This is a read-only archive. Find the latest Linux articles, documentation, and answers at the new!

Re(1): Security headache?

Posted by: Anonymous [ip:] on December 24, 2008 02:23 PM
In Debian the answer is simple and easy: When the update is made available, port it to the Debian stable version of the lib, patch the source, remake the package (simple rebuilding of an existing package is pretty simple), bump the version so that it is now "higher" than the previous one, deploy the updated package to your own internal update servers. The next time that your Debian stable box looks for updates (you do have this on an automatic schedule, right?) it finds a new package, installs it, and is done. Since the depends are 99% likely to be the same nothing breaks.

Or wait for Debain maintainers to do the work for you and copy the package down.

This is just one more reason to keep all of your servers running the same distribution.


Return to Nix fixes dependency hell on all Linux distributions