On Mon, Oct 06, 2003 at 09:45:13PM +0200, martin f krafft wrote: > also sprach Herbert Xu <[EMAIL PROTECTED]> [2003.09.22.1331 +0200]: > > It is unacceptable for us to distribute kernels with known > > (security) bugs. > > It is unacceptable for us to backport features alongside security > patches. From http://www.debian.org/security/faq: > > The most important guideline when making a new package that fixes > a security problem is to make as few changes as possible. Our > users and developers are relying on the exact behaviour of > a release once it is made, so any change we make can possibly > break someone's system.
I beg your pardon? Why do you believe that the _stable distribution security FAQ_ is relevant to this argument? > Also, 5.8.5.3 of the Developer's Reference is a necessary read for > this discussion. Ditto. When an update is made to the stable release, -- Daniel Jacobowitz MontaVista Software Debian GNU/Linux Developer