As a future hardware OEM that will be pre-installing Linux I can say that this feature of Red Hat is EXACTLY why I really think we will OEM Red Hat with our systems.
Applying the patches to the version of the package that shipped with their distro is the best and proper way to do it. It really is. Why? You may have stuff in /usr/local that is compiled against the libraries in kde-3.0.3 If Red Hat were to have offered an update to kde-3.0.5 w/ RH8 then guess what - some of the software that you have in /usr/local (or ~/) that is linked against kde-3.0.3 would break. I sure as hell don't want to have to choose between "applying a security fix and breaking software" or "don't apply security fix" Red Hat is doing the prudent thing by back porting security fixes into the version of the software they shipped whenever possible. It ultimately provides the best integration between applications provided by the OS vendor (Red Hat), applications provided by third party vendors designed to work with Red Hat, and applications compiled on your machine. So please - before anyone else britches about Red Hat not providing updated versions but rather backports fixes - please educate yourself - as that is the PROPER way to do things. DISCLAIMER This rant is not specifically aimed at David van Hoose. I just quote his mesage. On Fri, 2002-12-13 at 09:54, David van Hoose wrote: > You are not alone. > I sent RedHat a message addressing the issue about how they are > releasing older packages with their set of security fixes rather than > helping patch the program's CVS so that ALL of the newer versions of the > program will be patched. I find that RedHat is in essence pulling a > Micro$oft in that they will not share. > I find it kind of iritating that RH just released an update for KDE > 3.0.3 instead of releasing 3.0.5 which had the same fixes. Some programs > should be tested, but others are already being tested and fixed on a > daily basis. > I think that if we all complain about this, that they might modify their > policy on security fixes. > -- Michael A. Peters <[EMAIL PROTECTED]> -- redhat-list mailing list unsubscribe mailto:[EMAIL PROTECTED]?subject=unsubscribe https://listman.redhat.com/mailman/listinfo/redhat-list
