Op 27-10-11 21:40, Thijs Kinkhorst schreef: > > On Thu, 27 Oct 2011 19:43:14 +0200, Paul van der Vlis <p...@vandervlis.nl> > wrote: >> Hello, >> >> How is it with this bug? I did not see a security update in Squeeze. > > We still need a fix for Lenny indeed. > >> I understand there is a diskussion about a fix for Lenny, but Squeeze is >> more important in my opinion. I think Django in Lenny is not much used >> anymore. > > Where do you base this assertion on?
Because it's a relative new platform. The newer version in Squeeze is much better then the version in Lenny. I think in such a case people will upgrade fast or use packages from upstream (Python eggs). Hmm, in popcon I don't see how many people are using the Lenny-version. That would be a nice extra feature... >> What about a: "There is no Lenny security fix at the moment. If you use >> Lenny and upgrading to Squeeze is really a problem, please drop a mail >> at the security mailinglist. Making this fix is a lot of work, we will >> only do it when there are enough people who really need it." > > I don't rule that strategy out, but do we have concrete info that it's > indeed an unreasonable amount of work? The only info I have about it, is from this bug. > I would want to check it out but that will be next week. Wish you good luck! With regards, Paul. -- Paul van der Vlis Linux systeembeheer, Groningen http://www.vandervlis.nl -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
