[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: Bad press related to (missing) Debian security

On Mon, Jun 27, 2005 at 08:39:43PM +0200, Marek Olejniczak wrote:

> On Mon, 27 Jun 2005, Matt Zimmerman wrote:
> 
> >The security team has always been a difficult one to expand.  A strong
> >level of trust is necessary due to confidentiality issues, and security
> >support is a lot of (mostly boring and thankless) work.  However,
> >expanding it seems like the only way to make it sustainable.
> 
> I don't understand the philosophy of Debian security team. It's really so
> difficult to push into sarge spamassassin 3.0.4 which is not vulnerable?
> This version is in Debian testing and why this version can't be push into
> stable?

This article does a fairly good job of explaining:

http://www.redhat.com/advice/speaks_backport.html

-- 
 - mdz
Reply to: