1 |
Hi! |
2 |
|
3 |
On Wed, Feb 15, 2006 at 10:59:22AM +0100, Timo Veith wrote: |
4 |
> I have learned that it is not possible to stay at a certain level of |
5 |
> package versions. You need to follow the flow, if you want to install |
6 |
> security updates. I know there are projects that want to take care of |
7 |
> this issue, but I think they aren't ready, yet. So I believe it could |
8 |
> only be a matter of time until you have to upgrade gcc. |
9 |
|
10 |
Yeah, this is truth. I've tried to install only security updates for |
11 |
about a year, and after ~8 month I found it impossible to continue |
12 |
installing security updates without updating some packages I don't wanna |
13 |
update at that time... and some time later - without toolchain upgrade |
14 |
and complete system recompilation as result. |
15 |
|
16 |
And I must say - this situation was a REAL PAIN! That server was |
17 |
under very high load (loadavg between 5 and 15), so I was unable |
18 |
to recompile everything quickly enough, and HUGE amount of packages, |
19 |
including critical for me packages, wanna to upgrade after that year |
20 |
when I've installed only security updates. |
21 |
|
22 |
For me, Gentoo has two most important advantages over other distributions: |
23 |
it extraordinary flexible in selecting what and how should be installed |
24 |
and it allow painless continuously updates. I think it's big mistake to |
25 |
ignore these advantages! |
26 |
|
27 |
So, I think not using ~arch and (in critical cases) freezing versions |
28 |
of some important packages (like MySQL) PLUS continuously updates is best |
29 |
way to ensure server security and stability. |
30 |
|
31 |
-- |
32 |
WBR, Alex. |
33 |
-- |
34 |
gentoo-server@g.o mailing list |