On Fri, Dec 28, 2018 at 03:09:39AM +0100, Christopher Gregory via blfs-support
wrote:
>
> I know for me, that when I do a clean install and get the absolute latest of
> everything (for me even lfs is not excluded from me updating to the latest.)
> that everything that I want installed works well with everything else.
>
I do not understand why anyone would exclude latest lfs from a new
install, except when packages are known to cause problems
(currently, I use an older psmisc because the latest breaks
killall).
Your comment gives me (some) encouragement that our (the editors)
time is not totally wasted when trying out new versions.
Unfortunately, along the way there is usually a lot of consequential
damage (e.g. each new version of poppler, but now that I've got
latest qtwebengine building with system icu I seem to have breakage
on "minor" sites such as google - currently dropping system icu to
try to prove that is the problem, then will (hopefully) rebuild with
system icu and rebuild falkon).
Meanwhile, some people seem to think that all new versions can just
be dropped in without expecting problems. Make your own choice.
> If we had our own package manager and had enough people to actually have a
> security team, then I would just do the updates.
>
Well, package managers (as in "build all the possible dependencies,
even if they are useless to you") were one of the things which led
me to try building from source.
But yes, having an emphasis on security would be nice - with the
provisos that: (i) we don't know about a lot of vulnerabilities until
long after a new version has fixed them, (ii) sometimes (poppler,
again) a fix breaks packages that use it - gentoo and Arch may defer
updates in those circumstances, (iii) at least one editor thinks
using BLFS for 'production' systems is a bad idea - I happen to
regard having a working desktop without known vulnerabilities that
are relevant to *me* as 'production', so I doubt we will all ever
agree.
ĸen
--
The Laird o’Phelps spent Hogmanay declaring he was sober,
Counted his feet to prove the fact and found he had one foot over.
-- Louis MacNeice, Bagpipe Music
--
http://lists.linuxfromscratch.org/listinfo/blfs-support
FAQ: http://www.linuxfromscratch.org/blfs/faq.html
Unsubscribe: See the above information page
