System Maintenance

# Update and upgrade
sudo apt update && sudo apt upgrade

# Check for failed services
systemctl --failed

# Review journal errors
journalctl -p 3 -xb

# Full upgrade (handles dependency changes)
sudo apt full-upgrade

# Remove unused packages
sudo apt autoremove

# Clean package cache
sudo apt clean

# Check for orphaned packages
deborphan

du -sh /var/cache/apt/archives/

# Remove all cached packages
sudo apt clean

# Remove outdated packages only
sudo apt autoclean

# Remove everything (aggressive)
sudo apt clean && sudo apt autoclean

# Remove unused dependencies
sudo apt autoremove

# With purge (removes configs too)
sudo apt autoremove --purge

# Install deborphan
sudo apt install deborphan

# List orphans
deborphan

# Remove orphans
sudo apt purge $(deborphan)

# Aggressive orphan search
deborphan --guess-all

# List installed kernels
dpkg --list | grep linux-image

# Remove old kernels (Ubuntu)
sudo apt autoremove --purge

# Manual removal (keep current + one backup)
uname -r  # Current kernel
sudo apt purge linux-image-X.X.X-XX-generic

# List modified configs for package
dpkg --status package | grep -A1 "Conffiles"

# Compare with default
debsums -ce

# Reinstall package with fresh configs
sudo apt install --reinstall -o Dpkg::Options::="--force-confask,confnew,confmiss" package

# Reset specific config
sudo dpkg-reconfigure package

# Failed systemd services
systemctl --failed

# Recent errors in journal
journalctl -p err -b

# Errors since last boot
journalctl -p 3 -xb

# Disk space
df -h

# Install debsums
sudo apt install debsums

# Check all packages
sudo debsums -s

# Check specific package
debsums package

# Check configs only
debsums -e

# Overall disk usage
df -h

# Largest directories
du -sh /* 2>/dev/null | sort -h | tail -10

# Package cache size
du -sh /var/cache/apt/

# Journal size
journalctl --disk-usage

# Fix broken dependencies
sudo apt --fix-broken install

# Reconfigure pending packages
sudo dpkg --configure -a

# Force install
sudo apt install -f

journalctl --disk-usage

# Keep only last 2 weeks
sudo journalctl --vacuum-time=2weeks

# Limit to 500MB
sudo journalctl --vacuum-size=500M

[Journal]
SystemMaxUse=500M
SystemMaxFileSize=50M
MaxRetentionSec=1month

sudo systemctl restart systemd-journald

# Install
sudo apt install unattended-upgrades

# Configure
sudo dpkg-reconfigure unattended-upgrades

# Test
sudo unattended-upgrade --dry-run --debug

Unattended-Upgrade::Allowed-Origins {
    "${distro_id}:${distro_codename}";
    "${distro_id}:${distro_codename}-security";
    "${distro_id}:${distro_codename}-updates";
};

Unattended-Upgrade::AutoFixInterruptedDpkg "true";
Unattended-Upgrade::Remove-Unused-Dependencies "true";
Unattended-Upgrade::Automatic-Reboot "false";

APT::Periodic::Update-Package-Lists "1";
APT::Periodic::Unattended-Upgrade "1";
APT::Periodic::AutocleanInterval "7";

# Update current system
sudo apt update && sudo apt full-upgrade

# Install upgrade tool
sudo apt install update-manager-core

# Check for new release
do-release-upgrade -c

# Upgrade
sudo do-release-upgrade

# Backup sources.list
sudo cp /etc/apt/sources.list /etc/apt/sources.list.backup

# Update codename (e.g., bullseye → bookworm)
sudo sed -i 's/bullseye/bookworm/g' /etc/apt/sources.list

# Update and upgrade
sudo apt update
sudo apt full-upgrade

# Reboot
sudo reboot

# Clean up
sudo apt autoremove