Web lists-archives.com

Re: concerns about Salsa




On Friday, 8 June 2018 12:11:49 PM AEST Paul Wise wrote:
> In my experience the Wordpress upstream auto-upgrade system is
> typically faster than the Debian's handling of Wordpress. I also get
> the impression that the number of CVEs (let alone all security issues)
> is scaling faster than the amount of folks in Debian who are handling
> them.

I have some positive experience of looking after production Wordpress 
instance installed from Debian packages in a corporate environment. I'm quite 
happy with rate of Wordpress updates in Debian but more importantly packaged 
Wordpress have some interesting advantages:

1) Wordpress core is under package management control, not writable by web 
server. That eliminates one major security flaw so Wordpress can not update 
itself. Installing from packages helps to have better control over installed 
software.

2) Wordpress staff is usually somewhat under-qualified offshore people who 
can not touch Wordpress core as they have no rights to do so (no access).

3) Packaged wordpress helped to circumvent silly corporate security policy 
blocking outgoing HTTP requests as we were upgrading packages through package 
proxy (apt-cacher-ng).

-- 
All the best,
 Dmitry Smirnov.

---


The great enemy of the truth is very often not the lie -- deliberate,
contrived and dishonest, but the myth, persistent, persuasive, and
unrealistic. Belief in myths allows the comfort of opinion without the
discomfort of thought.
        -- John F Kennedy

Attachment: signature.asc
Description: This is a digitally signed message part.