Comment by dumpsterdiver
2 years ago
Indeed, but when the alternative is missing critical security updates for years at a time one only needs to be bitten once to understand the value.
2 years ago
Indeed, but when the alternative is missing critical security updates for years at a time one only needs to be bitten once to understand the value.
Monterey is still receiving security updates though?
I’m not sure what you mean. Keeping a system updated does include updating to the latest major operating system release when an older one no longer receives security updates.
Ansible (and other provisioning solutions) could help in the case where updates break an existing workflow by attempting to put the system back into the desired state. Of course if something broke after and update there’s a chance that trying to fix it will fail, but at least it would fail loudly during the provisioning process and you’d be able to see why.
The alternative in this case, sticking with Monterey, means they still receive the security updates.