-
OT: Fair enough, but so could be any other malware etc. in any other Linux distribution or other OS with a fixed release cycle… -
OT: Why would it be in Debian stable? Debian testing/unstable/experimental OK, but stable?
Officially the others are not meant for the "normal" user or "normal" usage at all AFAIK.
And at least unstable and experimental are rolling releases (and testing, too), or am I wrong?Leave a comment:
-
No, not really. At least not this one.Originally posted by jlittle View Post
This thing was discovered almost by accident, so if it had been missed, it would be everywhere, even Debian.
But apparently this backdoor doesn't affect Arch
https://archlinux.org/news/the-xz-pa...en-backdoored/
https://bbs.archlinux.org/viewtopic.php?id=294429
As I take it, the tarball was compromised, not the source git repository, and Arch (and Nix, Gentoo, and others) pull it directly from there. The malware is apparently only built from that tarball when using cmake (which isn't used for this on Arch), and only when building rpm/deb packages.Leave a comment:
-
Absolutely! One of many reasons I would nearly never ever use a rolling release on a server…Leave a comment:
-
Am I correct in thinking that the recent liblzma compromise indicates a weakness in the rolling release approach? Those on supported *buntu releases were not affected.Leave a comment:
-
That is what I call a system one uses e.g. between 9:00 and 18.00, Monday to Friday, to earn one's livelihood or that is used in an industrial setting.
I don't know if it is the right English term for this, sorry.
PS: openSUSE Leap I would use for such a purpose, like Kubuntu LTS or Debian stable.Leave a comment:
-
I've been running opensuse tw and on another machine opensuse leap for best part of a year and not had any problems on either. I don't know whether I have a "production system" though
Leave a comment:
-
I also love and use openSUSE Tumbleweed, but I would never install it on a production system - automatic Btrfs snapper snapshots or not…
Indeed, Canonical has made some controversial decisions over the years to say the least. But they are a company and Ubuntu is their distribution and they can do with it as they please.
And as long as it is still possible to change the things I don't like (and I just have to run two or three scripts…) I am quite fine with it (sometimes I am quite annoyed too, of course).Last edited by Schwarzer Kater; Apr 09, 2024, 08:27 AM.Leave a comment:
-
I have already changed last year to Open Suse tumbleweed because of this Snap nonsense but in the context that is just the latest in a long line of silly Canonical ideas. One day I expect they will drop it and then think up some new silly idea. Tumbleweed is nice, the K is more important than the ubuntu to me anyway. So I now have the latest Plasma and BTRFS by default with regular automatic snapshots set up . Something I was always too lazy to set up properly before.
Leave a comment:
-
I have to agree with the sentiment expressed against the use of SNAP. I'm not enjoying the need to jump through hoops...Leave a comment:
-
I would like to install sometime after 24.04 hits the streets, but only if recent XZ and time thingies are fixed and there are few worries expressed in the forum.Leave a comment:
-
Depending on what the three options in the installer will do when they work, removing Snap could be as "painless" as in 22.04 LTS…Originally posted by Montmorency View PostI was tempted to chose the last option.
And there still are scripts for people who don't want to do this "manually" or who want to use the "traditional" Firefox and Thunderbird additionally to or instead of the Snaps in 24.04 LTS.
Leave a comment:
- If you have copied text output that contains formatting (colors, highlighting, etc.), please do not enclose it in QUOTE or CODE tags. Just right-click your mouse and choose "Paste Without Formatting" or similar (Paste as plain text).
Leave a comment: