On Fri, 2009-05-01 at 15:58 +0200, Michelle Konzack wrote: > Package: ampache > Version: 3.4.1-2 > Severity: major > > Hello Maintainer, > > according to the Website <http://ampache.org/wiki/install:debian> > ampache does NOT require the installation of MySQL but on my embedded > i386 System with a 512 MByte NAND Flash it try to and enforce the > installation of MySQL. In summary 145 MByte!!! > Thank you for bringing this to my attention. Indeed mysql-server is in the Recommends field of debian/control, I will demote mysql-server to the Suggests field in Ampache-3.5 which is due to be released in the coming weeks.
You should be able to use the "--no-install-recommends" option with apt-get to prevent the installation of mysql-server. > > I do not know a singel person which install on its own a MySQL server on > a System connected directly to the Internet. Having Ampache not install mysql-server was actually suggested by the DD who sponsors this package. IMHO mysql-server upgrades should be done by a system admin and not by a maintainer script. > > My current MySQL which I was forced to install for an OnlineShop (now > closed) has 18 grave/rc bugs and I was hacked over MySQL several times. Hopefully these will be resolved soon. > > My PostgresQL (from Debian Lenny and 8.3) is running since 1999 with an > open SSL port to the internet on a Dual-STM-4 (-> 2 x 622 MBit) without > being hacked, even if I have several 1000 hack attempts per day. > > So, my feature request is to use PostgreSQL and of course, remote SQL > server. On the website it was write, it is posibel, but it seems I have > to recompile the whole bunch my own because potential security issues in > the Debian version because MySQL. > I would forward your request to the upstream developer, however it seems that you have already contacted the upstream developer about this feature request already. http://ampache.org/bugs/ticket/446 Best regards Charlie
signature.asc
Description: This is a digitally signed message part
