These directives isn't going to mitigate any security hazard. They can be really meant to power UA's to refresh unstable information, not retain UA's from becoming retaining information.1 But should have been: Operate apt-get update && apt-get -y install php5-fpm && rm -rf /var/lib/apt/lists/* In truth, is most effective practice to cleanup the apt