On Sun, Aug 05, 2007 at 11:59:31PM +0200, Moritz Muehlenhoff wrote: > Please add support for the following tags, as discussed during > DebConf in Edinburgh: > > * [etch|lenny]-security-unsupported to flag that a source package has no > support by the Security Team. It should be distribution-specific to > allow revoking support for individual suites, as it was necessary for > Mozilla in Sarge. > * security-local-use-only (or something similar, I'm unsure about the exact > naming), to indicate that security support only applies to local, trusted > users.
> Once implemented in debtags we need support in apt, etc. I think these things might be a good idea. Though I would expect a more general discussion on the mailinglist(s) about why these tags are needed, when and how they would be used. I for one would rather not have a package in a release than have a package that is not supported by the security team. So maybe we should also discuss alternatives like backports + security and procedures on how to find and communicate about packages that have lots of security issues or are very hard to fix by backported security updates? Cheers Luk -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
