LinuxQuestions.org
Download your favorite Linux distribution at LQ ISO.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Distributions > Debian
User Name
Password
Debian This forum is for the discussion of Debian Linux.

Notices



Reply
 
Search this Thread
Old 07-23-2012, 08:17 AM   #1
padeen
Member
 
Registered: Sep 2009
Location: Perth, W.A.
Distribution: Slackware 14, Debian 7, FreeBSD, OpenBSD
Posts: 182

Rep: Reputation: 35
How to stay on top of security patches for source packages


I built my own package for squid 3.1.6 because I needed a ./configure option that the pre-built package does not set. That worked fine and it installed correctly and everything is sweet.

Now, apt-get upgrade wants to "upgrade" my squid back to the pre-built version. I gather I should have somehow changed the version of my package so that apt-get does not want to upgrade it.

How do I change the version of my package and what should I have changed it to?

Should I just pin the package and be done with it?

Looking forward, how can I make sure I get the future security patches for squid3? Or at least get notified of them.

Thanks.

Debian 6.0.5 (Squeeze)
 
Old 07-23-2012, 10:36 AM   #2
cynwulf
Senior Member
 
Registered: Apr 2005
Distribution: OpenBSD, DragonFly BSD
Posts: 1,408

Rep: Reputation: Disabled
You can change the epoch of your package to make it appear newer, or use apt-pinning to prevent upgrades...

In your case however, why not just put it on hold?

Code:
# echo squid hold | dpkg --set-selections
(to undo the hold - same command but substitute "hold" with "install".)
 
1 members found this post helpful.
Old 07-23-2012, 07:52 PM   #3
evo2
Guru
 
Registered: Jan 2009
Location: Japan
Distribution: Mostly Debian and Scientific Linux
Posts: 5,590

Rep: Reputation: 1227Reputation: 1227Reputation: 1227Reputation: 1227Reputation: 1227Reputation: 1227Reputation: 1227Reputation: 1227Reputation: 1227
Hi,

Quote:
Originally Posted by padeen View Post
Looking forward, how can I make sure I get the future security patches for squid3? Or at least get notified of them.
You should be subscribed to debian-security@lists.debian.org

Also, if you have your squid3 package on hold apt-get should explicitly tell you when you do an upgrade and there is an new version of squid3 that is "kept back".
This would be your prompt to get the new/patched source package for squid3 and rebuild and install your binary package.

However, depending on what the additional configure flag is, it may be worth filing a bug to get it included in the default Debian build.
What configure option is it that you need?

Evo2.
 
1 members found this post helpful.
Old 07-23-2012, 08:25 PM   #4
padeen
Member
 
Registered: Sep 2009
Location: Perth, W.A.
Distribution: Slackware 14, Debian 7, FreeBSD, OpenBSD
Posts: 182

Original Poster
Rep: Reputation: 35
The flag is --enable-http-violations, I can understand why it is not in the default build.

Thanks for the info.
 
  


Reply

Tags
package, source, squid


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
desklets do not stay on top during feh slideshow aerosmith Linux - Desktop 7 01-26-2009 12:51 AM
LXer: Review: The Top 75 Open Source Security Apps LXer Syndicated Linux News 0 04-28-2008 07:30 PM
RedHat patches vs open source patches paulsh2k4 Linux - Software 1 10-14-2004 04:18 AM
XMMS won't stay on top boonders Linux - Software 1 09-10-2003 05:22 PM


All times are GMT -5. The time now is 01:45 AM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
identi.ca: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration