Re: Security updates for testing? (was: Re: 3.1 kl - 3.1 final)
On Wednesday 05 February 2003 12:39, Paul Cupis wrote:
> On Wednesday 05 Feb 2003 11:21, Ben Burton wrote:
> > > which is why you add security.debian.org to your list of deb sources
> > > in apt. all the security patches from sid are backported to testing
> > > and stable and placed in this deb source.
> > Are you sure? I thought they were backported to stable only. Though
> > I've never run testing, so I haven't paid much attention.
> From http://www.debian.org/security/faq:
> Q: How is security handled for testing and unstable?
> A: The short answer is: it's not. Testing and unstable are rapidly moving
> targets and the security team does not have the resources needed to
> properly support those. If you want to have a secure (and stable) server
> you are strongly encouraged to stay with stable. However, the security
> secretaries will try to fix problems in testing and unstable after they
> are fixed in the stable release.
personally I use mixed sources from woody, sid and sarge. And off course I
have a line for security updates. But doesn't it happen that the packages
in sid will become newer then the ones in the security updates repository,
meaning it makes no difference wether you install the sid packages or the
Frank Van Damme