Re: apt sources.list

To: Jeff Coppock <jcoppock1@home.com>
Cc: debian security list <debian-security@lists.debian.org>
Subject: Re: apt sources.list
From: Steven James <pyro@linuxlabs.com>
Date: Tue, 21 Aug 2001 17:48:22 -0400 (EDT)
Message-id: <[🔎] 998430502.3b82d7265b03c@zax.linuxlabs.com>
In-reply-to: <[🔎] 20010821132416.C9102@nortelnetworks.com>
References: <[🔎] 20010821093602.A8053@nortelnetworks.com> <[🔎] 20010821144048.A385@ch208d.cae.tntech.edu> <[🔎] 20010821132416.C9102@nortelnetworks.com>

Greetings,

A better solution might be to install Potato, then recompile the src debs from woody for the few packages that you actually need.

G'day,
sjames


Quoting Jeff Coppock <jcoppock1@home.com>:

> Mike Renfro, 2001-Aug-21 14:40 -0500:
> > On Tue, Aug 21, 2001 at 09:36:02AM -0700, Jeff Coppock wrote:
> > 
> > >    Can I get a few recommendations on the proper sources.list for a
> > >    system running woody, that includes the security updates?
> > 
> > Woody would be my last choice for a automagically secure
> installation:
> > 
> > * it gets no packages of any kind that haven't been in unstable for
> >2
> >   weeks with no release-critical bugs. Security fixes are not an
> exception
> >   to this rule.
> > 
> > * most of the packages in security.debian.org have nearly identical
> >   versions to potato -- Debian tends not to upgrade versions to fix
> >   bugs, but instead backports patches into the current potato
> versions.
> >   This means that apt-get upgrade (or dist-upgrade) will tend to
> >   ignore security packages, since you'll already have a newer version
> >   installed. apt-get upgrade doesn't check dates, changelogs, or
> >   anything but the literal numeric version number.
> > 
> > Running stable+security.debian.org is really the only *easy*
> solution,
> > followed by running testing+(selected packages from unstable with
> > security updates and probably other changes, too), and lastly by
> > running fully unstable. Ok, those last two don't qualify as easy to
> me
> > at all.
> > 
> > For me, it's not even a question -- you want security, you run stable
> > and keep security.debian.org in your sources.list.
> > 
> > -- 
> > Mike Renfro  / R&D Engineer, Center for Manufacturing Research,
> > 931 372-3601 / Tennessee Technological University --
> renfro@tntech.edu
> > 
> > 
> > -- 
> > To UNSUBSCRIBE, email to debian-security-request@lists.debian.org
> > with a subject of "unsubscribe". Trouble? Contact
> listmaster@lists.debian.org
> > 
> 
>    Thanks for this explanation.  I see what you mean, if I want
>    security updates.  
>    
>    I feel a bit stuck with woody though, since I want to use
>    iptables instead of ipchains.  I think I'll remove the
>    security source until I figure out a better way.
>    
>    thanks,
>    jc
> 
> -- 
> 
> Jeff Coppock		Nortel Networks
> Systems Engineer	http://nortelnetworks.com
> Major Accts.		Santa Clara, CA
> 
> 
> -- 
> To UNSUBSCRIBE, email to debian-security-request@lists.debian.org
> with a subject of "unsubscribe". Trouble? Contact
> listmaster@lists.debian.org
> 



-------------------------steven james, director of research, linux labs
LinuxBIOS Cluster Solutions                 230 peachtree st nw ste 701
High-Speed Colocation, Hosting,                     atlanta.ga.us 30303
Web Design, Linux Hardware,                    http://www.linuxlabs.com
Development & Support Since 1995          404.577.7747 fax 404.577.7743
-----------------------------------------------------------------------

Reply to:

References:
- apt sources.list
  - From: Jeff Coppock <jcoppock1@home.com>
- Re: apt sources.list
  - From: Mike Renfro <renfro@tntech.edu>
- Re: apt sources.list
  - From: Jeff Coppock <jcoppock1@home.com>

Prev by Date: Re: apt sources.list
Next by Date: Re: rpc.statd being attacked?
Previous by thread: Re: apt sources.list
Next by thread: Re: apt sources.list
Index(es):
- Date
- Thread