Re: Updating fis-gtm package to 6.1

To: debian-med@lists.debian.org
Subject: Re: Updating fis-gtm package to 6.1
From: Thorsten Alteholz <debian-med@alteholz.de>
Date: Tue, 11 Feb 2014 22:35:57 +0100 (CET)
Message-id: <[🔎] Pine.LNX.4.64.1402111913380.21475@tor.gallien.in-chemnitz.de>
In-reply-to: <[🔎] 52FA46AA.3020609@fisglobal.com>
References: <[🔎] 52F62C27.4010008@fisglobal.com> <[🔎] 20140208154852.GA10782@an3as.eu> <[🔎] 52F66E0E.8030003@fisglobal.com> <[🔎] CABAUzPrY5SmkLXn-T-GznLJQ6KZO+v0H=GtA06Co8n9bx9PSTg@mail.gmail.com> <[🔎] 20140209001259.GJ10782@an3as.eu> <[🔎] 20140209194713.GB5417@hermes.hilbert.loc> <[🔎] 20140209215007.GB14338@an3as.eu> <[🔎] 20140209220054.GE5417@hermes.hilbert.loc> <[🔎] 20140209221127.GE14338@an3as.eu> <[🔎] Pine.LNX.4.64.1402101905110.23561@tor.gallien.in-chemnitz.de> <[🔎] 20140210192728.GA15809@hermes.hilbert.loc> <[🔎] CAAvaLCzDWOEsB2r8gcNNF76w++oWg=ceS_yOyNJ-N0t-73D_Bg@mail.gmail.com> <[🔎] 52FA46AA.3020609@fisglobal.com>



On Tue, 11 Feb 2014, Bhaskar, K.S wrote:

Dominique's suggestion makes sense. There's no issue changing the latestrelease and having fis-gtm reflect that, so that someone installing fis-gtmalways gets the latest release. My concern is just to make sure thatinstalling the latest release when fis-gtm is updated should not delete priorreleases already on the system.

So for testing the user needs to install the versionless package fis-gtmand such will get updates and informations about problems with the currentversions.

With respect to Thorsten's question about security and grave bugs: So far, wehave been lucky and to date have never had a grave bug that caused us towithdraw a release.


This is good to hear, but now we need to agree on the meaning of grave :-).

According to https://www.debian.org/Bugs/Developer#severities a grave bugcan cause data loss. So you never had such a bug? Everybody could use theversion from oldstable forever and will just miss some new features?Anyways, if this would happen, would you (as upstream) provide patches forolder versions?

With respect to security issues, we have had twosecurity issues in the last so many years (actually, one issue in 2007,followed by a second because the fix for the first issue was not complete).As the vulnerability was not in the GT.M core, we were able to distribute afix that wrapped & isolated the vulnerable component and could be retrofittedto existing installations of older releases.

Ok, in such a rare case you will provide the needed patches or workaroundsfor all versions in Debian?


  Thorsten

Reply to:

Follow-Ups:
- Re: Updating fis-gtm package to 6.1
  - From: "Bhaskar, K.S" <ks.bhaskar@fisglobal.com>

References:
- Re: Updating fis-gtm package to 6.1
  - From: "Bhaskar, K.S" <ks.bhaskar@fisglobal.com>
- Re: Updating fis-gtm package to 6.1
  - From: Andreas Tille <andreas@an3as.eu>
- Re: Updating fis-gtm package to 6.1
  - From: "Bhaskar, K.S" <ks.bhaskar@fisglobal.com>
- Re: Updating fis-gtm package to 6.1
  - From: Luis Ibanez <luis.ibanez@kitware.com>
- Re: Updating fis-gtm package to 6.1
  - From: Andreas Tille <andreas@an3as.eu>
- Re: Updating fis-gtm package to 6.1
  - From: Karsten Hilbert <Karsten.Hilbert@gmx.net>
- Re: Updating fis-gtm package to 6.1
  - From: Andreas Tille <andreas@an3as.eu>
- Re: Updating fis-gtm package to 6.1
  - From: Karsten Hilbert <Karsten.Hilbert@gmx.net>
- Re: Updating fis-gtm package to 6.1
  - From: Andreas Tille <andreas@an3as.eu>
- Re: Updating fis-gtm package to 6.1
  - From: Thorsten Alteholz <debian-med@alteholz.de>
- Re: Updating fis-gtm package to 6.1
  - From: Karsten Hilbert <Karsten.Hilbert@gmx.net>
- Re: Updating fis-gtm package to 6.1
  - From: Dominique Belhachemi <domibel@debian.org>
- Re: Updating fis-gtm package to 6.1
  - From: "Bhaskar, K.S" <ks.bhaskar@fisglobal.com>

Prev by Date: Re: Updating fis-gtm package to 6.1
Next by Date: Re: About pysam
Previous by thread: Re: Updating fis-gtm package to 6.1
Next by thread: Re: Updating fis-gtm package to 6.1
Index(es):
- Date
- Thread