Re: Updating scanners and filters in Debian stable (3.1)

To: Matthew Garrett <mgarrett@chiark.greenend.org.uk>
Cc: debian-devel@lists.debian.org, Martin Schulze <joey@infodrom.org>
Subject: Re: Updating scanners and filters in Debian stable (3.1)
From: Thomas Bushnell BSG <tb@becket.net>
Date: 20 Sep 2004 11:21:38 -0700
Message-id: <[🔎] 87sm9cdcnh.fsf@becket.becket.net>
In-reply-to: <[🔎] E1C9Rzu-0006tg-00@chiark.greenend.org.uk>
References: <[🔎] 20040913134051.GM29632@finlandia.infodrom.north.de> <[🔎] 1095172983.4731.3.camel@arrakis.localnet> <[🔎] 20040915180814.GB24748@finlandia.infodrom.north.de> <[🔎] 1095324979.4589.5.camel@arrakis.localnet> <[🔎] 1095324979.4589.5.camel@arrakis.localnet> <[🔎] 20040920165437.GC6260@finlandia.infodrom.north.de> <[🔎] E1C9Rzu-0006tg-00@chiark.greenend.org.uk>

Matthew Garrett <mgarrett@chiark.greenend.org.uk> writes:

> Solution a: Newer versions of Mozilla are introduced. Functional
> regressions are possible. However, admins have the choice of setting
> Mozilla's status to hold. In the worst case, this solution can be made
> equivilent to the current situation.

The problem here is that there are a *lot* of packages that depend on
mozilla.  You have to get all the other browser maintainers onboard,
and ready to compile together.  Mozilla is always changing interfaces
in weird tricky ways, and upword compatibility never happens.

> Solution b: Security fixes are backported to Mozilla. The size of the
> codebase may make this impractical, and functional regressions are still
> possible. However, admins have the choice of setting Mozilla's status to
> hold. In the worst case, this solution can be made equivilent to the
> current situation.

This requires the Debian mozilla maintainers to actually make security
patches.  If they would do so, instead of screaming "it's too hard",
then the problem would be solved.

But I don't have any idea how hard it is: maybe it really is too
hard. 

> Perhaps the real problem here is that we seem to be unwilling to have a
> public policy of some packages being more important than others. Letting
> Mozilla get updated in stable might result in people wanting other
> programs to be updated. 

Like galeon?  And that sometimes might require a gnome upgrade too.
Are you willing to tackle that?

Thomas

Reply to:

Follow-Ups:
- Re: Updating scanners and filters in Debian stable (3.1)
  - From: Josselin Mouette <joss@debian.org>

References:
- Updating scanners and filters in Debian stable (3.1)
  - From: Martin Schulze <joey@infodrom.org>
- Re: Updating scanners and filters in Debian stable (3.1)
  - From: Josselin Mouette <joss@debian.org>
- Re: Updating scanners and filters in Debian stable (3.1)
  - From: Martin Schulze <joey@infodrom.org>
- Re: Updating scanners and filters in Debian stable (3.1)
  - From: Josselin Mouette <joss@debian.org>
- Re: Updating scanners and filters in Debian stable (3.1)
  - From: Martin Schulze <joey@infodrom.org>
- Re: Updating scanners and filters in Debian stable (3.1)
  - From: Matthew Garrett <mgarrett@chiark.greenend.org.uk>

Prev by Date: Re: Please -- more DFSG-free font packages, if you can maintain them well
Next by Date: Re: Updating scanners and filters in Debian stable (3.1)
Previous by thread: Re: Updating scanners and filters in Debian stable (3.1)
Next by thread: Re: Updating scanners and filters in Debian stable (3.1)
Index(es):
- Date
- Thread