We'll only be supporting a subset of Portage with selected server packages,
only a subset of USE flags and only x86 for now.
This doesn't really meet my needs, because it will run into the same problems as Debian. A stable or frozen tree does NOT meet the requirements for CM/QA processes, even if the selected packages are perceived to be more stable.
The problem is that the selected stable packages are only stable for the maintainer, and doesn't even begin to handle the range of environments and situations which they are deployed into. As Andrew Cowie has pointed out, everyone is effectively responsible for creating their own distribution - which is why Gentoo is useful as a metatool.
If I take a random snapshot of portage, and subject the packages to testing within my environment, then that portage tree is 'stable' for my purposes even if it's wildly wrong for everyone else. Therefore I need to be able to maintain that snapshot however I need in order to keep my environment stable in the face of change.
What I need is a way for glsa-check to be able to apply security updates without affecting my portage tree. The updates should overlay or be marked somehow, allowing me to continue to use my selected portage snapshot baseline without exposing me to security problems over time.
This is something I can handle myself, but I felt the need to point out why I think this GLEP19 is going down a dead end. It will not be useful and merely replicates current practice.
-- [EMAIL PROTECTED]
CRICOS Provider Number 00123M ------------------------------------------------ This email message is intended only for the addressee(s) and contains information that may be confidential and/or copyright. If you are not the intended recipient please notify the sender by reply email and immediately delete this email. Use, disclosure or reproduction of this email by anyone other than the intended recipient(s) is strictly prohibited. No representation is made that this email or any attachments are free of viruses. Virus scanning is recommended and is the responsibility of the recipient.
