On Wed,19.May.10, 23:28:01, Osamu Aoki wrote: > > So I am updating as: > > TIP: If "`sid`" is used in the above example instead of > "`@-@codename-stable@-@`", the "`deb: http://security.debian.org/ ...`" > line for security updates in the "`/etc/apt/sources.list`" is not > required. This is because there is no security update archive for > "`sid`" (`unstable`). > > NOTE: The security bugs for the `stable` archive are fixed by the Debian > security team. This activity has been quite rigorous and reliable. > Those for the `testing` archive may be fixed by the Debian testing > security team. For several reasons, this activity is not as rigorous as > that for `stable` and you may need to wait for the migration of fixed > `unstable` packages. Those for the `unstable` archive are fixed by the > individual maintainer. Actively maintained `unstable` packages are > usually in a fairly good shape by leveraging latest upstream security > fixes. See http://www.debian.org/security/faq[Debian security FAQ] > for how Debian handles security bugs. Sounds good to me. Regards, Andrei -- Offtopic discussions among Debian users and developers: http://lists.alioth.debian.org/mailman/listinfo/d-community-offtopic
Attachment:
signature.asc
Description: Digital signature