On Tue, 2003-09-16 at 20:05, Avi Schwartz wrote:Today, Mandrake has issued a security update to ssh (BTW, if you did
not update it yet, you better do it soon, before the exploit starts
circulating). I updated all the sources but urpmi --update
--auto-select told me that everything is up to date. Tried the
graphical updater, the same story. I ended up downloading the new RPMs
and installing them manually. How am I supposed to trust DrakeUpdate
and urpmi?
This is something Mandrake can learn from SuSE. Their online update works perfectly every time.
Avi
No not every time. Try to do an online update for the NVidia drivers. 100% failure on 6 boxes. As for the problem. Did you do urpmi.update -a first? If your inbox records are behind the servers records then what it's telling you is correct.
That may be a little unfair to SuSE. The NVidia drivers are closed source and so they can be a challenge for any distribution. As I understand it, people fixed the problem by using the older driver. But my point was not to talk about a specific patch. It would be also nice if Mandrake would send notification about security patches to their mailing lists. In generalshould look into tightening the update process when it comes to security patches. Unlike regular updates that may not be very important some security patches can be critical. Also downloading the list of files can be a major pain. Couple of 15MB lists can take awhile, even at IDSL speeds (144K) not to mention dial-up speeds.
Avi
Want to buy your Pack or Services from MandrakeSoft? Go to http://www.mandrakestore.com
