[TriLUG] Debian Sid/Unstable
Kevin Hunter Kesling
hunteke at earlham.edu
Fri Feb 28 13:03:34 EST 2014
At 12:03pm -0500 Fri, 28 Feb 2014, Alan Porter wrote:
> At 11:25am -0500 Fri, 28 Feb 2014, Sean Alexandre wrote:
>> On (2): Debian also seems to do a good job of patching security
>> holes when fixes become available. It would be harder to do this if
>> the hole had to be patched in multiple places.
> My Mac did something very similar after this week's OS update, which
> I assume had the same SSL fix.
>
> My guess was that it included a script that scanned the entire
> filesystem, looking for multiple copies of the faulty SSL libraries
> and replacing or patching them. I should have done a comparison of
> the day before's backups against the day-after's backups.
>
> A Debian system would not need to do this, because all of the
> packages rely on separately-installed libraries that bind at
> run-time.
This is also a stronger argument to me, and perhaps getting at the piece
I'm missing here. I suppose the question then, is where to draw the
line between system-provided ABI, and application specific libraries?
Clearly, the Linux line is larger than OS X's, and is the quicker one
for fixing system-effecting issues such as your example. (With the
caveat, of course, that upgrading packages -- as opposed to correcting
bugs/security issues -- means updating your entire distro.)
One pays their money and makes their choices, I suppose: it's hard to
argue with "It works!", and thanks for joining me on my idle musings.
Cheers,
Kevin
More information about the TriLUG
mailing list