Bug#766249: iceweasel: wheezy force upgraded to 31.2.0esr-2~deb7u1
William Herrin
bill at herrin.us
Wed Oct 22 19:54:07 UTC 2014
> > 1. Introduce an iceweasel32 package and obsolete the old iceweasel
> > package at the point where you're no longer able to provide security
> > updates to it. The obsoleted package won't be removed until the
> > sysadmin decides to remove it.
>
> This means we should skip the ESR version 31 with the security fixes and
> put a current devel version into stable? Possible, but seriously, why
> should we do that?
Due respect Carsten, you're being deliberately obtuse here. If firefox esr
31 is the one you deem current and secure, replace "32" in every reference
I made. I offer no opinion on that; I would hope you're qualified to make
that assessment.
> No! We do nothing on the versioning! We do nothing more than provide a
> actual, more bugfixed version for the current stable release of Debian.
> That's simple and that's all.
By your own statement, you moved from Firefox 10 through several iterations
all the way to Firefox 31 inside of Wheezy. If you don't like the word
"versioning" to describe that misbehavior, misbehavior that is in conflict
with the debian security patch guidelines, pick a word you like better.
> I haven't
> seen any bug on this that a user is loosing any configuration depending
> on upgrading from Iceweasel 24 to 31.
Not for lack of me reporting one. Yesterday.
> > 2. Offer a high-priority dialog at install time if the version being
> > replaced is enough older to have compatibility problems, advising
> > that the version being installed is known to be incompatible. Offer
> > an "abort upgrade" option which will fail out of the package install.
>
> No, we do a security update. So there is nothing to do so.
Nothing for YOU to do, ya lazy bum. ;)
Seriously though, on my side of the fence you create substantial sysadmin
work. Now I have to revert the change (hunt down the old package) because
you just blew up my configuration, I have to hold the package in apt and
pray no dependencies move it back to install. Then I have to schedule a
cautious move forward. Then I have to hold the package again so you don't
blow me out of the water next time. And then I have to manually keep track
because I'm no longer receiving automatic security updates for Firefox and
won't know when one is released.
Unexpected major version bumps really screw me over bub.
Regards,
Bill Herrin
--
William Herrin ................ herrin at dirtside.com bill at herrin.us
Owner, Dirtside Systems ......... Web: <http://www.dirtside.com/>
May I solve your unusual networking challenges?
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.alioth.debian.org/pipermail/pkg-mozilla-maintainers/attachments/20141022/e18521d4/attachment.html>
More information about the pkg-mozilla-maintainers
mailing list