Bug#698245: unblock: moodle/2.2.3.dfsg-2.6~wheezy2

To: Didier 'OdyX' Raboud <odyx@debian.org>
Cc: pkg-moodle-maintainers@lists.alioth.debian.org, 698245@bugs.debian.org
Subject: Bug#698245: unblock: moodle/2.2.3.dfsg-2.6~wheezy2
From: Tomasz Muras <nexor1984@gmail.com>
Date: Mon, 11 Mar 2013 11:18:51 +0100
Message-id: <[🔎] 513DAF8B.2000602@gmail.com>
Reply-to: Tomasz Muras <nexor1984@gmail.com>, 698245@bugs.debian.org
In-reply-to: <[🔎] 201303111049.58635.odyx@debian.org>
References: <50F5CBBA.9020408@gmail.com> <5106B7A9.8020004@gmail.com> <201302281800.19687.odyx@debian.org> <[🔎] 201303111049.58635.odyx@debian.org>

On 03/11/2013 10:49 AM, Didier 'OdyX' Raboud wrote:

a) we fail at releasing Moodle updates to unstable in a timely manner (and I
    have my share of the fault here);
b) we consequently fail at releasing Moodle security updates to wheezy in a
    timely manner (this unblock is opened for almost two months);
c) Moodle 2.2 is already not supported anymore by Moodle HQ for anything (not
    even security), according to [0];
    Furthermore on that point, as far as I can see, there is noone taking
    responsibility to handle Moodle 2.2 security on the long term (Moodle in
    Wheezy will need to be security-handled for roughly three years, yet it is
    _already_ not supported).
d) there is (in my opinion) not enough people behind the maintenance of
    Moodle-in-Debian: Thomas is a good DM, but he's mostly alone, and I'm not
    willing to get more involved.

So as much as I find that unfortunate, I think that the best solution for all
of Moodle, Moodle-in-Debian and Debian, is to not ship Moodle 2.2 in Wheezy.

Thomasz, as you're the actual de-facto maintainer, please voice your opinion
as I have voiced mine: the decision is in the hands of the Release Team I
guess.

I have exactly the same concerns. Security fixes has been released forMoodle 2.2 today. I could cherry pick the patches and we could closethis bug - not a big deal. They will probably be another security updatefor Moodle this year but that's it.

Realistically speaking there is no way I can maintain security fixes fornon-supported (by upstream) software this size.

I have put Moodle 2.2 into Wheezy as that's the only possible upgradepath for Moodle (1.9 -> 2.2 -> 2.3+).

By not shipping 2.2 in wheezy, we will break the upgrades for anycurrent users. I don't see any other option though. There are talks inMoodle about making LTS version (e.g. 2.6LTS) - and that's probably theonly reasonable way to maintain a high quality package like this in Debian.

+1 for not shipping 2.2, breaking the upgrade path for this package,start from 2.5 (or higher) in unstable and provide Moodle LTS editionsin Debian stable only.


Tomek

Reply to:

Follow-Ups:
- Bug#698245: unblock: moodle/2.2.3.dfsg-2.6~wheezy2
  - From: Jonathan Wiltshire <jmw@debian.org>

References:
- Bug#698245: unblock: moodle/2.2.3.dfsg-2.6~wheezy2
  - From: "Didier 'OdyX' Raboud" <odyx@debian.org>

Prev by Date: Bug#698245: unblock: moodle/2.2.3.dfsg-2.6~wheezy2
Next by Date: Bug#702783: unblock: gmpc/11.8.16-6
Previous by thread: Bug#698245: unblock: moodle/2.2.3.dfsg-2.6~wheezy2
Next by thread: Bug#698245: unblock: moodle/2.2.3.dfsg-2.6~wheezy2
Index(es):
- Date
- Thread