LinuxQuestions.org
Welcome to the most active Linux Forum on the web.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Distributions > MEPIS
User Name
Password
MEPIS This forum is for the discussion of MEPIS Linux.

Notices


Reply
  Search this Thread
Old 09-30-2005, 02:58 PM   #1
muddywaters
Member
 
Registered: May 2005
Location: Winnipeg, Canada
Distribution: mostly mepis
Posts: 427

Rep: Reputation: 30
Mepis and security updates


Heres what I have enabled in apt
deb ftp://ftp.us.debian.org/debian/ testing main contrib non-free
deb ftp://ftp.us.debian.org/debian/ unstable main contrib non-free
deb http://apt.mepis.org/3.3.1/ unstable main
deb ftp://ftp.nerim.net/debian-marillat/ sid main

Now how do I keep up on security updates? I went here, www.debian.org/security/faq
and found this
Q: How is security handled for testing and unstable?
A: The short answer is: it's not.

Following another thread I decided to install apt-listbugs. Then went into synaptic marked installed packages for update. After looking through this for a while I decided to backout of this method.
There is probably no simple answer to this question. If you have a good tutorial bookmarked would you please share it?
Also a related question. In /etc/apt/preferences I've added a section that includes
Package: nvidia-kernel-2.6.10
Pin: version 1.0.7174-1+MEPIS.3.3
Pin-Priority: 1000

My Mepis version is 3.3.1. Should this section be edited to reflect this?
Thanks in advance for any help.
edit/ Is there anything else needing protection beyond the nvidia driver? /edit

Last edited by muddywaters; 09-30-2005 at 03:18 PM.
 
Old 10-02-2005, 06:25 AM   #2
JerryNew2Linux
Member
 
Registered: Mar 2004
Location: Geneva NY USA
Distribution: MX-16
Posts: 111

Rep: Reputation: 15
A simple Google search on "Linux security" list a huge amount of material on this question, such as comparisons of LInux and Windoze:

http://os.newsforge.com/os/04/05/18/1715247.shtml

or resource centers:

http://dmoz.org/Computers/Software/O...inux/Security/

And a lot of technical discussions. That should help.
 
Old 10-02-2005, 10:44 AM   #3
muddywaters
Member
 
Registered: May 2005
Location: Winnipeg, Canada
Distribution: mostly mepis
Posts: 427

Original Poster
Rep: Reputation: 30
Sorry, my question was poorly worded. Let me try this again using Suse as an example.
Whenever possible I download software from the repositories maintained by Suse. When vulnerbilities are discovered Suse alerts the user and offers a patch. As long as new software comes from a Suse source and is installed with YAST, it is easy to keep up on the patches.
I did google before asking this question. Among the things I found while searching were suggestions to use apt-listbugs and marking all installed packages for upgrade. I don't like this method. Beside the fact that it's very slow, I'm not interested in updating the version of the software, only patching what is already installed. I was hoping to find an easy way to do this using synaptic.
My understanding is Mepis is based on 'unstable'. I'm going to try adding debian.org/security to the list of repositories in apt and see how that works.

EDIT: Nevermind, I'm an idiot. When googling for more information about this I found a thread discussing this very thing right below my post!
EDIT:EDIT: I meant here http://www.linuxquestions.org/questi...60#post1737360

Last edited by muddywaters; 10-02-2005 at 02:05 PM.
 
Old 10-09-2005, 03:24 AM   #4
carlops
LQ Newbie
 
Registered: May 2005
Posts: 10

Rep: Reputation: 0
Unlike what is stated, Debian has offered security support for testing since the 1st week of September:

http://lists.debian.org/debian-devel.../msg00006.html

Cheers
 
Old 10-09-2005, 10:51 AM   #5
muddywaters
Member
 
Registered: May 2005
Location: Winnipeg, Canada
Distribution: mostly mepis
Posts: 427

Original Poster
Rep: Reputation: 30
Thanks. I searched a long time and somehow missed this information.
People say 'google is your friend' but sometimes it just isn't.

Last edited by muddywaters; 10-09-2005 at 10:53 AM.
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off



Similar Threads
Thread Thread Starter Forum Replies Last Post
Security Updates jakebhoy Mandriva 2 09-04-2005 07:41 PM
automating updates with mepis ptawe MEPIS 3 07-06-2005 05:12 PM
only security updates rafc Debian 2 06-26-2004 01:27 PM
Security Updates AZDAVE Linux - Security 2 06-03-2004 03:16 PM
security updates Tigger Linux - Security 1 09-16-2003 10:38 PM

LinuxQuestions.org > Forums > Linux Forums > Linux - Distributions > MEPIS

All times are GMT -5. The time now is 11:48 AM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Open Source Consulting | Domain Registration