FAQ Search Today's Posts Mark Forums Read
» Video Reviews

» Linux Archive

Linux-archive is a website aiming to archive linux email lists and to make them easily accessible for linux users/developers.


» Sponsor

» Partners

» Sponsor

Go Back   Linux Archive > Debian > Debian User

 
 
LinkBack Thread Tools
 
Old 09-26-2011, 02:23 PM
Camaleón
 
Default iceweasel based on firefox 6.0 for squeeze

On Mon, 26 Sep 2011 14:33:31 +0100, Brian wrote:

> On Mon 26 Sep 2011 at 11:35:51 +0000, Camaleón wrote:
>
>> Hey, you can't auto-give you a point for something that I have not
>> discussed ;-)
>
> You were being tardy in getting round to it so it needed something to
> prod you into action.

I didn't know "time" was a variable to care about in this game! :-)

>> Regards to the 4th point that says "a package needs to be current to be
>> useful" it fully fits with Iceweasel but I wouldn't say so for clamav.
>
> It is clear we have diametrically opposite views, so best leave it
> there.

How can be that?

I mean, how can you consider ClamAV needs to be up-to-date (I mean the
program, not the firm files as firm files to detect malware are
automatically updated regardless the version of the program) and
Iceweasel not? You can't go so far with Iceweasel 2.x on these days...

>> Well, let me think...
>>
>> clamav was in volatile repo
>> volatile repo provided their own security fixes
>> volatile repo has been replaced by squeeze-updates
>>
>> I love the logic behind the things :-)
>
> Three correct statements but an unjustified conclusion. My statement
> that squeeze-updates does not deal with security was informed by
>
> This suite will contain updates that satisfy one of the following
> criteria:
>
> * The update is urgent and not of a security nature.
> Security updates will continue to be pushed through the
> security archive.

Fine, but the above is not true¹ for ClamAV (while it can be for other
packages that are available in that repo) so we have here a
singularity :-)

¹ I'm a clamav user and follow both, "volatile" and "stable announcement"
mailing lists and as you can see, clamav updates usually fix security
flaws:

http://lists.debian.org/debian-stable-announce/2011/07/threads.html

Greetings,

--
Camaleón


--
To UNSUBSCRIBE, email to debian-user-REQUEST@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmaster@lists.debian.org
Archive: pan.2011.09.26.14.23.12@gmail.com">http://lists.debian.org/pan.2011.09.26.14.23.12@gmail.com
 
Old 09-26-2011, 05:43 PM
Brian
 
Default iceweasel based on firefox 6.0 for squeeze

On Mon 26 Sep 2011 at 14:23:12 +0000, Camaleón wrote:

> On Mon, 26 Sep 2011 14:33:31 +0100, Brian wrote:
>
> > It is clear we have diametrically opposite views, so best leave it
> > there.
>
> How can be that?
>
> I mean, how can you consider ClamAV needs to be up-to-date (I mean the
> program, not the firm files as firm files to detect malware are
> automatically updated regardless the version of the program) and
> Iceweasel not? You can't go so far with Iceweasel 2.x on these days...

I have no particular view on clamav's inclusion in squeeze-updates and
only mentioned it because it is given as an example of a package which
fits criterion 4.

If you want me say Iceweasel 6.0 has more features and is more
up-to-date than Iceweasel 3.0.6 on Lenny you can have it, but being
up-to-date doesn't count for stable-updates and Iceweasel 3.0.6 is no
less useful now in its own terms and in the context of keeping Lenny
stable than the day it was installed.

The Stable Release Manager has something to say on the policy for
stable-updates at

http://raphaelhertzog.com/2011/06/10/people-behind-debian-philipp-kern/

> > Three correct statements but an unjustified conclusion. My statement
> > that squeeze-updates does not deal with security was informed by
> >
> > This suite will contain updates that satisfy one of the following
> > criteria:
> >
> > * The update is urgent and not of a security nature.
> > Security updates will continue to be pushed through the
> > security archive.
>
> Fine, but the above is not true¹ for ClamAV (while it can be for other
> packages that are available in that repo) so we have here a
> singularity :-)

That's more matter for the SRM to comment on. Even he has been known to
wonder why a security update for clamav has not been pushed through.


--
To UNSUBSCRIBE, email to debian-user-REQUEST@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmaster@lists.debian.org
Archive: 20110926174308.GI6253@desktop">http://lists.debian.org/20110926174308.GI6253@desktop
 

Thread Tools




All times are GMT. The time now is 09:32 AM.

VBulletin, Copyright ©2000 - 2014, Jelsoft Enterprises Ltd.
Content Relevant URLs by vBSEO ©2007, Crawlability, Inc.
Copyright ©2007 - 2008, www.linux-archive.org