max wrote: > This is a text-only version of my post on > https://medium.com/@maxwillb/why-is-debian-not-telling-the-truth-about-its-security-fixes-85f0f85f19a0 > > It is missing hyperlinks and illustrations. Comments, corrections and > suggestions are very welcome. ... > Will Debian ever live up to its “Social Contract” that includes “Not hiding > problems with the software or organization”? Will it apologize for misleading > countless people? Given Debian’s response so far, I’m not very hopeful.
every individual maintainer is on their own schedule, there are very few paid and full time Debian Developers or Maintainers or other people devoted solely to security fixes in all the various archives which Debian has available. since i know this i take it all with some amount of flex because while the goal is admirable i know that reality is different. i also understand the limitations of each repository i use as a source for packages. testing may not get frequent security updates but i am quite happy with the pace of how things go and for my own needs i'm not doing any public facing high security projects which might need more closely monitored security. perhaps this is a choice you need to figure out for yourself? songbird
