/ stable/ bullseye/g" /etc/apt/sources.list*
29 29 sed -i s/buster/bullseye/g /etc/apt/preferences*
30 30 sed -i s/buster/bullseye/g /etc/apt/sources.list.d/*buster*
31 + # Fix secuity suite (https://www.debian.org/releases/bullseye/amd64/release-notes/ch-information#security-archive)
32 + sed -i "s/bullseye\/updates/bullseye-security/" /etc/apt/sources.list*
31 33 rename.ul buster bullseye /etc/apt/sources.list.d/*buster*
32 34 rgrep --color buster /etc/apt/sources.list*
33 35 apt update

Jan Wagner revisó este gist 4 years ago. Ir a la revisión

1 file changed, 1 insertion, 1 deletion

buster2bullseye.sh

@@ -99,7 +99,7 @@ sed -i 's#// "origin=Debian,codename=${distro_codename}-updates"# "o
99 99 sed -i 's#//Unattended-Upgrade::Remove-Unused-Dependencies "false"#Unattended-Upgrade::Remove-Unused-Dependencies "true"#' /tmp/50unattended-upgrades && \
100 100 sed -i 's#//Unattended-Upgrade::Automatic-Reboot "false"#Unattended-Upgrade::Automatic-Reboot "true"#' /tmp/50unattended-upgrades && \
101 101 sed -i '/codename=..distro_codename.-updates/ s#^//# #' /tmp/50unattended-upgrades && \
102 - sed -i 's#//Unattended-Upgrade::MailReport "on-change"#Unattended-Upgrade::MailReport "always"#' /tmp/50unattended-upgrades && \
102 + sed -i 's#//Unattended-Upgrade::MailReport "on-change"#Unattended-Upgrade::MailReport "on-change"#' /tmp/50unattended-upgrades && \
103 103 /bin/bash /usr/bin/ucf --three-way --debconf-ok /tmp/50unattended-upgrades /etc/apt/apt.conf.d/50unattended-upgrades && \
104 104 [ "$CFG" == "/etc/apt/apt.conf.d/50unattended-upgrades.ucf-old" ] && mv $CFG /etc/apt/apt.conf.d/50unattended-upgrades.ucf-save
105 105

Jan Wagner revisó este gist 4 years ago. Ir a la revisión

1 file changed, 1 insertion, 1 deletion

buster2bullseye.sh

@@ -86,7 +86,7 @@ COMMUNITY="$(grep ^rocommunity /etc/snmp/snmpd.conf | cut -d" " -f2)"; \
86 86 if [ -f /etc/snmp/snmpd.conf.dpkg-new ]; then CFG=/etc/snmp/snmpd.conf.dpkg-new; \
87 87 else CFG=/etc/snmp/snmpd.conf; fi
88 88 sed -i "s/^agentaddress.*/agentaddress udp:161,udp6:[::1]:161/g" $CFG
89 - sed -i "s/public default/$COMMUNITY default/g" $CFG
89 + sed -i "s/public default.*/$COMMUNITY default/g" $CFG
90 90 grep ^extend /etc/snmp/snmpd.conf >> $CFG
91 91
92 92 # migrate unattended-upgrades config, modify the new config to our needs and place it where it is expected.
Siguiente Anterior

Desarrollado por Opengist Load: 28ms

Español