[CentOS-devel] yum-plugin-security and shellshock

Karanbir Singh mail-lists at karan.org
Thu Oct 2 14:51:32 UTC 2014

On 10/02/2014 03:37 PM, Kevin Stange wrote:
> I'm not trying to penalize users who don't run updates nightly. I'm
> considering people who don't update at all for entire distro release
> cycles already doing things so badly, it barely matters if they're
> misinformed.

but in your regime - only if you are updating nightly are you going to
have any level of confidence that you are not missing Security updates,
specially around point release times, you are going to have times when
complete tree's and the metadata around it goes away.

Karanbir Singh
+44-207-0999389 | http://www.karan.org/ | twitter.com/kbsingh
GnuPG Key : http://www.karan.org/publickey.asc

More information about the CentOS-devel mailing list