Re: Bug#747697: [RFR] templates://debian-security-support/{debian-security-support.templat es}
Moritz Muehlenhoff wrote:
> On Sat, May 17, 2014 at 12:05:14PM +0100, Justin B Rye wrote:
>> Do I understand that it does this by *containing lists* of packages
>> with such limits? Okay, so if LibreOffice (say) declares that the
>> version of their software in stable is now unsupported, how is that
>> information going to reach users who have debian-security-support
>> already installed (apart from "via the security mailinglists they
>> should also be subscribed to", that is)?
>
> If we need to end security support for a package we'll release an updated
> version of debian-security-support. Does that clarify it?
I suppose pedantically speaking you've only eliminated the hypothesis
that the plan is for this package never to receive any updates, but
yes, thanks - so users automatically get upgrades which automatically
re-run the detector... in that case the description could perhaps get
an extra line something like this:
New versions of this package with updated checklists are provided via
security updates.
That should make it obvious that debian-security-support depends on
(and isn't an alternative to!) having security.debian.org in a
system's sources.list...
--
JBR with qualifications in linguistics, experience as a Debian
sysadmin, and probably no clue about this particular package
--- debian-security-support-2014.05.16.pristine/debian/control 2014-05-16 20:10:28.000000000 +0100
+++ debian-security-support-2014.05.16/debian/control 2014-05-18 15:22:20.022375030 +0100
@@ -17,11 +17,14 @@
Depends: ${misc:Depends},
adduser,
gettext-base,
-Description: Identify installed packages with ended/limited security support
- For some Debian packages, maintaining security support is not
- feasible for the planned life cycle. For other packages, security
- support is limited, it does not cover the full feature set.
+Description: security support coverage checker
+ For some packages, it is not feasible to maintain full security
+ support for all use cases through the full distribution release
+ cycle.
.
- This package provides a program to identify installed packages
- where support had to be ended prematurely or is limited, and alerts
- the administrator in that case.
+ This package provides a program to identify installed packages for
+ which support has had to be limited or prematurely ended, and to
+ alert the administrator.
+ .
+ New versions of this package with updated checklists are provided
+ via security updates.
Reply to: