[Bug 1370416] Re: Central and German package servers ship different state of the same package marked as the same version
Thanks. Muon is the default package manager and there's an update tray icon alert thing in Kubuntu, so you might want to judge the priority which is not set yet upon that. FYI the issue still applies, today is day 3, so I would assume it really is not a package server synchronization issue. -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1370416 Title: Central and German package servers ship different state of the same package marked as the same version To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/aptitude/+bug/1370416/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 1370416] Re: Central and German package servers ship different state of the same package marked as the same version
Thanks. It has been 2 days now, and the package is still showed as NON-security on the machine even though I have updated the package list just now. No matter what possible technical explanations are, from a system administrator's perspective, it is a bug if a security update is marked as non-security for over 2 days. Thus, please re-open the issue. Also, please be so kind to fix this soon: I have taken the machine out of production just so I can help you with fixing the issue. I *need* the machine for work, so it would be nice if this situation could be resolved soon. (Also, please notice that even the idea you described of spreading the packages as non-security just for a few hours might be bogus: Admins use tools such as apticron to get notified by mail about package updates. While I have not verified that, it seems probable that those tools will just check the version and not send out another mail for the same version. So when you get the first mail about it NOT being a security update, another one will likely not be sent once it changes to security. Then the administrator will not install the update any soon because he thinks it's not security relevant.) -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1370416 Title: Central and German package servers ship different state of the same package marked as the same version To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+bug/1370416/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 1370416] Re: Central and German package servers ship different state of the same package marked as the same version
You will only see a security update in -security in the first few hours after publication; depending upon a large number of variables it might be visible in a mirror's -updates pocket within minutes or maybe a day later. This is a one-way transition -- there's no point in checking again once the package has been copied to the mirror network. You'd have to be scanning for updated packages every half hour or so to try to catch a package in only the -security pocket. Please do not use the URL to determine if a package is a security update. If all you want is security updates you can remove the -updates pocket from your repository configurations but be aware that a great many reliability fixes are made available only in -updates. Thanks. -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1370416 Title: Central and German package servers ship different state of the same package marked as the same version To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+bug/1370416/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 1370416] Re: Central and German package servers ship different state of the same package marked as the same version
Ok I think I finally know where we are misunderstanding each other: I am *NOT* using the URL to determine whether it is a security update! I am talking about the fact that the user interface of aptitude has a category Security updates and Upgradable packages. The package is displayed at Upgradable packages instead of Security updates. The KDE Muon thing also does not show anything about security updates. So the mechanism of apt which detects that it is a security update is broken. Whether it uses the URL for that or whatever else is not at my knowledge. I only know that a package which is a security update is not marked as such in the user interface, and that is definite breakage. Can you re-open this now? :) -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1370416 Title: Central and German package servers ship different state of the same package marked as the same version To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+bug/1370416/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 1370416] Re: Central and German package servers ship different state of the same package marked as the same version
Ah! That's the missing piece indeed. I've never used aptitude or muon so I've never noticed the discrepancy. Thanks ** Changed in: ubuntu Status: Invalid = Confirmed ** Package changed: ubuntu = aptitude (Ubuntu) ** Also affects: muon (Ubuntu) Importance: Undecided Status: New ** Changed in: muon (Ubuntu) Status: New = Confirmed -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1370416 Title: Central and German package servers ship different state of the same package marked as the same version To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/aptitude/+bug/1370416/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 1370416] Re: Central and German package servers ship different state of the same package marked as the same version
** Information type changed from Private Security to Public Security ** Changed in: ubuntu Status: New = Invalid -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1370416 Title: Central and German package servers ship different state of the same package marked as the same version To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+bug/1370416/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 1370416] Re: Central and German package servers ship different state of the same package marked as the same version
Thanks for your concern; this is standard and expected behaviour. The security.ubuntu.com server farm is fairly small and on limited bandwidth compared to the wider Ubuntu mirror network so our security updates are periodically copied into the -updates pocket for wider distribution and mirroring. This allows the majority of people with daily checks to mostly get their updates from the mirror network, saving bandwidth for security.ubuntu.com and providing them with faster downloads but still allows for people to get security updates as quickly as we publish them, if desired. Depending upon when your machines request package list updates from the mirror network, and which mirrors you contact, and where in that individual mirror's copies you land, you may get a security update via the -updates pocket or the -security pocket. Some additional background on this can be found at https://wiki.ubuntu.com/SecurityTeam/FAQ#Repositories Good paranoia, but this part is acting as normal. :) Thanks -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1370416 Title: Central and German package servers ship different state of the same package marked as the same version To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+bug/1370416/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 1370416] Re: Central and German package servers ship different state of the same package marked as the same version
Thanks but I don't quite understand what you're trying to say. There are two interpretations of what you said: 1) Did you misread my report and thought I was complaining that one machine does not see a security update yet while the other sees it? That is NOT the case. They both see the same package update, that is an update which claims to be the *same version number*. But on one machine the version is marked as *security*, and on the other it is NOT marked as security. 2) Or are are you telling me that updates which *are* security updates are *normal* to be NOT marked as security updates for some people? That is very very bad. If something is a security update, it needs to be marked as such, otherwise people won't install it quickly! -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1370416 Title: Central and German package servers ship different state of the same package marked as the same version To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+bug/1370416/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 1370416] Re: Central and German package servers ship different state of the same package marked as the same version
It is normal for security updates to be copied to the -updates pocket of the mirror network in order to provide better update availability and speed to everyone. We don't expect users to determine if an update is a security update based on the URL where the package can be found. Instead, our updater will by-default prompt users to install security updates daily (see System Settings | Software Updates | Updates - When there are security updates). We also publish Ubuntu Security Notices for officially supported packages -- http://www.ubuntu.com/usn/ and https://lists.ubuntu.com/archives/ubuntu-security-announce/ -- for users who want to stay on top of security updates manually. Administrators may also install the unattended-upgrades package if they want to install security updates (or other updates) automatically. Thanks -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1370416 Title: Central and German package servers ship different state of the same package marked as the same version To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+bug/1370416/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
