Re: The harden-*flaws packages.

To: Daniel Martin <martin@snowplow.org>
Cc: debian-devel@lists.debian.org
Subject: Re: The harden-*flaws packages.
From: Goswin Brederlow <goswin.brederlow@student.uni-tuebingen.de>
Date: 02 Sep 2002 09:20:37 +0200
Message-id: <[🔎] 871y8cluwq.fsf@mrvn.homelinux.org>
In-reply-to: <[🔎] 87bs7hqj67.fsf@cush.martinhouse.internal>
References: <20020829123512.GA10477@chrystal.opal.dhs.org> <[🔎] 20020901211445.GA9589@finlandia.infodrom.north.de> <[🔎] 87bs7hqj67.fsf@cush.martinhouse.internal>

Daniel Martin <martin@snowplow.org> writes:

> Martin Schulze <joey@infodrom.org> writes:
> 
> Hrm.  The more I think about this the more I wonder if maybe the
> harden-*flaws packages make much sense in stable at all.  If someone
> is apt-get'ing from security.debian.org, they're already replacing
> vulnerable versions with fixed ones.  If someone is updating from a
> point release CD, the same thing applies.  The only case where I can
> see it making sense is with someone following testing with most of
> their packages on hold (they really want a stable system, and only
> upgrade a package when they need to).  Am I missing a scenario?

They should have stable as their distribution with highest priority
for apt. That includes security for stable.

On top of that the few packages they want more current can be
installed from woody or sid. No need to keep everything else on hold,
making stable first priority for apt should be enough.

And then they would get security updates.

MfG
        Goswin

Reply to:

References:
- Re: The harden-*flaws packages.
  - From: Martin Schulze <joey@infodrom.org>
- Re: The harden-*flaws packages.
  - From: Daniel Martin <martin@snowplow.org>

Prev by Date: Re: Improper NMU (Re: NMU for libquota-perl)
Next by Date: Re: Packages affected by removal of free mp3 players
Previous by thread: Re: The harden-*flaws packages.
Next by thread: Re: More manpower to our core teams
Index(es):
- Date
- Thread