On 10/04/2021 23:45, Matus UHLAR - fantomas wrote:
On 10/04/2021 22:59, Matus UHLAR - fantomas wrote:
[SNIP]
it could help if we provided proper reason to upgrade tho.
On 10.04.21 23:08, Gary R. Schmidt wrote:
Isn't, "It's security software", sufficient?
obviously not. There are still question:
1.) what may break if we upgrade?
2.) what may break if we don't upgrade?
3.) why should we upgrade if nothing's broken and we risk 1.) ?
etc
On 10.04.21 23:54, Gary R. Schmidt wrote:
Hmm, must not be too worried, then.
The mob I work for's (enterprise) clients tend to send me queries
every time an OpenSSL or other CVE comes out, "How long will it take
to apply the fix?", "When will you have a new release ready?", "Does
it affect the product(s)?", usually in that order.
And yes, we all know about the problem of, "How much other testing
will have to be done?"
Debian and other distros usually fix security bugs by backporting security fix
into
provided SW version.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
Emacs is a complicated operating system without good text editor.
_______________________________________________
clamav-users mailing list
clamav-users@lists.clamav.net
https://lists.clamav.net/mailman/listinfo/clamav-users
Help us build a comprehensive ClamAV guide:
https://github.com/vrtadmin/clamav-faq
http://www.clamav.net/contact.html#ml