Re: How automatic are backport package updates?

To: Dan Ritter <dsr@randomstring.org>
Cc: debian-user@lists.debian.org
Subject: Re: How automatic are backport package updates?
From: Michael Grant <mgrant@grant.org>
Date: Fri, 12 Feb 2021 12:05:44 -0500
Message-id: <[🔎] YCa1aISg52+nKwWA@grant.org>
In-reply-to: <20210112153505.GQ31330@randomstring.org>
References: <CC913D2C-E856-49CD-B35D-49196D158F43@debian.org> <c9d3a116-be23-fe15-2efe-93eca86a6828@debian.org> <CAKGn-5-Hd52AY+cypo8cZTw5n4PA4m1DenjS1vsbXq3K03NDKA@mail.gmail.com> <20210109055653.kocxlzwkvzbrxp6r@acr13.nuvreauspam> <d39d3d8-be95-d8fc-bb90-56fc179f356@tarent.de> <20210110090354.p3oi5a4o5cglyylj@acr13.nuvreauspam> <20210111130650.GH951@eeg.ccf.org> <847uch-vl3.ln1@anthive.com> <X/2+6452y/zwLq+d@grant.org> <20210112153505.GQ31330@randomstring.org>

Replying to this message that's just over a month old now.  Now that
10.8 just came out, is this a good time to jump off the testing repo
and onto stable for my production box?  Is this one of those rare
moments when testing and stable line up?  Or should I continue to wait
for Bullseye?

On Tue, Jan 12, 2021 at 10:35:05AM -0500, Dan Ritter wrote:
> Michael Grant wrote: 

>> Let's say I want to run 'testing' to be more on the edge to get the
>> latest and greatest of packages and to incrementally always be on top
>> of updates rather than having to do large release updates.  But from
>> time to time there is a security update to a package which is newer,
>> or if something specific is broken, I may want to go back to a
>> specific version of something.  What should I put in my sources.list?
> 
> Are you running a production system?

Yes.

> That is, are you running a Debian system which is essential to
> your business or personal activities, so that having to recover
> from a disaster would be a significant hardship?

Well, yes, though I do have daily snapshots.

> If so, you should be running buster, and considering moving to
> the next stable release no sooner than a few weeks after the
> transition to bullseye. You should accept security updates as
> soon as is convenient for you, on an ongoing basis. Backports
> are to solve specific issues.
> 
> If you are running a system for fun, or if there is no real
> issue with protracted unavailability, testing is a fine thing
> to be running. You should expect a little chaos every time you
> update.
> 
> Only stable gets security updates. Testing may get security
> updates when they come from upstream, but it's not guaranteed.

I thought all security updates were tested in testing, committed to
testing, and then also committed to stable-security.  I had not
noticed that testing was not getting security updates, I thought it
was, maybe again, it was just luck that the packages I noticed needed
security updates were the ones I mentally track most like sendmail,
dovecot, spamassassin...

Michael Grant

Attachment: signature.asc
Description: PGP signature

Reply to:

Follow-Ups:
- Re: How automatic are backport package updates?
  - From: Tixy <tixy@yxit.co.uk>
- Re: How automatic are backport package updates?
  - From: "Andrew M.A. Cater" <amacater@einval.com>

Prev by Date: Re: AMD GPU + HDMI + vlc = lockup
Next by Date: Re: How automatic are backport package updates?
Previous by thread: Re: How to install Graphite !!!!
Next by thread: Re: How automatic are backport package updates?
Index(es):
- Date
- Thread