Re: apt-listbugs and security
Step 1: Subscribe to Debian security lists.
Step 2: (If you're really serious about security) Subscribe to relevant
package security lists (upstream).
Step 3: apt-get update/upgrade regularly for security updates
Step 4: (Most importantly) Make regular backups, on- and off-site.
Step 5: (Again, if really serious) Investigate setting up a decent logging
system to detect breaches.
I'm not trying to discourage you from using Debian, it's great, but you may
want to look at the next release of Ubuntu Server, which will have security
support for five years.