> If as a project we thought it was important enough we could make this happen > as part of critpath QA. If a critpath update breaks, say the desktop spin > from being built with updates and working, we could reject the update.
That seems to me to be an entirely appropriate requirement. Without this, there is no simple way of building a live CD that has the latest security fixes. Currently, Fedora makes a live CD available for download, as well as install media. It's not a disaster for the install media users if a critical security bug is found in (say) Firefox, because one is expected to install and then update. But once an update has broken anaconda, you can't build a new live CD that's safe to use. OK, you can create your own repo and import the security updates that don't break anaconda, but that's quite high maintenance, and even then, the new package that breaks anaconda might have knock-on dependencies that stop you using many of the fixed packages. James -- livecd mailing list [email protected] https://admin.fedoraproject.org/mailman/listinfo/livecd
