I have never met anyone refer to "screen off" as "sleep".

https://en.wikipedia.org/wiki/Sleep_mode

The terms everybody else are using are: "sleep" = "suspend to RAM" = "S3" and "hibernation" = "suspend to disk".

... and feel endless pain from whatever they did to the scrollbars. Seriously, wtf.

Making multiple mirrors seems like the best solution. I will explore that route.

I was hoping there was something built into APT or unattended-upgrades, I vaguely remembered such a feature... what I was remembering was probably Phased Updates, but those are controlled by Ubuntu not by me, and roll out too fast.

How many real teachers per student though? Is this just an excuse to have even less human support, because "we have 10 AIs per student"?

What does a ratio even mean in this case, the AIs are not separate.

Thanks, that sounds like the ideal setup. This solves my problem and I need an APT mirror anyway.

I am probably going to end up with a cronjob similar to yours. Hopefully I can figure out a smart way to share the pool to avoid download 3 copies from upstream.

Using scheduling is not a good option IMO, it's both too slow (some machines will wait a week to upgrade) and too fast (significant part of machines will upgrade right away).

It seems that making APT mirrors at the cadence I want is the best solution, but thanks for the answer.

Exactly this. Services and software are not the same thing, you're asking for a service recommendation and it can't be open-source software because it's not software.

So you can test the updates before fixing production.

My question is how to do that with APT.

Ok so what do you call "sleep"? You've now listed suspending, sleeping, and hibernating as 3 different things.

I don't know, I recently got a 2-in-1 laptop, and was surprised to see that KDE works great. Got Onboard as on-screen keyboard. Screen rotation works great. Glad I didn't have to run Gnome on that machine.

Suspending to disk usually requires a password on resume.

I feel you, but on the other hand if every single community member tries to help, even if they have no idea or don't understand the question, this is not great.

Anybody can ask Google or an LLM, I am spending more time reading and acknowledging this bot answer than it took you to copy/paste. This is the inverse of helping.

The problem is not "the loop"(?), your (LLM's) approach is not relevant, and I've explained why.

No, I'm asking how to have unattended-upgrades do that.

What was "the point"? From my perspective, I had to correct a fifth post about using a schedule, even though I had already mentioned it in my post as a bad option. And instead of correcting someone, turns out I was replying to a bot answer. That kind of sucks, ngl.

I am not worried about upgrades so bad that they literally don't boot. I am worried about all the possible problems that might break my service.

Did it write that playbook? Did you read it?

If you're one of those people that think every product is better if there's "AI" on the box then sure. What you're describing is static analysis though, it is not new.

This doesn't seem to enhance my workflow at all. Seems I now would have to reboot, and I still need to find a separate tool to coordinate/stagger updates, like I do now. Or did I miss something?

As a Google Domains customer, it would have been nice to learn about this from Google...

Is there anything about staggered upgrades and staging environments in there? Because obviously I had read it before posting...

I invite you to re-read the second paragraph of my post.

You're just throwing things I already listed back at me. I mentioned a staging environment, I mentioned a schedule was a (bad) option.

Maybe I'm not being clear.

I want to stagger updates, giving time to make sure they work before they hit the whole fleet.

If a new SSH version comes out on Tuesday, I want it installed to 1/3 of the machines on Tuesday, another third on Wednesday, and the rest in Friday. Or similar.

Having machines update on a schedule means I have much less frequent updates and doesn't even guarantee that they hit the staging environment first (what if they're released just before the prod update time?)

I can roll back with APT too, my question is how to do the staggered rollout.

What do you mean?

Probably not. Obfuscation works, and might even depend on remote code being downloaded at either build time or run time.

There are a lot of heuristics you can use (e.g. disallowing some functions/modules) to check a codebase, but those already exist no AI required. Unless you call static analysis "AI", who knows.

Minimizing risk is LITERALLY what I asked for. You clearly don't understand what I asked for.

This is a joke right?

Ubuntu only does security updates, no?

No, why do you think that?

run your own package mirror

I think you might be on to something here. I could probably do this with a package mirror, updating it daily and rotating the staging, production, etc URLs to serve content as old as I want. This would require a bit of scripting but seems very configurable.

Thanks for the idea! Can't believe I didn't think of that. It seems so obvious now, I wonder if someone already made it.

Sure, bugfix and security.

I'm sorry but I got a lot of very dumb answers like "have a staging environment" and "use a schedule", even though I listed both this points in my (very short) post already. The most detailed answer I got is a playbook copy/pasted from an LLM, and this one dude was getting into all subthreads to tell me I don't understand what I'm asking until I blocked him. So you don't have to worry about me, this was probably my first and last thread on Lemmy ;-) Either way, apologies if I got heated up.

What? I said I'm already using unattended-upgrades.

Which distro is image based and have the staggered rollout feature I'm after?

Nextcloud, Syncthing, PeerTube, Vaultwarden, Gitea (+drone, drone-qemu, gitea-pages), Wireguard, FreshRSS

"It" being the PyPI server not finding it? Pip not supporting the API? Or it downloads correctly but the setup.py prints that error?

Why?

It's called "bcachefs"

I find it hard to stay courteous in the presence of people like you, who reply without reading my post, call me "duder" and say I "don't understand what I am asking for".

Thankfully, I did get a great answer from someone else.

Use LVM, it will give you all the features of RAID 0 and more (encryption, migration, snapshotting, multiple volumes, etc)

I have a lot of trouble with the window/pane management. Moving panes to a different window is rather difficult. The server>session>window>pane hierarchy also seems way too deep for my humble needs.

The fact that the active window syncs between sessions is also really odd. Why can't I look at different windows on different devices?

unattended-upgrades can already do that actually, i e. you can configure the systemd timers. But that's insufficient for my needs. Using a mirror seems like the best option so far.

I found the page about "phased upgrades" (somehow missed it searching for "staggered", "incremental", "delayed", etc). Thanks for the pointer!

Unfortunately it doesn't seem configurable on my end, and it rolls out in about 54 hours so it can take out most of my machines before I have time to react (my first machine might update ~20h into the phased rollout, the rest will break within 24h). Bummer!