Feedback

type to search

What are Debian updates, exactly?

Asked by [ Editor ] , Edited by Gerfried Fuchs [ Editor ]

deb http://ftp.br.debian.org/debian squeeze main
deb http://ftp.br.debian.org/debian squeeze-updates main
deb http://security.debian.org/ squeeze/updates main

What are the differences of updates and security updates (the second and the third lines in the above sources.list).

I understand what security updates are. But what are the other (non-security) updates? Isn’t Debian 6 frozen? If so, how a frozen system can have non-security updates?

I use Debian 6 on a recently installed production Web server. Should I update the server only from the security repository or from squeeze-updates too?

NN comments
apmouse
-
> What are the differences of updates and security updates?

Squeeze-update contain updates that satisfy one of the following criteria:

  1. The update is urgent and not of a security nature.  Security updates   will continue to be pushed through the security archive.  Examples   include packages broken by the flow of time (c.f. spamassassin and   the year 2010 problem) and fixes for bugs introduced by point   releases. 
  2. The package in question is a data package and the data must be updated   in a timely manner (e.g. tzdata).
  3. Fixes to leaf packages that were broken by external changes (e.g.   video downloading tools and tor).
  4. Packages that need to be current to be useful (e.g. clamav).
(from mailing list)

> Isn’t Debian 6 frozen? If so, how a frozen system can have non-security updates?

Debian 6 is not frozen. “Frozen”  –  is status of testing release, and not stable. Read FAQ for more details. 

Should I update the server only from the security repository or from squeeze-updates too.

All default repositories from source list are recvired to keep system up-to-date.

or Cancel

1 answer

0

rra from Santa Clara, United States of America

The codename-updates repository is essentially a holding area for package updates that will go into the next stable point releases.  The security updates will also go into the next stable point release, but the updates repository is used for more minor security issues that don’t warrant an advisory (such as some DoS issues), fixes for important or RC bugs that aren’t security issues, and updates to always-changing data like time zone information.

Software in -updates has been accepted by the stable release managers but hasn’t yet been included in a stable point release.  It’s therefore less stable than the software in stable itself (fewer people have used it or looked at it), but it has been reviewed by at least one person.  Whether or not to include it in your sources.list depends on your risk tolerance.

It’s now being used in place of the old volatile archive for things that need to change all the time, so if you need, say, new virus definitions or new time zone information, that’s where it will be between stable point releases.

or Cancel

Your answer

You need to join Debian to complete this action, click here to do so.