stable/secure mini-distros

To: "'Tim Uckun'" <tim@diligence.com>, <debian-security@lists.debian.org>
Subject: stable/secure mini-distros
From: "Jeff" <jaa.debian@aquabolt.com>
Date: Fri, 10 May 2002 08:50:58 +0100
Message-id: <[🔎] 002301c1f7f7$8126a1e0$3264a8c0@kursa>
In-reply-to: <[🔎] 5.0.0.25.2.20020509085219.01814cb8@mail.diligence.com>

> From: Tim Uckun [mailto:tim@diligence.com] 
> What is needed is a distro based on debian, following the same 
> rules of safety as debian, using the same packages etc. 
> Everything is the same except that apt-sources points to a list 
> which contains a smaller set of platform specific packages. 
> This list get's updated as often is possible while staying with 
> the safety requirements of debian.

We may be willing to put effort where mouth is, as the current 
situation is far from ideal, and twood be a sad day if Debian were 
to continue to fade into the shadows of outdated package obscurity,
so,

0)    Is this even possible?
1)    Can we flesh up a more concrete set of objectives?
1.a)  and a set of outline steps to achieve this? 
2)    Which is the best Debian forum?
2.a)  Who needs to be involved [DPL?]


-----Original Message-----
From: Tim Uckun [mailto:tim@diligence.com] 
Sent: 09 May 2002 15:59
To: debian-security@lists.debian.org
Subject: RE: possible hole in mozilla et al



>
>I agree with Tim Uckden's comments - we don't need bleeding edge, but
we
>also don't need
>some-obscure-whizzo-package-on-104-obsolete-hardware-architectures.deb
>holding up basic things like Apache, PHP, Perl, Mod_Perl, MySQL etc.
>
>We would be over the moon to have a mini-stable that only contained
core
>packages, and that kept better pace with the real world.

I have given this more thought since I posted my comments and it occurs
to 
me that this is a business opportunity more then anything else. What is 
needed is a distro based on debian, following the same rules of safety
as 
debian, using the same packages etc. Everything is the same except that 
apt-sources points to a list which contains a smaller set of platform 
specific packages. This list get's updated as often is possible while 
staying with the safety requirements of debian.

As for us we decided to go with freebsd on some systems thinking it
might 
offer security along with more frequently updated ports. So far I am not

impressed with it. The ports are not as easy to use as apt, and ports
are 
sometimes just plain old broken.  If anybody has an answer I'm all ears
as 
long as the answer does not contain the words microsoft or red or hat.


-- 
To UNSUBSCRIBE, email to debian-security-request@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact
listmaster@lists.debian.org



-- 
To UNSUBSCRIBE, email to debian-security-request@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmaster@lists.debian.org

Reply to:

Follow-Ups:
- Re: stable/secure mini-distros
  - From: Tim Uckun <tim@diligence.com>

References:
- RE: possible hole in mozilla et al
  - From: Tim Uckun <tim@diligence.com>

Prev by Date: Problems with wireless cards ...
Next by Date: Re: html spam
Previous by thread: RE: possible hole in mozilla et al
Next by thread: Re: stable/secure mini-distros
Index(es):
- Date
- Thread