Does TESTING have security updates?

To: debian-isp@lists.debian.org
Subject: Does TESTING have security updates?
From: Tomàs Núñez Lirola <tomas@grupoeon.net>
Date: Fri, 5 Sep 2003 13:46:04 +0200
Message-id: <[🔎] 200309051346.07336.tomas@grupoeon.net>

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Recently we talked about using stable/testing/unstable on servers.
Some people said unstable was stable enough, some people said stable was 
updated enough, but everybody said testing was not an option because it has 
not security updates.

Accidentally I've put testing on my sources.list:

deb ftp://ftp.de.debian.org/debian testing main contrib non-free
deb http://security.debian.org/ testing/updates main
deb-src ftp://ftp.de.debian.org/debian testing main contrib non-free

And I've "apt-get update", and I've got no errors, 
host:~# apt-get update
Get:1 http://security.debian.org testing/updates/main Packages [2515B]
Get:2 http://security.debian.org testing/updates/main Release [111B]
Get:3 ftp://ftp.de.debian.org testing/main Packages [2430kB]
Get:4 ftp://ftp.de.debian.org testing/main Release [81B]
Get:5 ftp://ftp.de.debian.org testing/contrib Packages [64.8kB]
Get:6 ftp://ftp.de.debian.org testing/contrib Release [84B]
Get:7 ftp://ftp.de.debian.org testing/non-free Packages [66.8kB]
Get:8 ftp://ftp.de.debian.org testing/non-free Release [85B]
Get:9 ftp://ftp.de.debian.org testing/main Sources [981kB]
Get:10 ftp://ftp.de.debian.org testing/main Release [83B]
Get:11 ftp://ftp.de.debian.org testing/contrib Sources [28.2kB]
Get:12 ftp://ftp.de.debian.org testing/contrib Release [86B]
Get:13 ftp://ftp.de.debian.org testing/non-free Sources [27.9kB]
Get:14 ftp://ftp.de.debian.org testing/non-free Release [87B]
Fetched 3601kB in 21s (169kB/s)
Reading Package Lists... Done
Building Dependency Tree... Done
host:~#

So I thought maybe there is now support for testing, and I looked at 
security.debian.org FAQ, and there I saw this:
Q: How is security handled for testing and unstable?
A: The short answer is: it's not. Testing and unstable are rapidly moving 
targets and the security team does not have the resources needed to properly 
support those. If you want to have a secure (and stable) server you are 
strongly encouraged to stay with stable. However, the security secretaries 
will try to fix problems in testing and unstable after they are fixed in the 
stable release.

But in this list I read there is unstable security updates!!

So now I am lost in space :P At first sight, the fact that I can "apt-get 
update" security on testing makes me think there are security updates for 
testing, but not necessarily (maybe there are files, but no one updates 
them).  Debian-isp guys telling there is unstable security updates and 
security.debian.org telling there is not, who do I believe? ;)

So please, can anyone tell me something about all that? There are security 
updates for testing/unstable?

Thank you!!

- -- 
Tomàs Núñez Lirola
Clave PGP en http://pgp.rediris.es:11371/pks/lookup?op=get&search=0x36443617
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.3 (GNU/Linux)

iD8DBQE/WHd+iQmYUmmD5jgRAuwtAJ48xqWH3olIdBl0XlyRlBpn3R8fmwCfTDAM
do/EjmovYw9LCjYPRwvPr+s=
=LOaG
-----END PGP SIGNATURE-----

Reply to:

Prev by Date: Postfix! [WAS: Re: Sendmail or Qmail ? ..]
Next by Date: Re: Sendmail or Qmail ? ..
Previous by thread: debian-isp
Next by thread: SMP on Debian server with Hyperthreading
Index(es):
- Date
- Thread