If we want to update Iceweasel as security updates become available...
I'll reword that, When a Debian Wheezy user wants to update.....
The OP should either add a sources that provides a current Iceweasel/Icedove version or switch to the Firefox/TBird because they are updated using his current sources.list
I'm starting to wonder that myself, and the obvious vague answer must be "a little less secure each day".
The bi-annual *buntu-based editions are clearly the bread-and headline-winners in Mintland, but having at least occasional short twitter updates regarding LMDE's update schedule would be appreciated.
misGnomer wrote:I'm starting to wonder that myself, and the obvious vague answer must be "a little less secure each day".
As for now this train doesn't have a driver.
The problem is not that the train has no driver. The real problem is that the passenger are leaving at each new stop. And when they will all have left, then the project will die. That was a wonderful project but it's becoming a nightmare.
I was one of the most interested user. I have always been for LMDE no matter what. But now, I can recommend to use this distro anymore...
The Debian distribution, as distributed by Debian at [url]http://www.debian.org/distrib/[/url] is solid. I use the stable (Wheezy) version and I recieve security updates regularly for the critical programs like Iceweasel, Icedove, Flashplayer, etc. Debian is still the base for many emerging distributions. Although certainly not correlated at r=1 (or perhaps anywhere near it) distrowatch does show a healthy page-hit ranking for Debian. I like it.
It is not an easy transition for recent Windows escapees (or casual Unity escapees) . There is a fair amout of close-to-the-metal configuration/setup required. Without a fair amout of customization it is not glitzy, but it is fast and it runs 15 - 20 degrees cooler on my laptop.
Sorry trapperjohn, but I'm not sure I understand what you were actually meaning to say there.
Are you recommending that current LMDE users go vanilla with Mother Debian in order to receive those security updates?
One of LMDE's early promises (not by the developers per se, but an inherent idea of the process) was that Update Packs on top of "semi-rolling" Debian (testing) distribution would provide the benefits of Debian Testing (currently "jessie") in a safer and easier manner under Mint supervision.
That has held true and reviewers invariably praise new post-UP spins of LMDE. I have personally enjoyed a nearly trouble-free and enjoyable experience running it for the last few years now.
When the last version of Debian Testing (wheezy) went stable I scrambled to find out how LMDE users should prepare themselves. Without any official advice that I could find, I went with the forum advice to manually disable the Debian Testing repositories - including security updates - to prevent a potential package conflict mayhem while things would be sorted out. A case of PEBKAC no doubt, but my gut feeling is that without official guidance some other users may feel left similarly in the dark regarding the present and future of LMDE. Clem is busy tending the buntu-based editions and without a devoted project leader the LMDE is left to run itself between the Update Packs, waiting for Clem's free time attention.
Maybe I should have kept the Debian security updates repo enabled, but I went with the unofficial advice I found at the time. Should I enable it again while waiting for further developments and communiques?
I realize that the switchover to a new version of Debian Testing (wheezy->jessie) isn't an everyday occurance, but communication from the developers to users could probably be improved, unless LMDE is intended to remain (or appear as) a sleepy testbed project rather than a growing entity with a living ecosystem. Only Clem would have some idea about LMDE's usage numbers and changes in it. I haven't gotten "off the train" and thus presume many others are likewise crammed in the sleeping cars during the sometimes long rides until the next stop (UP). To the newcomers who stumble into the restaurant car, however, it must look like a bit of a ghost train at the moment although there's still chattering in a few upper bunk compartments.
And apologies for any off-topic verbiage. My missing security updates apart, most of it should probably have been posted [url=http://forum.linuxmint.com/viewtopic.php?f=200&t=135428]here ("LMDE Update Pack 7 - when?")[/url].
I see. My mistake. I thought the train in question was Debian.
Here is what I have for sources.list on a vanilla (x86) Wheezy install:
me@debian:/etc/apt$ cat sources.list
deb http://ftp.us.debian.org/debian stable main contrib non-free
deb http://ftp.debian.org/debian/ wheezy-updates main contrib non-free
deb http://security.debian.org/ wheezy/updates main contrib non-free
#Third Parties Repos #Debian Mozilla team
deb http://mozilla.debian.net/ wheezy-backports iceweasel-release
deb http://http.us.debian.org/debian/ wheezy-backports main
##If using the Mate desktop:
#deb http://repo.mate-desktop.org/debian wheezy main
#deb-src http://repo.mate-desktop.org/debian wheezy main
Trapperjohn, vanilla Wheezy (for now) + timely security updates is genuinely one solid option for a stable and secure system. The Solyd distro being worked on by some LMDE guys (incl. LMDE forum supremo zerozero), which I only recently heard about, seems a more cutting edge effort and is likewise actively maintained.
I've liked LMDE though and I also think Cinnamon currently gets it "most right" since the Gnome devs lost their marbles during v2 and started moronifying everything they could touch.
Yet if LMDE is draining development effort, power users (very important) and losing mass appeal, it will obviously reflect on the security situation as well since issues get neither reported nor attended to.
Does anybody know what Clem (if there's no one else looking after LMDE) is planning for this project? If hopping on Jessie isn't too far ahead, that picks up the regular security _and_ feature updates and the mysterious Update Packs will keep showing up at reasonable frequency, LMDE would be back on track. The problem is we don't really know.
