On Mon, 30 Oct 2006 20:09:56 +0100 Jakub Moc <[EMAIL PROTECTED]> wrote: | Ciaran McCreesh napsal(a): | > On Mon, 30 Oct 2006 00:28:29 -0800 "Robin H. Johnson" | > <[EMAIL PROTECTED]> wrote: | > | To generalize on Francesco's email, how long should developers | > | wait for minority arches to mark stuff stable, after a security | > | bug, and then a reminder more than 4 months later? | > | > Indefinitely. There's no harm leaving ebuilds around. | | Joking, right? Who's gonna maintain the vulnerable, broken, dead | cruft? You?
If there's any 'maintaining' to be done, they switch to the newer version. If a herd goes around 'maintaining' old ebuilds on a regular basis, however, then they're doing something wrong. | > | 5 months of no response from the arches says something is wrong on | > | their side. | > | > Or it tells you where their priorities lie... | | Sure. So they don't need the keywords nor the package. No no. They might need the package, just not necessarily a particular version. -- Ciaran McCreesh Mail : ciaranm at ciaranm.org Web : http://ciaranm.org/ as-needed is broken : http://ciaranm.org/show_post.pl?post_id=13
signature.asc
Description: PGP signature
