Re: Bug#672695: wordpress: no sane way for security updates in stable releases

To: debian-devel@lists.debian.org
Subject: Re: Bug#672695: wordpress: no sane way for security updates in stable releases
From: Ben Hutchings <ben@decadent.org.uk>
Date: Mon, 14 May 2012 15:53:25 +0100
Message-id: <[🔎] 20120514145325.GK4038@decadent.org.uk>
In-reply-to: <[🔎] 20120514142327.GE14106@angband.pl>
References: <87ipg2e9hx.fsf@mid.deneb.enyo.de> <[🔎] 4FAED9ED.10709@bzed.de> <[🔎] 201205131113.06212.russell@coker.com.au> <[🔎] 20120513085510.GC12861@debian> <[🔎] 87d368ow9a.fsf@windlord.stanford.edu> <[🔎] 20120514130420.GA8341@spruce.wiehl.oeko.net> <[🔎] 20120514142327.GE14106@angband.pl>

On Mon, May 14, 2012 at 04:23:27PM +0200, Adam Borowski wrote:
> On Mon, May 14, 2012 at 03:04:20PM +0200, Toni Mueller wrote:
> > > to support in Debian; another is that it is really helpful for web
> > > applications to be able to give an entirely independent installation to
> > > each major site rather than trying to share the same code.  For another
> > 
> > Ack. That's also one factor driving the demand for virtual servers (xen,
> > kvm, you-name-it).
> 
> This reminds me: is anyone going to bring back vserver or openvz in some
> form?

Ola Lundqvist <ola@inguza.com> had plans to do this in an
OpenVZ-hosted repository.

> Otherwise, wheezy would end up with no containers.  Xen does kernel
> virtualization and thus takes an order of magnitude more memory, lxc is not
> supposed to be secure (it provides a chroot with usage limits, but no
> isolation).
[...]

User IDs and capabilities aren't yet properly namespaced.  So you
can't create a container-root user to manage the container from the
inside, and you can't rent out a container as a VPS.

That doesn't mean we have 'no containers'.

Ben.

-- 
Ben Hutchings
We get into the habit of living before acquiring the habit of thinking.
                                                              - Albert Camus

Reply to:

Follow-Ups:
- Re: Bug#672695: wordpress: no sane way for security updates in stable releases
  - From: Toni Mueller <toni@debian.org>

References:
- Bug#672695: wordpress: no sane way for security updates in stable releases
  - From: Bernd Zeimetz <bernd@bzed.de>
- Re: Bug#672695: wordpress: no sane way for security updates in stable releases
  - From: Russell Coker <russell@coker.com.au>
- Re: Bug#672695: wordpress: no sane way for security updates in stable releases
  - From: Jon Dowland <jmtd@debian.org>
- Re: Bug#672695: wordpress: no sane way for security updates in stable releases
  - From: Russ Allbery <rra@debian.org>
- Re: Bug#672695: wordpress: no sane way for security updates in stable releases
  - From: Toni Mueller <toni@debian.org>
- Re: Bug#672695: wordpress: no sane way for security updates in stable releases
  - From: Adam Borowski <kilobyte@angband.pl>

Prev by Date: openvz, was: Re: Bug#672695: wordpress: no sane way for security updates in stable releases
Next by Date: Re: Bug#672695: wordpress: no sane way for security updates in stable releases
Previous by thread: Re: openvz, was: Re: Bug#672695: wordpress: no sane way for security updates in stable releases
Next by thread: Re: Bug#672695: wordpress: no sane way for security updates in stable releases
Index(es):
- Date
- Thread