How about a little chat with elav on twitter, and because he doesn't have access to a specific forum about Ubuntu, let's do a paranoid setup of this distro. This means that we are going to distrust all updates.
After installing Ubuntu and verify that it works perfectly we will insist that it continue like this for a long time. Security updates will continue to remain unchanged.
This setting is not for people who like constant updates,
We start
kdesu kwrite /etc/apt/sources.list
You have to delete / comment from this list that I put below, example:
deb http://mx.archive.ubuntu.com/ubuntu/ precise-updates main restricted
deb-src http://mx.archive.ubuntu.com/ubuntu/ precise-updates main restricted
deb http://mx.archive.ubuntu.com/ubuntu/ precise-backports main restricted universe multiverse
deb-src http://mx.archive.ubuntu.com/ubuntu/ precise-backports main restricted universe multiverse
You get it, press ctrl + f and write "updates" so that when pressing enter comment all lines that do not contain security.
Save and close gedit and then run:
sudo aptitude update
The new repositories, we will never add them to sources.list. For that there is a special directory called: «/etc/apt/sources.list.d«.
This is where we will save all the new repos.
kdesu kwrite /etc/apt/sources.list.d/my_new_repository.list
For example, for the medibuntu repo we can do the following:
kdesu kwrite /etc/apt/sources.list.d/medibuntu.list
And copy and paste the corresponding line. For example:
deb http://packages.medibuntu.org/ precise free non-free
deb-src http://packages.medibuntu.org/ precise free non-free
What is the use of this complicated information that you are giving me and absolutely unnecessary in my opinion?
Well, when it comes to getting rid of a repo, it helps you avoid having to edit the main sources.list file all the time.
- I recommend always updating with the command:
sudo aptitude safe-upgrade
Then we will no longer need update-notifier or update-notifier-gnome, and if you wish you can delete them:
sudo aptitude remove update-notifier update-notifier-gnome
- Follow this step, only if all the components of the computer work with the kernel they have. Better to forget this step if they are not clarified with the information they read.
Open Synaptic:
Then run in a terminal:
uname -r
The terminal output should look something like this:
3.2.0-36-generic
They copy and paste in Synpatic's search bar only the part: 3.2.first_number (3.2.0)
They notice that they will appear listed: several kernels of which there are some that the architecture does not appear at the end of the name.
For example selecting the "linux-image-3.2.0" in its description will appear:
This package provides kernel header files for version 3.2.0, for sites
that want the latest kernel headers. Please read
/usr/share/doc/linux-headers-3.2.0-24/debian.README.gz for details
In other words, it is a decoy that attracts new cores, and can be uninstalled, a package that does not contain this description means that it is an important file whose uninstallation would cause a serious irreparable failure of the system.
This step does not affect the kernel security updates, in fact they will not change the kernel version but the same version will be updated periodically.
With this configuration, I receive updates only from each version, without going to the next, something like Debian.
regards
Source: lednar from the forum Hispanic ubuntu
Good article for the sick in security, just a couple of notes:
- This manual seems to point to Kubuntu, for Ubuntu, xubuntu and Lubuntu GKSU + text editor is used (eg, in Ubuntu you would use gksu gedit /etc/apt/sources.list)
- Aptitude does not come by default, so in the manual you should change the commands to apt-get.
In fact, not even Kubuntu, since KWrite is not installed by default, the text editor is Kate.
No intention of offending those who use this distribution, but the truth is that from so many times I tried it, especially 12.04, I feel safer if I don't use it… ..
regards
I did that with windows vista, 0 updates for years and nothing happened, although I do not understand that mania with ubuntu, it starts to be annoying and irrational
according to the article it is debian.
And speaking of Ubuntu, 12.04.2 is now available. Hopefully it's better than the previous two.
regards
Sure, it's safer to use Windows, and especially Internet Explorer, right?
I was referring to the security of my hard, because it heats up, which is scary with Ubuntu, although now I'm testing 12.04.2, which seems to go better with power management. Of course, disabling the rep… flash plugin in Firefox.
Regarding the security you mean, that's between my fingers and the keyboard, whatever you use.
regards
A few days ago I did a real installation of Ubuntu 13.04 to see how its development is going, it is totally true that there is something that the guys from Canonical do not do well since it literally eats the machine.
On the one hand, the Ubuntu kernel has a lot to do with PowerTop showing that everything that can be turned on is turned on (or BAD).
On the other hand in my case, having an Intel / ATi hybrid graphics card, it is evident that Xorg does not automatically detect video acceleration and is using that horrible thing called LLVM - increasing the load on the processor and making the machine constantly with the fan on 😛
Being objective I must admit that the version of Ubuntu that I tried is a development version and that of course it does not have the tweaks to the system that I was doing over time on my system (Arch) which leads me to two conclusions:
1. Obviously Canonical has a very particular agenda when it comes to Ubuntu's performance on laptops and desktops in general, since what happens to me with version 13.04 is what continues to happen to me with 12.10 and 12.04 - before to a lesser extent with 11.10, so far undoubtedly the best version of Ubuntu.
I say that they must have a particular agenda by force due to the fact that they do not care to polish this matter, in fact it seems that they do not care at all to polish the experience of using the desktop since any freehand distro generally has a very high performance better than any version of Ubuntu with all the support that this distribution has from a _company_.
2. The added value of using a rolling-release system is undoubted: as we encounter problems over time with the use of the system (software + hardware), and we are solving them, the configurations that we edit, the tweaks that we use and the hacks that we adapt contribute to having a stable, reliable and increasingly polished system; If today I had to install canned distributions on my personal computers that need a monstrous update from time to time and it is also certain that, for intrinsic compatibility reasons, said updates deactivate all the tweaks and improvements that I was making to the system, surely I would reserve the I use GNU + Linux and BSD for a purely server work and I would use Windows or MacOS as the main system.
To top it off, there is a myriad of personal touches that can be made to the system, starting with the configuration files in / etc (sysctl.conf and its friends, / etc / modprobe, /etc/modules.d/, / etc / tmpfiles, fstab, etc., / etc / default / * I mean ALL the files in there, / etc / X11, /etc/X11/xorg.d/, etc.) plus all those small changes throughout the system, including ~ / .bashrc (or ~ / .zshrc), ~ / .bash_aliases, ~ / .bash_logout, ~ / .bash_profile and the rest ...
If I did not use a rolling-release distro with minimal base directly, I could not use GNU + Linux as my main working system, the system has to be at my command, under my command and not the other way around.
I forgot: in Ubuntu with minimal IDLE usage - for example commenting here on DL using Chromium, which is heavy - I have CPU usage values in the order of 1.0 1.0 1.0 with the fan making a lot of noise and the machine VERY HOT.
On my Arch system at the moment the CPU usage values typing right here also with Chromium are: 0,06 0,11 0,24 on a _barely_ warm machine, after 1 hour of use.
The 12.04.2 seems to handle the issue well, I have been testing it for more or less a day and a half and I have the same temperatures as in Windows 7, although sometimes it raises a couple of degrees more. I copy and paste data that I commented in MuyLinux so that you can see how the topic comes:
"Microphone: Perfect, on 12.04 and 12.04.1 it didn't work."
«Battery: Browsing with Firefox and writing various documents in LibreOffice: 4 hours. I clarify, with Jupiter installed. »
«Temperature: Between 45 and 61 °; normal fan, turns on when needed. In the previous ones he never stopped. I clarify, in Firefox disabled flash plugin, because if the temperature does not go to hell (point against for adobe, as always). Transferring files from external to internal HD, 33 GB, at 31,4 mb / s. »
«Equipment data:
Lenovo G470, Intel B960, Intel HD3000 graphics; 4 GB ram, Wireless Broadcom 802.11; HD 750 GB. Everything absolutely recognized from the beginning ».
Unfortunately Fedora 18 is doing very badly on this computer. At least fresh out, I would have to see if some issues were solved, but the worst of all was the temperature. I could use 17, but why if the support ends soon, so if this Ubuntu LTS works well for me, I prefer to stay in this one.
regards
kdesu kwrite in Ubuntu default? WTF ????
When writing articles, special care must be taken to use the native applications and configurations of the tool or system that we are commenting on and _ avoid_ using non-native tools that may confuse new users.
You should edit the article and use "gksu gedit" instead of the current line.
The truth is, I use xubuntu 12.04 and it is one of the best that I have tried (and I try all that I can).