From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Received: from lists.gentoo.org (pigeon.gentoo.org [208.92.234.80]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by finch.gentoo.org (Postfix) with ESMTPS id 33172138334 for ; Sat, 4 Jan 2020 20:39:58 +0000 (UTC) Received: from pigeon.gentoo.org (localhost [127.0.0.1]) by pigeon.gentoo.org (Postfix) with SMTP id B9536E097B; Sat, 4 Jan 2020 20:39:54 +0000 (UTC) Received: from mail-pg1-f180.google.com (mail-pg1-f180.google.com [209.85.215.180]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by pigeon.gentoo.org (Postfix) with ESMTPS id 3CA1BE096C for ; Sat, 4 Jan 2020 20:39:54 +0000 (UTC) Received: by mail-pg1-f180.google.com with SMTP id r11so24996996pgf.1 for ; Sat, 04 Jan 2020 12:39:53 -0800 (PST) X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:content-transfer-encoding; bh=bJNYkL75jCmvihupZMLpqdRi28ws1fLujz6641VyBuQ=; b=RqYeuq21GkeLc6gpqK4fEuh+/FMt3pLsRPBzIssL19bqthYsV4R+elnwMobWPVhC5w 8nu7uOr/6Lb/Y1IdPtRDBJ+M2KmY1L7rU35gQZFarNwp9iBfVElis79tB755JmdErsP1 hlTMxwRe4RbY+pbwGQAu5wLuwCHlMfrBrQv4z0qTLO/fua/3VIauNrH3MjUOUeKNtGJF M9iXuhDc2yJeUlvVlsiOpwMKCgu9k6+65r3IovlsU/934hmQYijAbyc8T7M0EH1oFIRJ hFY4H8QKzeY5bJObAXxf3V8FubgZqkfx0cy5lLAtkBOtIhbW+lqOBVSaPmRteR7u516L 4yJQ== X-Gm-Message-State: APjAAAX89KsPxjBqHCZ8dE6poBFrXsFHqwrS0NCpTNbvLK1JV21OO9lo SgAqpo5C9Porj9kH2fWDIGrLbk3j9Le/YGSxPBCGJg== X-Google-Smtp-Source: APXvYqxxEi9b2Qu3p0lyh4FOg7bbiiU7BeTWmOdlUsh8il0SQmk23O+x/+72BKUsLZIdhVsfDWxytiQanjJOXXXTIJE= X-Received: by 2002:a63:d00f:: with SMTP id z15mr102624824pgf.143.1578170392652; Sat, 04 Jan 2020 12:39:52 -0800 (PST) Precedence: bulk List-Post: List-Help: List-Unsubscribe: List-Subscribe: List-Id: Gentoo Linux mail X-BeenThere: gentoo-dev@lists.gentoo.org Reply-to: gentoo-dev@lists.gentoo.org X-Auto-Response-Suppress: DR, RN, NRN, OOF, AutoReply MIME-Version: 1.0 References: <64F17F63-250E-4993-B517-ADA8C3B08440@chead.ca> In-Reply-To: <64F17F63-250E-4993-B517-ADA8C3B08440@chead.ca> From: Rich Freeman Date: Sat, 4 Jan 2020 15:39:41 -0500 Message-ID: Subject: Re: [gentoo-dev] Vanilla sources To: gentoo-dev Content-Type: text/plain; charset="UTF-8" Content-Transfer-Encoding: quoted-printable X-Archives-Salt: 12c12aa6-0989-4c0c-88c1-6155b4e2fd6f X-Archives-Hash: e8513149d092dd72a42208f8bf3dfad5 On Sat, Jan 4, 2020 at 3:13 PM Christopher Head wrote: > > > Of course this would be a bad argument if V-S were lagging behind upstrea= m significantly, and it=E2=80=99s a much better argument for packages that = come with expectations of security team support than those that don=E2=80= =99t, but it is something to consider. > This was my main concern when it was mentioned that it wasn't security-supported. If it is always up-to-date that definitely helps mitigate things. Though, there should definitely be some kind of warning on the package that it isn't security supported. Even if it is up to date it won't get GLSAs and GLSA-checker won't work. Though, that really only makes a difference insofar as the GLSAs are also timely. In any case, if the just-announced distribution kernel project takes off and remains active I could easily see that becoming the most commonly used kernel option. I'm not knocking minimal kernels but I suspect a LOT of users are going to be well-served by a modular kernel that just works 99% of the time. --=20 Rich