Re: What's wrong with debian?

To: Benedict Verheyen <benedict.verheyen@sjki.be>
Cc: Debian Linux Distro Users Discussion <debian-user@lists.debian.org>
Subject: Re: What's wrong with debian?
From: Jude DaShiell <jdashiel@shellworld.net>
Date: Sat, 16 Jul 2005 20:45:09 -0400 (EDT)
Message-id: <[🔎] Pine.BSF.4.63.0507162025360.61132@server2.shellworld.net>
In-reply-to: <4227045D.3010804@sjki.be>
References: <200502282250.50685.jluehr@gmx.net> <ca65251f0503030212e456130@mail.gmail.com> <4227045D.3010804@sjki.be>

Well, consider the alternatives for a few. My experience has been withscreen reader enabled versions of linux and covers debian; slackware, andwhat's now called fedora formerly redhat. I have subscriptions toslackware and maybe debian might do well to offer subscriptions in futuretoo. Fedora was the most difficult to install and reinstall of thesedistros. out of the box fedora security was effectively wide open.Another sysadmin who installed it had to turn off several servers and dovarious other tightening jobs. Slackware was easier to install but of thethree distros has the least available for updating the system and securitythat I've been able to find on the internet. I need to get the othersysadmin to install a copy of slackware for out of the box securityevaluation so some comparison may be possible. Fedora's architecture backin the redhat days broke tcp-wrappers so versions of tcp-wrappers fedorahas since installed have been broken to force them to conform with fedora.Specifically tcpdcheck is missing as are the other tcp-wrappers utilitiesso even if it is installed it's difficult to fine tune what it's doing andmonitor results of security tightening with that package. slackware seemsto be missing the full package too but that might be because I haven'tsearched the right directory for tcpdcheck. debian has been the C-64 ofthe Linux world because more packages are available on the net for it thanits other two competitors. That's part of what comes with this particularterritory an embarrassment of riches brings with it its own problems.I'm sure everyone on this list is aware of the security concept of runninglean systems. That is, if six editors are available and those on thesystem only use one editor it's adviseable to remove and exclude the otherfive editors. Perhaps software useage profiling which offers to removeand exclude packages already exists but it seems in a situation like thiswith an embarrassment of riches using software to help keep systems leanmight go some way to helping out. I've found debian also to be theeasiest installed and reinstalled distro too for those I've tried so fartoo.




On Thu, 3 Mar 2005, Benedict Verheyen wrote:

Caveman wrote:
 I could not agree more. I love debian and I think its a great system,
 however the whole release cycle thing is starting to become a issue.
 Woody is just getting too old, even for servers. So what options do
 you have ? Well you can use sarge, seems stable enough, however no
 security. Thats a major issue in my mind.
 I could use unstable, which I have found to be highly stable and I use
 apt-listbugs with it which has not seen me deal with a breakage yet.
 However the large number of updates that unstable gets (as it should)
 starts to make this possess time consumming. So where does that leave
 us? To me it starts to make debian far less useful. Which is very sad
 as I think its the best distro I have ever used.
 I understand that running a distro is very hard work, however I think
 the debian people really need to look at their whole system.
 Maybe there are some core issues which are causing the problem.
 However from a end user point of view its annoying.

 Hopefully its something that can be sorted out soon, before people
 start using other distros.

 Caveman
I don't think people would be so sensitive about the release cycle if thealternatives where explained and documented better.If you use woody and make your own/use backports then i really isn't an issuebecause you're running a stable tested system with the latest software.But as i said, there should be good documentation on how to backport sopeople can do it themselves. This is also the way to go for security becauseyou take a risk installing somebody elses backports.
Off course when the release cycle would continue to grow, then we have a morefundamental problem.
Regards,
Benedict

--
Benedict Verheyen                   Debian User
http://www.heimdallitservices.be    Public Key 0x712CBB8D


--
To UNSUBSCRIBE, email to debian-user-REQUEST@lists.debian.org with a subjectof "unsubscribe". Trouble? Contact listmaster@lists.debian.org

Reply to:

Follow-Ups:
- Re: What's wrong with debian?
  - From: mike <mike503@gmail.com>
- Re: What's wrong with debian?
  - From: "John Fleming" <john@wa9als.com>
- OT: Beating a dead horse [Was: What's wrong with debian?]
  - From: Kent West <westk@acu.edu>

Prev by Date: Re: Debian or Ubuntu Dilemma
Next by Date: Re: What's wrong with debian?
Previous by thread: Enabling DRI on Matrox doesn't seem to work
Next by thread: Re: What's wrong with debian?
Index(es):
- Date
- Thread