Mailing List Archive
tlug.jp
Mailing List
tlug archive
tlug Mailing List Archive
|
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [tlug] Debian OpenSSL critical security bug
- Date: Tue, 20 May 2008 04:09:53 +0900
- From: "Stephen J. Turnbull" <stephen@example.com>
- Subject: Re: [tlug] Debian OpenSSL critical security bug
- References: <4fefd6340805131436p641e9605k84954b75accb8e2e@mail.gmail.com> <d8fcc0800805131552g4d1d0324me48d16a82980af33@mail.gmail.com> <78d7dd350805182328u6986e426o6538a5f6cf1fcc74@mail.gmail.com>
Hung Nguyen Vu writes: > On Wed, May 14, 2008 at 7:52 AM, Josh Glover <jmglov@example.com> wrote: > > The lesson here is that distros should not add patches to upstream > > sources that made fundamental changes. Now to teach my fellow Gentoo > > developers that lesson... ;) > No, packagers really *should* work close with upstream projects. > The change is critical, not only fundamental. Wishful thinking. In fact most packagers are not developers of the packages they are packaging, and they are packaging several packages. Working closely with any upstream would involve dropping all their other packaging work, or some other important aspect of their lives. It's not going to happen. In this particular case, there is a simple, arm's-length procedure that would have been satisfactory: send a bug report.
- References:
- [tlug] Debian OpenSSL critical security bug
- From: Gernot Hassenpflug
- Re: [tlug] Debian OpenSSL critical security bug
- From: Josh Glover
- Re: [tlug] Debian OpenSSL critical security bug
- From: Hung Nguyen Vu
- [tlug] Debian OpenSSL critical security bug
- Prev by Date: Re: [tlug] OT: Beer
- Next by Date: Re: [tlug] Debian OpenSSL critical security bug
- Previous by thread: Re: [tlug] Debian OpenSSL critical security bug
- Next by thread: [tlug] Nominations for Sourceforge.net Community Choice Awards Now Open
- Index(es):
| Home Page | Mailing List | Linux and Japan | TLUG Members | Links |