Software Updates - Security Updates Only

monaronyc
Contributor

What's up Everybody!

We had to turn off Auto Updates because of Safari 12. Unfortunately for us, we cannot install nor run Safari 12 because of Java. We have an internal application that requires the use of Java, and it's a Safari only app. Don't ask me why...

In any hoot, we are trying to search out to our machines to see what updates are pending and available to them, and only install the security related ones. Only problem is, Safari 12 keeps jamming itself in the mix.

Is there a way to ONLY get the security related updates, and exclude Safari till we move past Java?

Just curious as to what everyone else is doing when it comes to security updates in Sierra and High Sierra.

Thanks as always!!!

2 REPLIES 2

mark_mahabir
Valued Contributor

We use NetSUS for that sort of thing.

It means we can pick and choose exactly which updates to make available to our users.

dgreening
Valued Contributor II

This will also block the auto-download and pestering from major OS updates:

#!/bin/bash

# Locate Caching Servers

/usr/bin/AssetCacheLocatorUtil

# Reset ignored updates
/usr/sbin/softwareupdate --reset-ignored

# Ignore High Sierra Nag Updates
/usr/sbin/softwareupdate --ignore "macOSInstallerNotification_GM"

# Ignore Safari 12 Sierra
/usr/sbin/softwareupdate --ignore "Safari12.0Sierra"

# Ignore Safari 12 High Sierra
/usr/sbin/softwareupdate --ignore "Safari12.0HighSierraAuto"