(replies inline) On Wed, 04 Oct 2017, lv via Jenkins Users wrote:
> Hi All,
>
> I'm one of the people maintaining the public Jenkins installation of the
> Apache Impala (Incubating) project, and since it is facing the public
> internet we're particularly interested in keeping our installation secure.
> We are currently running LTS 2.46.3 and I'm trying to figure out whether
> such old LTS releases are still supported, and for how long.
>
> I looked at the page describing the LTS Release Line and from there it is
> not clear to me whether only the latest release line (currently 2.73.X)
> will receive security fixes, or whether older lines receive those, too. If
> they do, what is the latest LTS line that will receive security update
> and/or that is considered when looking at the impact of newly found
> security issues?
Older LTS releases are in no way supported by the Jenkins project and do not
receive backports of any kind.
I strongly recommend to always follow the latest LTS versions. ci.jenkins.io
(which I maintain) runs 2.73.1 for example, and when we roll new releases, I
make sure to upgrade :)
- R. Tyler Croy
------------------------------------------------------
Code: <https://github.com/rtyler>
Chatter: <https://twitter.com/agentdero>
xmpp: rty...@jabber.org
% gpg --keyserver keys.gnupg.net --recv-key 1426C7DC3F51E16F
------------------------------------------------------
--
You received this message because you are subscribed to the Google Groups
"Jenkins Users" group.
To unsubscribe from this group and stop receiving emails from it, send an email
to jenkinsci-users+unsubscr...@googlegroups.com.
To view this discussion on the web visit
https://groups.google.com/d/msgid/jenkinsci-users/20171004183122.dz54bodh3dqvsdqp%40blackberry.coupleofllamas.com.
For more options, visit https://groups.google.com/d/optout.
signature.asc
Description: PGP signature
