Issues Emerging: Ubuntu Pro Packages in ‘Software Updater’ Frustrates Users

The lack of an option to disable Ubuntu Pro package updates from appearing in the Software Updater tool in Ubuntu LTS releases has displeased some users.

In the previous year, Canonical made modifications to the update-manager (or Software Updater) permitting it to show a selection of Ubuntu Pro package updates available for user systems, irrespective of whether Ubuntu Pro is active or not (and if it isn’t, they cannot install the updates).

Earlier, only those users who had actively chosen Ubuntu Pro were able to view the corresponding package updates for their systems.

Currently, these updates are visible to all users.

And the inability to opt-out of being asked to opt-in is proving an irritant…

Ubuntu Pro “Misguided Marketing Trick”

Software Updater now shows greyed-out Ubuntu Pro updates

In a bug report opened against update-manager on Launchpad the frustration some feel at not being able to outright disable Ubuntu Pro updates from showing in the Software Updater tool is laid bare.

“This caused some users I support (like my Dad) to panic & call me…”

“Every time I invoke Software Updater I get a list of Ubuntu Pro security updates, and a message at the bottom that for those updates I need to enable Ubuntu Pro,” they write.

“I searched for Ubuntu Pro to find out what it is, and came to the conclusion that I do not want it; but there seems to nowhere be any means to permanently reject its installation.”

They add that the behavior feels likes a “misguided marketing trick” — ouch!

“Getting calls from customers that have no idea what’s going on to their systems”

While the absence of an “off switch” for these security updates is a primary concern for some, others responding to the bug report describe the negatives of presenting inexperienced users with a series of security updates they are unable to install right away:

“This led to some of the users I assist (like my dad) becoming panicked and phoning me,” one user writes, adding that their father partly switched to Ubuntu following negative tales about companies coercing individuals into free subscriptions.

Another commenter notes: “I also receive calls from customers who are unaware of what is happening to their systems. They conduct updates and then can’t get rid of an update-manager window with inaccessible packages, unless they enable Ubuntu pro” (sic).

Hmm.

Ubuntu Pro: Ad, or Awareness?

Ubuntu Pro has been around for several years, and ESM around longer still. So, this is not the first time that Canonical’s efforts to keep Ubuntu users informed about the benefits of signing up to get security updates have drawn complaints.

Notifications printed when running apt commands led to consternation about “ads”, and some Ubuntu Server users were unenthused by plugs for Canonical services in the pre-configured motd-new element.

But let’s remind ourselves of the context around Ubuntu Pro and LTS releases:

  • Canonical delivers 5 years of support for packages in main & restricted
  • Packages in universe are supported by the community
  • Canonical also provides security updates for universe packages via Ubuntu Pro
  • Ubuntu Pro is free for home users on ≤5 PCs, paid for business/enterprise
  • Providing infrastructure and developer/engineers to support Pro isn’t cheap

While surfacing opt-in updates may grate I don’t see them as “ads”, more “awareness”.

Personally speaking, I do want to know if packages I install from the universe repo have security updates available for them — even if said updates are only available by signing up to Ubuntu Pro — which, disclaimer, I have!

But while I don’t mind them, I can sympathise with those annoyed at their inability to say “don’t tell me about them, I don’t care”. Control over your system is a strong USP of Linux. Incessant badgering about updates is an appreciably Windows-y experience!

But ignorance, however wilful, isn’t always bliss.

It’s better to know than not, innit

Canonical’s Oliver Grawert sums up the delicate balance in a reply to the bug report:

“Maintaining an additional 25k packages comes at a cost, what canonical does here is to make enterprises pay for this additional work to be able to then provide it for free to the community,” he writes.

Ubuntu Pro is free for home users, but you have to sign up – and there’s a reason why

“To make sure such enterprises do not grab it for free there needs to be a control mechanism in place which is why you need to register to get them.”

Which is fair.

As mentioned, Ubuntu Pro is free for home users on up to 5 computers. Signing up only requires a valid e-mail address. No payment information, no verifiable2 personal info, etc — more captcha than gotcha!

“As of hiding info about open security holes on your system, would you prefer to rather not know that your wordpress install from universe is vulnerable in a way a script kiddie can take over your blog site and show [rude] pics to the world instead of getting the list of available fixes during updates?”

I fear that one personally, Oliver 😅.

If these are “nags”, they’re well meaning — we are talking security here

“While ubuntus base system is indeed very secure, hiding info about open security holes in additional packages and available fixes for these is surely not a good idea,” he concludes.

And I agree.

As annoying as repeated visual “nags” — a quote from the bug report before anyone flies at me for using the term — we are talking about security here, not something trivial like “get more wallpapers”.

If surfacing “here are extra security fixes you should know about” in (arguably the most appropriate place for it) Software Update is seen a nag, it’s at least a well-meaning one.

A bit like a parent telling you to do up your laces so you don’t trip. The onus is on you to do something about it, but they can’t say they didn’t warn you…

Have you opted-in to Ubuntu Pro on your LTS system? And if you haven’t, what stops you from doing so? Does seeing Pro-only update irk you? Share your thoughts — keep ’em civil — below.

  1. Some may argue having to provide an email address is a ‘cost’ ↩︎
  2. You can type ‘Miaow Cat’ as your name and no-one will care ↩︎

Thanks lotuspsychje


Posted

in

,

by

Tags: