[Mageia-dev] Security updates - Help needed (also forgot avidemux and gstreamer0.10-ffmpeg)

[Claire Robinson]

On 05/07/12 23:34, nicolas vigier wrote:
> On Thu, 05 Jul 2012, Claire Robinson wrote:
>
>> These recent attacks are causing even more work for us, which again helps
>> nobody, and diverts our attention away from where it is really needed. Also
>> I would point out that having to validate the same package several times
>> obviously lessens the amount of time we can spend elsewhere, which
>> compounds the problem.
>
> A disagreement is not an attack.


With respect Nicolas, you're not on the receiving end.



>> If the current situation is indeed such an intolerable issue then perhaps
>> we should think seriously if we currently have the resources to maintain
>> two active releases or rethink our ability to open backports, instead of
>> bullying those who are already stretched too thinly.
>
> If there is too much workload, a solution is to provide only limited
> support and stop trying to fix all bugs with stable updates: only
> important security issue and critical bugs are fixed with an update, all
> other bugs are fixed in Cauldron only. This is what is done in most
> other distributions.


This is mainly what is happening now. Don't forget mga1 has had a long 
time to receive its bug fixes, they are few and far between now. Most 
security updates on the other hand are for both mga1 and mga2 so take at 
least twice as long to test.