PSA: You should know that Debian Trixie/Testing does not receive security updates in a timely manner, and is not intended for production use (programming.dev)

submitted 9 hours ago by moonpiedumplings@programming.dev to c/linux@programming.dev

17 comments fedilink hide all child comments

https://security-tracker.debian.org/tracker/CVE-2024-47176, archive

As of 10/1/24 3:52 UTC time, Trixie/Debian testing does not have a fix for the severe cupsd security vulnerability that was recently announced, despite Debian Stable and Unstable having a fix.

Debian Testing is intended for testing, and not really for production usage.

https://tracker.debian.org/pkg/cups-filters, archive

So the way Debian Unstable/Testing works is that packages go into unstable/ for a bit, and then are migrated into testing/trixie.

Issues preventing migration: ∙ ∙ Too young, only 3 of 5 days old

Basically, security vulnerabilities are not really a priority in testing, and everything waits for a bit before it updates.

I recently saw some people recommending Trixie for a "debian but not as unstable as sid and newer packages than stable", which is a pretty bad idea. Trixie/testing is not really intended for production use.

If you want newer, but still stable packages from the same repositories, then I recommend (not an exhaustive list, of course).:

Opensuse Leap (Tumbleweed works too but secure boot was borked when I used it)
Fedora

If you are willing to mix and match sources for packages:

Flatpaks
distrobox — run other distros in docker/podman containers and use apps through those
Nix

Can get you newer packages on a more stable distros safely.

you are viewing a single comment's thread
view the rest of the comments

[+] toasteecup@lemmy.world -11 points 8 hours ago

I would sooner use Windows before using Fedora. Fortunately, Linux Mint or Ubuntu exist instead.

[-] Contort3860@links.hackliberty.org 7 points 8 hours ago

I'm not a fan of Fedora either, but it's still linux. Always better than Windows, unless you have some very serious reason for disliking it that much.

[-] toasteecup@lemmy.world 5 points 8 hours ago

Not sure if anyone else will think it's good enough but I do.

Redhat as a company acts like a parasite on open source, producing a product that is garbage which they then charge money for their support plans. Have an issue with their offering? Fuck you. In addition to that, I absolutely beyond a doubt HATE how they do their filesystem and just willy nilly do whatever the fuck they think is best instead of following community established patterns and designs. Top it off with, who was the first to adopt systems? Redhat.

Stepping away slightly from that, have you dug into ansible's internal before? Actual fucking idiot decisions. Have an issue with tower or AAP (stupid fucking name) good luck getting it fixed. According to their documentation you can have vaulted vars in a cars file with plaintext cars. According to reality, that's causes intermittent failures and has for the past 8 years. There have been SEVERAL GitHub issues submitted but it's still not fixed.

Fuck redhat and fuck their bullshit like fedora. If I wanted to use a garbage distro, I'd at least want to use one that isn't pretending to be decent.

[-] Contort3860@links.hackliberty.org 3 points 7 hours ago

Mostly my reasons for avoiding Fedora as well. But if someone else ends up on Linux due to Fedora then it's still better than Windows.

I might not like it but it might, sadly, be perfect for someone else.

load more comments (2 replies)

load more comments (4 replies)

this post was submitted on 01 Oct 2024

56 points (95.2% liked)

Linux

5007 readers

187 users here now

A community for everything relating to the linux operating system

Also check out !linux_memes@programming.dev

Original icon base courtesy of lewing@isc.tamu.edu and The GIMP

founded 1 year ago

MODERATORS

Ategon@programming.dev

anzo@programming.dev

dwraf_of_ignorance@programming.dev