Alec Muffett: > In my previous e-mail I suggested removing Tor from Debian precisely > because of this future-staleness problem. > > I still believe that this is a decent idea, because stale code sucks. > > Another possible solution would be creation of a "Tor Server Bundle" - > designed and maintained to run successfully on most major platforms, it > would be a bunch of scripts that find existing, stale versions of Tor, kill > and remove them, and migrate the platform to a more recent version, with > *optional* enabling of auto-updating because you will want to have a stable > environment. :-P > > And it would (ideally) also ship with some portable, stupid but bombproof, > interactive and scriptable CLI wizards for setting up Onion services. I won't claim to know whether this is a good idea, but one other option is to only have Tor in Debian Sid. My understanding is that this is already done for some Bitcoin-related software, because the Bitcoin packagers refused to guarantee that their packages would work through testing/stable's lifespans (due to the chance that consensus forks will break old clients, which has happened before and could easily happen again). It seems plausible that a similar path could work for Tor. Cheers, -Jeremy
Attachment:
signature.asc
Description: OpenPGP digital signature
-- tor-talk mailing list - tor-talk@xxxxxxxxxxxxxxxxxxxx To unsubscribe or change other settings go to https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk