Re: policy change is needed to keep debian secure
On Tue, Aug 23, 2005 at 12:51:54PM -0400, Michael Stone wrote:
> On Tue, Aug 23, 2005 at 09:33:02AM -0700, Matt Zimmerman wrote:
> >That is what stable is about: not changing, or when change is absolutely
> >necessary, changing as little as possible. A hot new Firefox release may
> >seem sexy to a Linux enthusiast, but to the novice, or to the corporate IS
> >administrator, it means risk.
> To be fair, so does a huge, poorly understood, and poorly tested
> security patch.
Which is why the policy allows for a fallback, but _only_ if it is the best