Re: security in testing

To: debian-devel@lists.debian.org
Subject: Re: security in testing
From: Sven Luther <sven.luther@wanadoo.fr>
Date: Wed, 14 May 2003 18:39:02 +0200
Message-id: <[🔎] 20030514163902.GA13668@iliana>
In-reply-to: <[🔎] 20030514141908.GA13945@alcor.net>
References: <20030513142055.GD25426@alcor.net> <[🔎] B21CC0CD-85DA-11D7-84D2-003065F97418@debian.org> <[🔎] 20030514141908.GA13945@alcor.net>

On Wed, May 14, 2003 at 10:19:08AM -0400, Matt Zimmerman wrote:
> There are already very clear statements about this.
> 
> http://www.debian.org/releases/
> 
> testing
>     The ``testing'' distribution contains packages that haven't been
> accepted into a ``stable'' release yet, but they are in the queue for that.
> The main advantage of using this distribution is that it has more recent
> versions of software, and the main disadvantage is that it's not completely
> tested and <<<has no official support from Debian security team>>>.
> 
> (emphasis added)
> 
> http://www.debian.org/security/faq
> 
> Q: How is security handled for testing and unstable?
> 
> A: The short answer is: it's not. Testing and unstable are rapidly moving
> targets and the security team does not have the resources needed to properly
> support those. If you want to have a secure (and stable) server you are
> strongly encouraged to stay with stable. However, the security secretaries
> will try to fix problems in testing and unstable after they are fixed in the
> stable release.

What is missing is a statement warning users that testing is less secure
than unstable.

Friendly,

Sven Luther

Reply to:

References:
- Re: security in testing
  - From: Chris Leishman <masklin@debian.org>
- Re: security in testing
  - From: Matt Zimmerman <mdz@debian.org>

Prev by Date: Re: Do not touch l10n files (was Re: DDTP issue)
Next by Date: Re: security in testing
Previous by thread: Re: security in testing
Next by thread: Re: security in testing
Index(es):
- Date
- Thread