Re: [bug-mailutils] Is CVS safe?

[Jordi Mallach]

On Fri, Jan 17, 2003 at 04:24:20PM +0200, Sergey Poznyakoff wrote:
> 
> It depends on what the word 'safe' means :^) If it means 'safe for
> testing', in the sense that it will build and run, then the answer
> would be 'yes' (although I'd propose to wait a bit for imap4d to
> be updated. I have just tested the diffs Wojciech had sent me, and
> they seem pretty ready to be committed).

Well, Debian's not releasing tomorrow :) Even if I use unstable in one
production server, that's just me. It's for testing, yes. And to see how
the testsuite breaks this week ;)

Do you think this imap4d wait will be a long one (think weeks)? If so,
I'll release a package now and update when that's done. Having a weekly
or bi-weekly snapshot seems to be my current goal.

> On the other hand, if it means 'safe for use in production
> environment', then the answer would probably be 'no', since
> both GnuTLS and libgcrypt are in alpha stage, and the README
> to libgcrypt warns in bold print that 'there might even be security
> problems'.

I guess they should start making that warning less severe. GNUtls and
libgcrypt have been put into extensive use in the last 9 months or so in
many projects. It appears they are both quickly maturing. Many Debian
packages are switching to GNUtls natively or its openssl layer to be
able to distribute ssl enabled versions of the software (due to the GPL
conflict).

Jordi
-- 
Jordi Mallach Pérez  --  Debian developer     http://www.debian.org/
address@hidden     address@hidden     http://www.sindominio.net/
GnuPG public key information available at http://oskuro.net/~jordi/

pgp7NQluwMvgx.pgp
Description: PGP signature