Hi,
if I get you right, we are doing the same thing for critical parts of our infrastructure. We are on Debian Wheezy…
I use puppetlabs-apt module to manage repos and automatic upgrades. It offers a way to create holds/pins for selected packages. This way you can install a selected version of a package and tell apt not to update it easily.
For example, this is how we install Percona-MySQL-Server to a given version. The parameter allows us to have one host (testing) to install another, newer version:
class profile::perconadb ($percona_version='5.6.21-70.1-698.wheezy') {
apt::source { 'Percona':
comment => 'The Percona MySQL Repo',
location => '
http://repo.percona.com/apt',
release => 'wheezy',
repos => 'main',
key => '1C4CBDCDCD2EFD2A',
key_server => '
keys.gnupg.net',
pin => '600',
include_src => false,
include_deb => true
}
package {'percona-server-server-5.6':
ensure => $percona_version,
require => Apt::Source['Percona'],
}
package {'percona-server-tokudb-5.6':
ensure => $percona_version,
require => Package['percona-server-server-5.6'],
}
apt::hold { 'percona-server-server-5.6':
version => $percona_version,
}
apt::hold { 'percona-server-tokudb-5.6':
version => $percona_version,
}
}
Regards
Jochen
> --
> You received this message because you are subscribed to the Google Groups "Puppet Users" group.
> To unsubscribe from this group and stop receiving emails from it, send an email to
puppet-users...@googlegroups.com.
> To view this discussion on the web visit
https://groups.google.com/d/msgid/puppet-users/109e20cd-2209-4cfd-b1a3-e735b27e3f6a%40googlegroups.com.
> For more options, visit
https://groups.google.com/d/optout.