Slackware This Forum is for the discussion of Slackware Linux.
|
Notices |
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
Are you new to LinuxQuestions.org? Visit the following links:
Site Howto |
Site FAQ |
Sitemap |
Register Now
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
|
 |
03-31-2006, 02:24 PM
|
#1
|
Member
Registered: Jun 2002
Location: Nova Scotia
Distribution: Debian (home), Kubuntu 7.04 (work)
Posts: 265
Rep:
|
Slackware security updates - for how long?
Does anyone know whether Slackware (i.e. Pat!) has an official policy regarding how long security updates will be provided for a particular version of the distribution? I can't find any info on this anywhere, though presumably I haven't searched hard enough.
I notice that security updates are still being provided for Slackware 8.1 which was released in June 2002 - that's pretty generous! I'm using Slackware 10.1 at the moment and I will almost certainly have upgraded before 10.1 becomes unsupported, but I was just curious when that would be.
|
|
|
03-31-2006, 03:56 PM
|
#2
|
Senior Member
Registered: Dec 2004
Location: In my house.
Distribution: Ubuntu 10.10 64bit, Slackware 13.1 64-bit
Posts: 2,649
Rep:
|
As far as 'supported' goes, it will be updated/improved/changed for as long as someone has the desire to do so. That's the power of Slackware (and GNU/Linux in general): THERE IS NO ONE CENTRAL MONOLITHIC POWER.
This ain't Windows.
If someone feels like adding/updating, they do. If you need something done that nobody else is doing, figure it out and change it yourself.(Not being 'smart' about it. It's a golden opportunity for you to really learn programming, of which Slackware has a plethora of tools to accomplish that very goal)
Open Source means that anyone can change/modify the programming.(Simplistic, I know, so don't get your keyboard all fired up to bash me on this. Just trying to keep things simple here.) And keep using it.
Heck, I just installed 3.6 on an old P75 to use as a webserver and bash-about box. Slackware is great for that.
|
|
|
03-31-2006, 05:00 PM
|
#3
|
Member
Registered: May 2004
Location: South Carolina
Distribution: Slackware 11.0
Posts: 606
Rep:
|
I disagree completely.
Pat ultimately decides what goes into slackware, the community has ultimately no say at all. Sure, they can make suggestions, but chances are they will go unanswered. The community does NO security updates at all, it is entirely up to Pat on when, what, and which versions to upgrade.
And it is all essentially random.
|
|
|
03-31-2006, 05:05 PM
|
#4
|
Senior Member
Registered: Dec 2004
Location: In my house.
Distribution: Ubuntu 10.10 64bit, Slackware 13.1 64-bit
Posts: 2,649
Rep:
|
You miss my point. While it is true that Pat decides what goes into the ORIGINAL DISTRO, after that, you can do as you wish: Add whatever, subtract whatever, change whatever. The Distro itself is supported by Pat, the individual programs are still up to the individual user.
|
|
|
03-31-2006, 05:07 PM
|
#5
|
Senior Member
Registered: Oct 2004
Posts: 1,272
Rep: 
|
Well, as Pat isn't providing security fixes for Slackware < 8.1, then you can assume that updates to any particular version of slackware will be made for approximately four years after release.
But as has been said, long after Pat stops releasing fixes for a version you can still make your own updates
Last edited by phil.d.g; 03-31-2006 at 05:09 PM.
|
|
|
04-01-2006, 06:53 AM
|
#6
|
Member
Registered: Aug 2002
Posts: 150
Rep:
|
Some time ago (2002-ish) Pat used to release security updates for the current stable version and one older version (i.e. 7.1 and 8.0, later 8.0 and 8.1). Now he seems to do everything up from 8.1. I guess he has set up a nice build system for building security updates for older versions. We can't complain, 4 years is pretty good. Slack 10.2 is pretty light, so it doesn't hurt to update to 10.2 if you are still running 8.1  . Anyway, if older versions become unsupported, I guess 8.1 will be dropped first, 9.0 later.
Only Pat can give an definite answer to this question.
|
|
|
04-01-2006, 09:25 AM
|
#7
|
Member
Registered: Mar 2005
Location: UK
Distribution: Slackware
Posts: 794
Rep:
|
It might be something to do with the kernel version. I don't know what 8.1 uses but if it's the most recent with a 2.2 kernel, that might be why it's kept up-to-date.
|
|
|
04-01-2006, 09:29 AM
|
#8
|
Member
Registered: Aug 2002
Posts: 150
Rep:
|
IIRC 8.1 used 2.4.18. 8.0 was the last version with a 2.2.x (and 2.4.x) kernel. BTW 8.1 was the first version that uses the new package naming scheme for the main distribution.
Last edited by danieldk; 04-01-2006 at 09:30 AM.
|
|
|
04-01-2006, 05:04 PM
|
#9
|
Member
Registered: Jun 2002
Location: Nova Scotia
Distribution: Debian (home), Kubuntu 7.04 (work)
Posts: 265
Original Poster
Rep:
|
Quote:
Originally Posted by danieldk
Only Pat can give an definite answer to this question.
|
Looks like I'll have to ask him, then!
|
|
|
04-01-2006, 10:01 PM
|
#10
|
Member
Registered: May 2004
Location: South Carolina
Distribution: Slackware 11.0
Posts: 606
Rep:
|
I think it has to do with GCC versions and package naming schemes. Kernel really doesn't matter in security updates, but an up to date GCC is needed to compile most of the newer programs, and 8.1 comes with 2.95 as far as i can remember.
Also note that slackware 8.1 does NOT get every security update that 9.1+ get, simply because a lot of the security updates just will not compile on older versions of slackware.
Pat will essentially provide security updates for as absolutely long as possible. But as i said, if a package cannot compile on older versions, then that program will not get a security update.
In that case, you do NOT get an updated package from pat, and you also can NOT "provide your own security updates" as they won't compile anymore.
In other words, as soon as Pat stops providing some security updates, then you will no longer get security updates at all, not from pat and not from yourself.
|
|
|
04-02-2006, 12:14 PM
|
#11
|
Senior Member
Registered: May 2003
Distribution: Slackware, OpenSuSE
Posts: 1,839
|
Quote:
Originally Posted by Nobber
Looks like I'll have to ask him, then!
|
That's what I'd suggest.
Not to offend anybody, but some of the answers to your original questions missed the point. Your question was, how long you can expect "official" support by the distributor.
While it is true that you can always apply security patches for individual packages on your own, as Slackware is based on virtually unmodified packages from the original sources, and avoids proprietary vendor patches, it is of course calming and important for production use, when you know that you can count on someone backing you.
BTW, it is not quite true that Pat V. is the only person providing patches for Slackware. He does provide them for many packages, but for some others he collects contributions from other people, assures quality and releases them, as you can read in the Changelog.
Having said that, Pat V. is still the man that makes Slackware something special, as he has a pretty unique feeling or method (not sure, actually) what makes a consistent distribution. I guess we can look forward to things to come, soon... ;-)
gargamel
|
|
|
04-02-2006, 12:43 PM
|
#12
|
Member
Registered: Aug 2002
Posts: 150
Rep:
|
Quote:
Originally Posted by liquidtenmilion
Also note that slackware 8.1 does NOT get every security update that 9.1+ get, simply because a lot of the security updates just will not compile on older versions of slackware.
|
Security fixes can often be backported quite easily. This is what Red Hat et al do, and if I recall correctly Pat does this sometimes too.
Quote:
In that case, you do NOT get an updated package from pat, and you also can NOT "provide your own security updates" as they won't compile anymore.
|
You can, just look up what patch is needed. In the case of buffer overflows, off-by-ones, etc. it is usually patched quite easily.
|
|
|
04-03-2006, 12:54 PM
|
#13
|
Member
Registered: Jun 2002
Location: Nova Scotia
Distribution: Debian (home), Kubuntu 7.04 (work)
Posts: 265
Original Poster
Rep:
|
Quote:
Originally Posted by gargamel
Not to offend anybody, but some of the answers to your original questions missed the point. Your question was, how long you can expect "official" support by the distributor.
|
I'm glad you said that and not me...
By the way, no response yet from info-AT-slackware.com.
|
|
|
All times are GMT -5. The time now is 02:56 PM.
|
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.
|
Latest Threads
LQ News
|
|