Re: policy change is needed to keep debian secure

To: debian-security@lists.debian.org
Subject: Re: policy change is needed to keep debian secure
From: Matt Zimmerman <mdz@debian.org>
Date: Tue, 23 Aug 2005 10:02:51 -0700
Message-id: <[🔎] 20050823170251.GB23036@alcor.net>
Mail-followup-to: debian-security@lists.debian.org
In-reply-to: <[🔎] 20050823165154.GJ8667@mathom.us>
References: <[🔎] 4307D2B7.4080206@lost-habit.com> <[🔎] def2bj$en5$1@sea.gmane.org> <[🔎] 20050823163302.GA23036@alcor.net> <[🔎] 20050823165154.GJ8667@mathom.us>

On Tue, Aug 23, 2005 at 12:51:54PM -0400, Michael Stone wrote:
> On Tue, Aug 23, 2005 at 09:33:02AM -0700, Matt Zimmerman wrote:
> >That is what stable is about: not changing, or when change is absolutely
> >necessary, changing as little as possible.  A hot new Firefox release may
> >seem sexy to a Linux enthusiast, but to the novice, or to the corporate IS
> >administrator, it means risk.
> 
> To be fair, so does a huge, poorly understood, and poorly tested
> security patch.

Which is why the policy allows for a fallback, but _only_ if it is the best
option.

-- 
 - mdz

Reply to:

References:
- policy change is needed to keep debian secure
  - From: Daniel Sterling <daniel@lost-habit.com>
- Re: policy change is needed to keep debian secure
  - From: Paul Gear <paul@gear.dyndns.org>
- Re: policy change is needed to keep debian secure
  - From: Matt Zimmerman <mdz@debian.org>
- Re: policy change is needed to keep debian secure
  - From: Michael Stone <mstone@debian.org>

Prev by Date: Re: policy change is needed to keep debian secure
Next by Date: Re: policy change is needed to keep debian secure
Previous by thread: Re: policy change is needed to keep debian secure
Next by thread: Re: policy change is needed to keep debian secure
Index(es):
- Date
- Thread