-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1
Spruell, Darren-Perot wrote: > From: [EMAIL PROTECTED] > garbage is third party garbage. One doesn't overlap the others. So if a > third party package runs into a bug (security, stability, or otherwise), > OpenBSD doesn't *have* to scramble to bring the application up to date > because it's not wedged into the core OS. That's true words indeed. However, if I'm running, let's say a MySQL server, and I need to have security updates in time, it does matter wether I can get them from the OS I choosed to use. OpenBSD is secure in many ways, but if the third party app has a security flaw and released a bugfix, I'd like to see an updated package / port too. Otherwise I would need to compile the bugfixed version from source, which doesn't make sense at all. So I need to be a ports commiter or something, right? :) To sum it up: Security wise, it does matter how fast you can get the updates for your third party apps. Being still lucky that the foundation of my server (the OS itself) is secure already and doesn't need any patching --> OpenBSD :-) And yes, an apt-get update; apt-get upgrade is fast. But a make package and roll it out is fast too. ./Marian iD8DBQFEyVcjgAq87Uq5FMsRAnLrAJ0ep+32qWL/1IOeLRFqWKd4GTSpRQCgwCX6 9fKLdCqJljye+OkOek82TCQ= =F5CZ -----END PGP SIGNATURE-----
