Re: Why do we still have this on the distribution?

To: Debian Development <debian-devel@lists.debian.org>
Subject: Re: Why do we still have this on the distribution?
From: Martin Schulze <joey@infodrom.org>
Date: Fri, 8 Apr 2005 16:16:18 +0200
Message-id: <[🔎] 20050408141618.GB9895@finlandia.infodrom.north.de>
In-reply-to: <[🔎] 20050407025318.GK5814@archimedes.ucr.edu>
References: <[🔎] 20050405154950.GA20666@kochab.efis.ucr.ac.cr> <"20050405191726.GC6447"@xieana.donarmstrong.org> <[🔎] 20050405214306.GB32028@gwolf.org> <[🔎] 20050405225625.GZ5814@archimedes.ucr.edu> <[🔎] 20050405230920.GA6479@seanius.net> <[🔎] 1160.143.121.153.52.1112775503.squirrel@wm.kinkhorst.nl> <[🔎] 20050407011054.GB31514@daedalus.andrew.net.au> <[🔎] 20050407025318.GK5814@archimedes.ucr.edu>

Don Armstrong wrote:
> > > This raises a valid point; maybe the maintainer can comment on
> > > this? Since we already receive no security updates to php3 from
> > > upstream, is it feasible security-wise to keep it in the
> > > distribution for some years to come?
> > 
> > I think the opinion of the stable release manager and security team
> > should rank higher than the maintainer also.
> 
> If the RM and or security team feel that a package is likely to be the
> cause of too much grief for them to support security fixes for, they
> should explain that fact to the maintainer(s) (if at all possible) and
> let the maintainer(s) determine if they will take on the burden of
> supporting the package in stable as well. If the maintainer doesn't
> want that burden,[1] the maintainer should file a severity serious bug
> against the package to keep it from being released in stable.

FWIW: This would mean to remove all of Mozilla and friends, since they
don't receive any security support upstream, and neither the maintainer
or the security team are in a position to backport all fixes and correcte
all stuff in the older versions.  (upstream does only support the most
recent version, which will be different about one month after the sarge
release).

Regards,

	Joey

-- 
In the beginning was the word, and the word was content-type: text/plain

Please always Cc to me when replying to me on the lists.

Reply to:

Follow-Ups:
- Re: Why do we still have this on the distribution?
  - From: Eric Dorland <eric@debian.org>
- Re: Why do we still have this on the distribution?
  - From: Andrew Pollock <apollock@debian.org>
- Re: Why do we still have this on the distribution?
  - From: Roger Lynn <roger@rilynn.demon.co.uk>

References:
- Why do we still have this on the distribution?
  - From: "Marcelo E. Magallon" <mmagallo@debian.org>
- Re: Why do we still have this on the distribution?
  - From: Gunnar Wolf <gwolf@gwolf.org>
- Re: Why do we still have this on the distribution?
  - From: Don Armstrong <don@debian.org>
- Re: Why do we still have this on the distribution?
  - From: sean finney <seanius@debian.org>
- Re: Why do we still have this on the distribution?
  - From: "Thijs Kinkhorst" <lists@kinkhorst.com>
- Re: Why do we still have this on the distribution?
  - From: Andrew Pollock <apollock@debian.org>
- Re: Why do we still have this on the distribution?
  - From: Don Armstrong <don@debian.org>

Prev by Date: Re: Bug#303667: ITP: cycle -- calendar program for women
Next by Date: Re: Why do we still have this on the distribution?
Previous by thread: Re: Why do we still have this on the distribution?
Next by thread: Re: Why do we still have this on the distribution?
Index(es):
- Date
- Thread