[debian-mysql] Bug#914172: Inquiry re "policy" of new dependencies (not hosted in sec repo) added when issuing security updates

Jeremy Davis jeremy at turnkeylinux.org
Wed Dec 5 07:35:42 GMT 2018


Hi Salvatore,

On 5/12/18 17:27, Salvatore Bonaccorso wrote:
> I would acctually not recommend including only the security mirrors in
> sources list. You will miss in such cases important updates as well
> scheduled via a point releases.
> 
> Does this helps?

Yes that helps heaps!

Thank you for the clarification! :)

FWIW, this config has served us pretty well for ~10 years to only
install security updates. But it seems that luck may have been a
significant factor!

With this info, we'll certainly need to reconsider how we do things as
our current config was based on an incorrect understanding of security
update "policy".

Thanks again...

Regards,
Jeremy

-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 488 bytes
Desc: OpenPGP digital signature
URL: <http://alioth-lists.debian.net/pipermail/pkg-mysql-maint/attachments/20181205/d21f8d47/attachment.sig>


More information about the pkg-mysql-maint mailing list