SlackwareThis Forum is for the discussion of Slackware Linux.
Notices
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
That's true, but in a business environment I don't think it's a good idea to rely on a small third-party project like that with no promise of continued maintenance or security updates. At least I wouldn't. (Nothing against the Dlackware guys; they do great work, but that's just the reality. Plus, their goal is to provide the GNOME desktop on Slackware, not an enterprise version of Slackware.)
They brought PAM to Slackware. If people want that kind of certainty then they'd have to pay for it instead of relying on volunteers (which I think do a good job).
That's a dang good summary of why PAM has not been included in Slackware ( PAM is useless for AD Integration without Kerberos and compiling against Kerberos is a complicated mess ).
-- kjh
So far I haven't encountered any difficulties compiling against PAM and Kerberos. Both are industry standards and are usually auto-detected or activated by a simple --with/--enable switch.
By trying hard to avoid them Slackware creates a complicated mess of outdated and unsupported code paths and insecure SETGIDs.
Distribution: Slackware/Salix while testing others
Posts: 1,718
Rep:
Quote:
Originally Posted by Gerard Lally
This is a point I made earlier. It's all very well saying RH support their server until 2024, but how many bugs did they introduce to their server OS with the insane rush to integrate barely tested, barely-out-of-beta software?
Another point I made that has not been answered: RH support their server OS until 2024. Do they support nux? Do they support epel? I think the answer to both questions is no. So the same as slackbuilds, then?
And, finally, when RHEL 7 was released 3 years ago, the major components were already old. OpenSSL, for example, upon which so many other components depend. I am curious to know how far RH will be able to go in 2021, 2022 and 2023, to backport fixes to OpenSSL (and others). I am not saying it can't be done; I am just curious to know if it can, and if it's practicable without opening yet another can of worms.
My recollection is that nux is a one man show, updates when he can...with no guarantees. EPEL is (I believe) run by a few Fedora users/team members but also is not guaranteed to have updates even for security. Both repos are use at your own risk.
Distribution: Slackware/Salix while testing others
Posts: 1,718
Rep:
Quote:
Originally Posted by bassmadrigal
I don't think the point a4z brought up was directed at the volunteers, but rather at the lack of any guidance by SBo admins on when updates should be published. Some package maintainers will push out updates as soon as they're available upstream, whether it be a security update or new features. Others will only push out updates when a package breaks. Others will push out updates whenever they think about checking if there's new releases upstream.
I don't say any of this to belittle the SBo project; I am impressed with it and how things are handled. And I'm not using this post to suggest that the guidance be put in place. Overall, I think it works great for most users. But this lack of guidance on package updates do make it difficult for enterprises to know what they're getting into.
With Slackware, once a stable release is put out, updates generally only come to it in the form of security updates or bug fixes. The same can't be said of SBo. You may upgrade a program and it has suddenly switched from a gtk interface to qt and had everything change. Or a new program could've deprecated something that was needed on the older version.
This information shouldn't be taken as a slight towards SBo. SBo was not designed for the enterprise and I don't think they should change to better conform to the enterprise. It shouldn't be taken as an insult that this incredible project, admined by some amazing volunteers, and supported by a massive group of amazing package maintainers isn't "enterprise ready". It's an "everything and the kitchen sink" approach, just like Slackware
Unfortunately, there is no official support schedule for any Slackware versions. 12.0 and 12.1 were EOLd at around their 5 year mark, but 13.0 still has support almost 8 years later. But then Pat could EOL everything 14.1 and below tomorrow. Slackware doesn't list any release to be LTS or not. And we don't know when a release will eventually become EOLd.
As with the above, I don't think this is necessarily bad. Enterprise companies generally tend to be the ones who worry about support life and EOLs, but Slackware doesn't advertise itself to be "enterprise ready". Yes, it would be nice to know how much longer Pat intends to support older versions for those who tend to install a version for a LONG period of time, but until that happens, users will need to be prepared for older versions to be EOLd.
Yet many desktops in US gov. (know from personal experience) run Slackware for workstations and especially for development.
If we use your criteria above, then lets apply it also to CentOS official repos, not EPEL, nux etc....
Distribution: Slackware/Salix while testing others
Posts: 1,718
Rep:
Quote:
Originally Posted by Slax-Dude
You are missing the point.
Nobody said opensource is unfit for enterprise.
We are only saying that not all opensource projects are "enterprise ready".
Debian has very different guidelines for package maintainers than SBO.
They are different things: SBO is a script repository and Debian is a linux distro.
Maintainers in SBO have no obligation to update their scripts, unless it fails to produce a working package. That's it.
Maintainers in Debian are obliged to update their packages in case there is a version bump that squashes a serious security related bug.
A company can rely on Debian. Not so much on SBO... <-- again: this is not to say SBO is not great! Don't kill me!
Again, you are missing the point.
Opensource in general is "enterprise" agnostic (as is all software).
I would not trust my company's fate to closed source software if it was not maintained correctly.
This is not a "opensource is unfit for enterprise" discussion and nobody here said as much.
For some of us, Slackware fits perfectly in our professional lives and for some it doesn't.
We slackers that think it doesn't are just explaining why and what we wish it did differently.
Again *sigh* nobody stated otherwise.
We are just saying that administering 100 Slackware boxes is significantly harder and more time consuming than other "enterprise ready" distros out there.
Maintaining 1500+ packages (just security patches alone, never mind new features) like kikinovak did is no walk in the park, and eventually became unmanageable for him.
Fact is: every company (and their sysadmin) has different requirements and Slackware is a good fit for a minority only. The stated goals of Slackware are not "be enterprise ready".
It is a very nice learning tool and an excellent base system that can be expanded to do anything from server to desktop.
Unfortunately, it is a lot of work to expand the "base" system to what is needed in a company (my view. others may differ).
SBO helps expanding it and is fine for personal use, but is not predictable enough for professional use (again, my opinion).
Third party repositories are the way to go, but that requires skilled and driven package maintainers (not easy to maintain a big repo). I'd trust most of them for personal use, but only a few for a company.
have a dedicated box for compiling then install those to other boxes of same arch....It's done in quite a few places trust me.
Hello guys
Since 7 months ago , for a very very long time (10 years) I worked in mid-size ISP in Bulgaria (10 cities, 70-80k clients). /It was my love to Slackware that got me there /
Around 95% of the servers ware running Slackware.
As you can imagen, its an ISP, so most of the servers are running PPPoE... freeradius ...stuff like that.. some IPTV servers.. few databases and web servers.
Oh and I know of one more ISP in Bulgaria that is mostly running Slackware.... It's running Slackware mirror
/edit/
As ChuangTzu already noted.
Another really interesting example is SiteGround...they are hosting provider and they announced that they'll be migrating to Slackware...
Yet many desktops in US gov. (know from personal experience) run Slackware for workstations and especially for development.
If we use your criteria above, then lets apply it also to CentOS official repos, not EPEL, nux etc....
Just because a distro isn't "Enterprise Ready" doesn't mean it won't be used in the Enterprise. There's exceptions to every rule. And all I meant by my statement is there is no official support window for Slackware releases. All that means is the companies that use it can't rely on there being updates for a certain period of time. That doesn't mean that every company will choose to not use Slackware just because there's no scheduled EOL on the horizon. There are certainly some companies (or possibly just sysadmins who can convince the companies) that see Slackware as a distro that can fit their needs, so they use it.
Just as there's no update guidelines for SBo. That doesn't mean that some maintainers won't try to push security updates as soon as they are aware of them... just that there's no mandate by the SBo admins to do so.
However, I do wish that Slackware (or even Linux) would be more readily available throughout the US government. I am stuck with Windows 7 (eventually Windows 10, whenever they end up forcing the update), and I have no ability to ever run Linux.
Just as there's no update guidelines for SBo. That doesn't mean that some maintainers won't try to push security updates as soon as they are aware of them... just that there's no mandate by the SBo admins to do so.
We do hope that maintainers are actively pushing updates, but we don't have a strict rules for that since it's not a paid job. We all do this voluntarily, including the admins. Security updates are applied as they reported, but users can simpply bump the VERSION and build the package themselves if they can't wait for next public update.
RedHat people contributing to epel and companies rely often on some epel components.
The plan for epel is to be supported as long as RHEL releases.
This is everything somehow soft formulated, and if epel goes away, RedHat can say we never promised you anything.
To be fair: EPEL, like Sbo is a volunteer based community project.
Red Hat doesn't support or test packages from EPEL.
Installing packages from EPEL (or any third party) is done at the user's own risk.
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.
/
