----- Original Message -----
> From: "Lisa Minogue" <lmino...@mail.be>
> To: openvpn-users@lists.sourceforge.net
> Sent: Tuesday, 29 July, 2014 11:10:01 PM
> Subject: [Openvpn-users] OpenVPN for Debian Wheezy (backports) and Jessie is 
> still at 2.3.2!!
> 
> Hi guys,
> 
> One of my friends has just pointed out to me that on Debian Wheezy backports
> and Jessie, OpenVPN's version still stands at 2.3.2.
> 
> The version available for OpenBSD 5.5 and 5.6 (to be released in November
> 2014) is also 2.3.2.
> 
> What's happening at both Debian and OpenBSD?

Can we first of all please consider that the people behind both Debian and 
OpenBSD are
clever and intelligent persons?

In addition, it's been stated here that there are *no* *security* *fixes* 
(again: No
Security Fixes!) between 2.3.2 and 2.3.4.  Only bug fixes and other general 
improvements.

Distributions *seldom* upgrade to newer versions unless at least one the 
following
conditions have been met:

 a) Does the new version include a security fix is needed for the distro?
 b) Does it have a bug fix which is needed to fix real issues for our users?

If the answer is "no" to both these questions, they will not do an update.

Distributions will go for the latest and greatest when they prepare for a new 
major
release.  But for minor updates of an already released version, the 
requirements above
must be met.

This is a completely normal and accepted handling, as most distros tries to be 
stable
once the new release is out.  Heck, even Fedora (which is one of aa more 
bleeding edge
distro) has kept OpenVPN 2.3.2 in Fedora 19 and Fedora 20.  The coming release 
of
Fedora 21 will be the first one with 2.3.4.


So let me summarize it once again:

- Distributions *only* updates to a newer version (or cherry-picks individual 
fixes)
  *IF* there is an issue troubling their users which must be fixed or an 
important
  security fix (for the distro) has been made available.  What to release and 
when
  to release it, is completely in the hands of the distributions package 
maintainers.

- OpenVPN 2.3.2 to 2.3.4 *only* contains general improvements and minor 
bugfixes for
  some setups/environments.  There are (I repeat again) No Security Fixes in  
  2.3.3 or 2.3.4.

- If you have an issue with a too old OpenVPN version in a distro, talk to the
  distro provider or distro package maintainer and not the upstream OpenVPN 
community.
  We (the OpenVPN Community) couldn't care less which versions the package 
maintainers
  in the distros ships.  We like that they ship the latest and greatest, but 
which
  version they prefer is nothing we can decide in the OpenVPN community.

- If the distro does not provide you the version you want, compile it yourself.

- For the record, to avoid any confusion: Windows is not a distro, which is why 
we
  need to ship binary versions of OpenVPN.  For Windows, we update the binaries
  whenever we see it is needed or we have a new release we want people to use.
  Completely independent of anything else than what we want.  Some releases may 
be
  triggered due to security or bug fixes *outside* of OpenVPN, such as the 
OpenSSL,
  PKCS11, Snappy, lzo, etc, etc libraries we bundle with OpenVPN.  Sometimes we
  just increase the build number (the Ixxx in the installer file name), and
  sometimes we decide to release a brand new OpenVPN version.  But our decision 
is
  completely irrelevant to what other Linux or BSD distros chooses.

- And I wonder if you're trolling, as the same questions has been asked and 
answered
  several times in the same thread.


One last thing.  You asked:

> I don't exactly understand what you mean by "you get friends with the ports 
> system".

It basically means: Learn to use OpenBSD and its packaging system (called 
'ports')
properly.


--
kind regards,

David Sommerseth

------------------------------------------------------------------------------
Infragistics Professional
Build stunning WinForms apps today!
Reboot your WinForms applications with our WinForms controls. 
Build a bridge from your legacy apps to the future.
http://pubads.g.doubleclick.net/gampad/clk?id=153845071&iu=/4140/ostg.clktrk
_______________________________________________
Openvpn-users mailing list
Openvpn-users@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/openvpn-users

Reply via email to