How to properly update system with myVesta

Post Reply
User avatar
Site Admin
Posts: 312
Joined: Fri Jun 19, 2020 9:59 am
How to properly update system with myVesta

Post by dpeca »

Good practice is to update your server at least one time per month with new software updates and security fixes.

Here is how to do that.

Log in to your SSH, as root.

Code: Select all

apt update
and then:

Code: Select all

apt -y upgrade
During this process, you will be probably asked to overwrite existent conf files with new one.
Please select No (or select "keep the local version currently installed").
Those options are actually default options.

Why not to override conf files?
Here is an example.
If you override php.ini with new version - you'll override disable_functions option (that we put as best security setup) and that way you will actually downgrade security of your web system.
Other example is /etc/exim4/exim4.conf.template - we modified that file a lot, and if you install default Debian version of that file, you will completly mess up exim4 service.
During updates, it is very often that apt will also ask to overwrite /etc/clamav/clamd.conf or /etc/roundcube/
Just don't do it.

Actually, there are very rare situations where you should override config files during apt upgrades... almost never.
In general, most likely you will mess up services if you install config files that comes via apt updates.


Post Reply