Re: mozilla - the forgotten package?

To: debian-user-german@lists.debian.org
Cc: Matt Zimmerman <mdz@debian.org>
Subject: Re: mozilla - the forgotten package?
From: Jan Lühr <jluehr@gmx.net>
Date: Thu, 11 Mar 2004 19:56:25 +0100
Message-id: <[🔎] 200403111956.34744.jluehr@gmx.net>
In-reply-to: <20040311172415.GV28592@alcor.net>
References: <200403091715.50294.jluehr@gmx.net> <20040311153230.GA8244@deneb.enyo.de> <20040311172415.GV28592@alcor.net>

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Greetings,

Am Donnerstag, 11. März 2004 18:24 schrieb Matt Zimmerman:
> On Thu, Mar 11, 2004 at 04:32:30PM +0100, Florian Weimer wrote:
> > There's no obvious solution.  If Debian sticks to 1.0 on principle,
> > there's nothing we can do.  It's unlikely we'll find a volunteer who
> > backports all those fixes to 1.0.  I haven't found any commercial
> > distributor who still supports 1.0, either.
> >
> > If we integrate 1.4 (that is, 1.4.2) into stable, we can take security
> > fixes from upstream and/or other distributors. It might still be a lot
> > of work (I'm going to try it next weekend or so), but it looks like a
> > more manageable task.
>
> This introduces a whole new set of problems, given Mozilla's upgrade
> history (not preserving user configuration data, breaking compatibility
> with dependent applications, etc.)

So what is you suggestion? Leaving the catastrophy untouched? Imho no mozilla 
in debian is even better than a terrible broken mozilla in debian. And hey, 
what about the programs depending on mozilla. They are effected as welll, 
aren't they?
As a ordinary debian user, I doesn't have much knowlegde about debian at all, 
but I agree with Florian Weimer. Something HAS to be done. This not a 
question of realase politics or so.
Keeping woody stable by not switching to brand new version of some packages is 
one (good) thing, but replacing broken packages is also very important.
Do really want to assure the stability of a security hole?
As user im not in charge with dicisions. But what about a petiotion or a poll? 
Are there any guidelines from the current project leader? What about changing 
the mozilla version in a democratic way?

Keep smiling
yanosz
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.3 (GNU/Linux)
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=B3g6
-----END PGP SIGNATURE-----

Reply to:

Follow-Ups:
- Re: mozilla - the forgotten package?
  - From: Matt Zimmerman <mdz@debian.org>

Prev by Date: Re: vga=0x317 -> Schwarzer Schirm
Next by Date: Re: apt-get dist-upgrade...
Previous by thread: Re: jigdo-DVD-ISO für Sarge - 2 Dateien fehlen
Next by thread: Re: mozilla - the forgotten package?
Index(es):
- Date
- Thread