Search Mailing List Archives


Limit search to: Subject & Body Subject Author
Sort by: Reverse Sort
Limit to: All This Week Last Week This Month Last Month
Select Date Range     through    

[liberationtech] Fwd: [greg at pryzby.org: Ubuntu, Dash, Shuttleworth and privacy]

danimoth danimoth at cryptolab.net
Wed Feb 20 13:44:34 PST 2013


On 20/02/13 at 10:49am, micah anderson wrote:
> 
> Developers never made a mistake leading to a security problem, so
> Debian's one mistake in 2006 should be forever trotted out as an example
> of how Debian sucks, good point.
> 
> Sorry, but this distinction between Developers doesn't make sense, many
> Debian *Developers* are developers themselves, often upstream to the
> packages that they are shipping.


They are developers, but not for the project they are maintaing in
debian (or not all). My point is that, if there exist a program A, its
developers know a lot more than the corrisponding debian packager, and
they are the only that could patch at "least bad". And this principle is
showed perfectly for the PRNG example which I cited.

And that lead to follow distro with a "rolling" release cycle, and go
away from "stable", "testing", "unstable", "embryo",
"only_uml_diagrams_and_not_a_single_line_of_code" etc etc etc release
cycle, which introduces complexity (which lead to bugs).

Anyway, we are free to choose what fit our requirements.



More information about the liberationtech mailing list