Quoting Tony Terlecki <[EMAIL PROTECTED]>:
I'm subscribed to debian-security-announce and security announcements
always mention patched packages for Stable and Unstable but they never
mention Testing. Where does that leave me then as far as security updates
are concerned if I'm maintaining machines from Testing?
If you are maintaining machines that run testing in a production environment,
then you should be maintaining machines that run stable instead. I forget
where, but the Debian website explains that testing never gets security
updates, until it is very close to release (usually the later parts of the
freeze). The only way security fixes get into testing is when the package
trickles down from unstable. The maintainers usually upload security fixes to
unstalbe with high priority so that they move to testing after 2 days (instead
of the normal 10).
Fact is, if you have to ask the question, you should not be running testing in
an environment where security is important.
I have the following in my sources.list but I'm not sure if the line is
correct or if it's doing anything:
deb http://security.debian.org/ testing/updates main
It won't do anything. Security support for testing is only available just
before release.
-Roberto
--
Roberto C. Sanchez
http://familiasanchez.net/~sanchezr
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
