Hello all,
So my current understanding is that a Debian host who's package manager is configured to pull updates from a mirror (as opposed to the official Debian repository) should also be configured to pull from the debian-security repo, as the latter hosts packages to which important security updates have been applied. This is done so hosts pulling from a mirror can access security updates immediately, without having to wait for the updated package to be propagated to their chosen mirror.
If that's True (if) it implies these things:
* hosts configured to pull from the official Debian repo do not need debian-security
* the updated package is pushed to the official Debian repo and debian-security at the same time (practically speaking)
* the package manager will pull the updated package from debian-security if it is more recent than the same package held in the mirror
* given enough time elapsed since the updated package was pushed to the repo(s), the version in the mirror may be identical to that in debian-security
Please feel free to critique my understanding.
So my current understanding is that a Debian host who's package manager is configured to pull updates from a mirror (as opposed to the official Debian repository) should also be configured to pull from the debian-security repo, as the latter hosts packages to which important security updates have been applied. This is done so hosts pulling from a mirror can access security updates immediately, without having to wait for the updated package to be propagated to their chosen mirror.
If that's True (if) it implies these things:
* hosts configured to pull from the official Debian repo do not need debian-security
* the updated package is pushed to the official Debian repo and debian-security at the same time (practically speaking)
* the package manager will pull the updated package from debian-security if it is more recent than the same package held in the mirror
* given enough time elapsed since the updated package was pushed to the repo(s), the version in the mirror may be identical to that in debian-security
Please feel free to critique my understanding.
Statistics: Posted by Synthguy — 2024-08-04 17:44 — Replies 3 — Views 109