Re: Updating scanners and filters in Debian stable (3.1)

To: Stephen Gran <sgran@debian.org>
Cc: debian-devel@lists.debian.org
Subject: Re: Updating scanners and filters in Debian stable (3.1)
From: Thomas Bushnell BSG <tb@becket.net>
Date: 06 Oct 2004 14:19:29 -0700
Message-id: <[🔎] 87is9ntuhq.fsf@becket.becket.net>
In-reply-to: <[🔎] 20041006202517.GA25809@www.lobefin.net>
References: <[🔎] 20041004214759.GD16999@mails.so.argh.org> <[🔎] E1CEb7V-0000RP-00@chiark.greenend.org.uk> <[🔎] 20041005013912.GB8747@www.lobefin.net> <[🔎] 87hdp9rv3a.fsf@becket.becket.net> <[🔎] 20041005163756.GA27512@www.lobefin.net> <[🔎] 87mzz1q8xx.fsf@becket.becket.net> <[🔎] 20041005195220.GE12265@riva.ucam.org> <[🔎] 87r7obvlvt.fsf@becket.becket.net> <[🔎] 20041006171830.GC22723@www.lobefin.net> <[🔎] 87u0t7tze1.fsf@becket.becket.net> <[🔎] 20041006202517.GA25809@www.lobefin.net>

Stephen Gran <sgran@debian.org> writes:

> What I (and it seems, others) would like to see is:
> 3) some other method to upgrade software that has to change rapidly to
>    meet new classes of threats, even though these threats may not affect
>    the machine running the software itself.  This category seems to me 
>    to be composed of A/V scanners, anti-spam suites, and IDS-type software.  
>    I may be missing some, and I'm sure someone will chime in with it.

What we want with this is a way that is *stable*.  If you can't
promise me stability, then I don't want it (or I want it at arm's
length).  

The backport work is part of the beast here, and "where the archive
lands" or "which team does the work" is only a red-herring.  That's
why I kept saying "we have a procedure"--because the problem is not
the absence of an archive, nor the absence of a team; the problem is
an agreed maintenance strategy.

I would like to see a concrete proposal that is something more than
"we need a place where we can make arbitrary changes to certain
packages in stable."  In particular, I would like to see something
like what we have for the existing security maintenance scheme: a
policy that requires backporting and does not simply wholesale include
new upstream versions complete with all the new features--and
bugs--that they may have.

Thomas

Reply to:

Follow-Ups:
- Re: Updating scanners and filters in Debian stable (3.1)
  - From: Stephen Gran <sgran@debian.org>

References:
- Re: Updating scanners and filters in Debian stable (3.1)
  - From: Andreas Barth <aba@not.so.argh.org>
- Re: Updating scanners and filters in Debian stable (3.1)
  - From: Matthew Garrett <mgarrett@chiark.greenend.org.uk>
- Re: Updating scanners and filters in Debian stable (3.1)
  - From: Stephen Gran <sgran@debian.org>
- Re: Updating scanners and filters in Debian stable (3.1)
  - From: Thomas Bushnell BSG <tb@becket.net>
- Re: Updating scanners and filters in Debian stable (3.1)
  - From: Stephen Gran <sgran@debian.org>
- Re: Updating scanners and filters in Debian stable (3.1)
  - From: Thomas Bushnell BSG <tb@becket.net>
- Re: Updating scanners and filters in Debian stable (3.1)
  - From: Colin Watson <cjwatson@debian.org>
- Re: Updating scanners and filters in Debian stable (3.1)
  - From: Thomas Bushnell BSG <tb@becket.net>
- Re: Updating scanners and filters in Debian stable (3.1)
  - From: Stephen Gran <sgran@debian.org>
- Re: Updating scanners and filters in Debian stable (3.1)
  - From: Thomas Bushnell BSG <tb@becket.net>
- Re: Updating scanners and filters in Debian stable (3.1)
  - From: Stephen Gran <sgran@debian.org>

Prev by Date: Re: Updating scanners and filters in Debian stable (3.1)
Next by Date: Re: possible mass bug filing: spamassassin 3
Previous by thread: Re: Updating scanners and filters in Debian stable (3.1)
Next by thread: Re: Updating scanners and filters in Debian stable (3.1)
Index(es):
- Date
- Thread