Re: Using the same nss upstream version in all suites?

To: Julien Cristau <jcristau@debian.org>
Cc: debian-release@lists.debian.org
Subject: Re: Using the same nss upstream version in all suites?
From: Guido Günther <agx@sigxcpu.org>
Date: Sat, 2 Jan 2016 15:25:44 +0100
Message-id: <[🔎] 20160102142544.GA2669@bogon.m.sigxcpu.org>
Mail-followup-to: Guido Günther <agx@sigxcpu.org>, Julien Cristau <jcristau@debian.org>, debian-release@lists.debian.org
In-reply-to: <[🔎] 20160101204711.GL31614@betterave.cristau.org>
References: <20151231105553.GA3112@bogon.m.sigxcpu.org> <20151231121319.GA5839@bogon.m.sigxcpu.org> <[🔎] 20160101204711.GL31614@betterave.cristau.org>

Hi Julien,
On Fri, Jan 01, 2016 at 09:47:11PM +0100, Julien Cristau wrote:
> On Thu, Dec 31, 2015 at 13:13:19 +0100, Guido Günther wrote:
> 
> >   * We would have the same crypto policies for programs linked against
> >     nss in all suites.
> > 
> From a stable user perspective, I'm not sure I see that as an advantage,
> if it means things end up breaking on point releases.

I forgot to add that nss is very conservative in changing these
policies. The packages using it like icewaeasel/icedove are far more
aggressive in changing defaults.

Currently we have these things somethimes entangled with security
updates which is not ideal either so I think having these at point
release time with some time to prepare for upgrades is actually an
advantage.

Cheers,
 -- Guido

Reply to:

References:
- Re: Using the same nss upstream version in all suites?
  - From: Julien Cristau <jcristau@debian.org>

Prev by Date: NEW changes in stable-new
Next by Date: Next IRC meeting
Previous by thread: Re: Using the same nss upstream version in all suites?
Next by thread: Next IRC meeting
Index(es):
- Date
- Thread