[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: Bug#747697: [RFR] templates://debian-security-support/{debian-security-support.templat es}



Moritz Muehlenhoff wrote:
> On Sat, May 17, 2014 at 12:05:14PM +0100, Justin B Rye wrote:
>> Do I understand that it does this by *containing lists* of packages
>> with such limits?  Okay, so if LibreOffice (say) declares that the
>> version of their software in stable is now unsupported, how is that
>> information going to reach users who have debian-security-support
>> already installed (apart from "via the security mailinglists they
>> should also be subscribed to", that is)?  
> 
> If we need to end security support for a package we'll release an updated
> version of debian-security-support. Does that clarify it?

I suppose pedantically speaking you've only eliminated the hypothesis
that the plan is for this package never to receive any updates, but
yes, thanks - so users automatically get upgrades which automatically
re-run the detector... in that case the description could perhaps get
an extra line something like this:

  New versions of this package with updated checklists are provided via
  security updates.

That should make it obvious that debian-security-support depends on
(and isn't an alternative to!) having security.debian.org in a
system's sources.list...
-- 
JBR	with qualifications in linguistics, experience as a Debian
	sysadmin, and probably no clue about this particular package
--- debian-security-support-2014.05.16.pristine/debian/control	2014-05-16 20:10:28.000000000 +0100
+++ debian-security-support-2014.05.16/debian/control	2014-05-18 15:22:20.022375030 +0100
@@ -17,11 +17,14 @@
 Depends: ${misc:Depends},
     adduser,
     gettext-base,
-Description: Identify installed packages with ended/limited security support
- For some Debian packages, maintaining security support is not
- feasible for the planned life cycle. For other packages, security
- support is limited, it does not cover the full feature set.
+Description: security support coverage checker
+ For some packages, it is not feasible to maintain full security
+ support for all use cases through the full distribution release
+ cycle.
  .
- This package provides a program to identify installed packages
- where support had to be ended prematurely or is limited, and alerts
- the administrator in that case.
+ This package provides a program to identify installed packages for
+ which support has had to be limited or prematurely ended, and to
+ alert the administrator.
+ .
+ New versions of this package with updated checklists are provided
+ via security updates.

Reply to: