Auto update download in Linux
Drew White
I know this has probably been asked before, but I want to know how to disable the search for and install of application whenever a command isn't found please?
Whenever a command isn't found, it goes off and downloads the application listings each time, it isn't stored on the proxy, nor is it saved on the update VM.
Do I need to build a caching system on Qubes to cache the update files like that?
Or is there a way to get around that too?
Sincerely,
Drew.
Unman
What template are you using here?
I seem to recall that Fedora has such a service, but I dont think it's
enabled in a default template.
I think the only way to get a caching proxy is to install your own - I
use apt-cacher-ng, but I'm mainly Debian.
There's been a long standing discussion on qubes issues about using a
caching proxy and RustyBird has posted to qubes-devel about a Squid based
solution.
cheers
unman
Drew White
> Hi Drew
>
> What template are you using here?
> I seem to recall that Fedora has such a service, but I dont think it's
> enabled in a default template.
It is enabled by default, and I asked somewhere how to disable it ages ago, but I can't find that information any more.
> I think the only way to get a caching proxy is to install your own - I
> use apt-cacher-ng, but I'm mainly Debian.
But the UpdateVM is supposed to do that. I tell the guest to use the Update Proxy VM and it doesn't...
> There's been a long standing discussion on qubes issues about using a
> caching proxy and RustyBird has posted to qubes-devel about a Squid based
> solution.
Thanks Unman, I'll have to look into it, but I don't really like Squid, if it's th only option, so be it.
Thanks again.
Sincerely,
Drew.
Rusty Bird
Hash: SHA512
Drew White:
> > I seem to recall that Fedora has such a service, but I dont think it's
> > enabled in a default template.
> It is enabled by default, and I asked somewhere how to disable it ages ago, but I can't find that information any more.
> > I think the only way to get a caching proxy is to install your own - I
> > use apt-cacher-ng, but I'm mainly Debian.
> But the UpdateVM is supposed to do that.
Rusty
-----BEGIN PGP SIGNATURE-----
iQJ8BAEBCgBmBQJY/2L2XxSAAAAAAC4AKGlzc3Vlci1mcHJAbm90YXRpb25zLm9w
ZW5wZ3AuZmlmdGhob3JzZW1hbi5uZXQ4NEI1OUJDRkM2MkIxMjlGRTFCMDZEMDQ0
NjlENzhGNDdBQUYyQURGAAoJEEadePR6ryrfhakP/jKEg3Nc5yH1EIbZCxHtSMHj
sm/fgg8a+42UHqVOIs2nzTJendNdr8UWTwxM9MQrkVMoD+FLa3GNrvSD6ipNBrNC
BiogqmK+Je4gf+2CuefKlWQawEQpvk/jett4cflkY50wUtTMK3SGHyPoBq0Ko/XE
NILih7pG5QnKINBZI734Hquwgb5OPxZp0EYRYUB7lCW5t2cxoupWQPrx3TBcvvvh
q/7LhP59e4UjK6r/5SisAM+3wLA+2lHkZ2adXb/k6r4uGA2kclyuLhrlwgmECEHo
R1Ucyud77ooWV4kYyyU25a8Z0KsMiJMrEbHVpeUWgji8qhAzjU6Ioe1kDEXtDeUR
/5t0Os5fxzYbQSY80p4jC/1FlenVWX9Ud9U3nkQ0/+Zil9OhHVyicRJLIKwOjNE3
G3N3+wnx+5osA4+3r7dE0xgnw9X+glnFHtI/EmIobsX4RdX3YpSITGIv1tllCw5m
+IbEvF0KSqCMsM+N/9YrVcAAUdJJ78ojsyPtOsbKzS8F9VVcEmIW6K1Qm95QTq8p
yfLWo9LyMJZY8tQjFNevo016CkFBw3ozkDOobeTaRw6M0v3nkYxQamAYfc9YwTCU
SPXTc5julDH3ju3s8by4uhem7oT1VLT5x9NKzKU4F7BZ6pb8DuLlCffbNvXULSZ6
E+wkXjECIpK3WNh4WLye
=lL/n
-----END PGP SIGNATURE-----
Rusty Bird
Hash: SHA512
Hash: SHA512
Rusty Bird:
> > On Tuesday, 25 April 2017 07:51:46 UTC+10, Unman wrote:
> > > I seem to recall that Fedora has such a service, but I dont think it's
> > > enabled in a default template.
> > It is enabled by default, and I asked somewhere how to disable it ages ago, but I can't find that information any more.
>
> sudo dnf remove PackageKit-command-not-found
>
> > > I think the only way to get a caching proxy is to install your own - I
> > > use apt-cacher-ng, but I'm mainly Debian.
> > But the UpdateVM is supposed to do that.
>
> No, that's a non-caching proxy.
updates. It doesn't necessarily run an instance of the (completely
different) "Updates Proxy" for VM updates. But anyway, the latter is
non-caching.
Rusty
- -----BEGIN PGP SIGNATURE-----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=0mHa
- -----END PGP SIGNATURE-----
-----BEGIN PGP SIGNATURE-----
iQJ8BAEBCgBmBQJY//JSXxSAAAAAAC4AKGlzc3Vlci1mcHJAbm90YXRpb25zLm9w
ZW5wZ3AuZmlmdGhob3JzZW1hbi5uZXQ4NEI1OUJDRkM2MkIxMjlGRTFCMDZEMDQ0
NjlENzhGNDdBQUYyQURGAAoJEEadePR6ryrfDFEP/AqcTiydwDbGbORhtpC55Vza
3DV9/Kec+lES5Pg6M4VaTCM/RbPxaqw1DrHm2v8tEsLZkUxd6YovAX3wBMyh8eoY
8dncVFNZHsgK29pSOE7ME1nU2wtNuQ5fJi1+kPZrcMiOaWu/ac5t/pYRvk/N+Q+A
KYR/k/BSVxhLZxWmKX+Ix4yg2qAkTYySGbGOCmTwm/IqfTmxF1da5UwToE2wtWxG
uc3QWsFPIqLsUS/rfpf3O3V+3xNQNTmDF0vMWIOS5t+AK2KKZAPa3vAPzSFhatur
U2G1sprGsDSMzTsPEa9zbpjCCABuCdk975s1f4MDNNl5yvYpQ4OsSbmVRu31RQqR
+TWVHpx/8aekvj8kntN6YxT42Q2qtk2J0BcZ1ykbVeynjYOp7R+t0UM/cncQeaZW
1Cay34eyKCiw1iKsa5SoVbGi7zXMZ7wPqNNMFgLp/T/xWhvFZza1Czl4ojg4LGjn
HpWshUB+dzIfKdmIvw/GWiopItEbYQlat5ZI1iDO2+8kpyMpz+aTKTG2QULU5PnG
o4Wrs0Yg0Hk5MHsXg/ECX/tLVgqt5i511Ckh67l2vfaavsY/pHxR7vbGdPQ85wLG
565BqCGl++fj2yh7pm3sTNlqAqI33mOaU7fuFvKENImpciiL71zJnfBc0T+L8uEC
6U7Hl4/Kwz16oAAETqhL
=yq6z
-----END PGP SIGNATURE-----
Drew White
> -----BEGIN PGP SIGNED MESSAGE-----
> Hash: SHA512
>
> - -----BEGIN PGP SIGNED MESSAGE-----
> Hash: SHA512
>
> Rusty Bird:
> > Drew White:
> > > On Tuesday, 25 April 2017 07:51:46 UTC+10, Unman wrote:
> > > > I seem to recall that Fedora has such a service, but I dont think it's
> > > > enabled in a default template.
> > > It is enabled by default, and I asked somewhere how to disable it ages ago, but I can't find that information any more.
> >
> > sudo dnf remove PackageKit-command-not-found
> >
Thanks, I'll do that. I'll put it into my little book of commands to remember to perform on new installs. "dnf remove PackageKit-command-not-found"
> > > > I think the only way to get a caching proxy is to install your own - I
> > > > use apt-cacher-ng, but I'm mainly Debian.
> > > But the UpdateVM is supposed to do that.
> >
> > No, that's a non-caching proxy.
>
> Sorry, I shouldn't mix these up: The "UpdateVM" proxies _dom0_
> updates. It doesn't necessarily run an instance of the (completely
> different) "Updates Proxy" for VM updates. But anyway, the latter is
> non-caching.
Well, if I don't give the guest access to the internet by restricting firewall, and I tell it to "Allow connections to Updates Proxy", why doesn't that do what it says it will do?
Sincerely,
Drew.
Rusty Bird
Hash: SHA512
necessarily the case. The Updates Proxy is one of many non-caching
proxies.
Rusty
-----BEGIN PGP SIGNATURE-----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=tf56
-----END PGP SIGNATURE-----
Drew White
> Drew White:
> > On Wednesday, 26 April 2017 11:05:43 UTC+10, Rusty Bird wrote:
> > Well, if I don't give the guest access to the internet by restricting firewall, and I tell it to "Allow connections to Updates Proxy", why doesn't that do what it says it will do?
>
> But it does! Maybe you expect proxying to imply caching, which is not
> necessarily the case. The Updates Proxy is one of many non-caching
> proxies.
If it got access to the update proxy, then it would be able to update even if IPs were resticted because the update proxy would be allowed as it's on the same subnet.
UpdateVM: "update-vm (current)"
That's what I have set in options.
Update Proxy is somewhere unknown.
At this point, I'm looking at building a better update system that what is in place because of Fedora's crap that it makes you download every 5 minutes..
80 Mb every little while just to see if there are updates... I'd rather download once, then use that for each guest. Is that possible?
How would I create the update cache proxy? Is there already one out there that isn't resource hungry?
Sincerely,
Drew.