Re: How (un)safe would Debian be when only using the security.debian.org repository?

[Norbert Kiszka <norbert@linux.pl>]

Dnia 2013-11-10, nie o godzinie 19:50 +0000, adrelanos pisze:
> Hi!
> 
> How (un)safe would it be...? When using Debian while...
> 
> Not using:
> deb http://ftp.us.debian.org/debian stable main contrib non-free
> deb http://security.debian.org stable/updates main contrib non-free
> 
> Only using:
> deb http://security.debian.org stable/updates main contrib non-free
> 
> Does that change when using testing instead of stable? I.e...
> 
> Not using:
> deb http://ftp.us.debian.org/debian testing main contrib non-free
> deb http://security.debian.org testing/updates main contrib non-free
> 
> Only using:
> deb http://security.debian.org testing/updates main contrib non-free
> 
> Or the same question in other words: are sometimes updates fixing
> security issues released though repositories other than the security
> repository?
> 
> Why would someone interested in doing that? Getting fewer updates,
> saving bandwidth, time and system load.
> 
> Cheers,
> adrelanos
> 
> 

Missing dependencies can break upgrade. For ex. one package from
security-update can depend on other package, so it will not be
installed. Unless You install it by hand.