SLUG Mailing List Archives
[SLUG] Re: Debian and Security
- To: slug@xxxxxxxxxxx
- Subject: [SLUG] Re: Debian and Security
- From: Angus Lees <gusl@xxxxxxxxxxxxxxx>
- Date: Wed Sep 13 07:51:28 2000
- User-agent: Mutt/1.0.1i
On Tue, Sep 12, 2000 at 08:01:19AM +0000, Herbert Xu wrote:
> John Ferlito <johnf@xxxxxxxxxx> wrote:
> > Just wondering what are the security.debian.org list of packages for
> > in the default sources.list. When security whole are found aren't the pacjages in the main tree updated? Or is it just a speed thing where security is updated much more rapidly than main to try and get patches out faster? ie rsyncd hourly rather than daily?
> It's a speed thing. The stable tree is never touched until a point release
> is made. So security fixes will stay on security.debian.org between point
and i've never understood this..
debian has this wonderful "apt-get upgrade" command, yet they seem to
only want it for unstable.
so instead, packages get kept in security.d.o for a few months, and
anyone who mirrors it is chastised.
i don't see why the cd version has to match *exactly* whats on the ftp
site. surely easy/seamless upgrades of security fixes are more