On 2004-07-09 21:36:06 +0100 Matt Parker matt@mpcontracting.co.uk wrote:
Yes, well... As with all Linux systems, you're either up-to-date or you break the package management system. AFAIK, the only exception to this rule is Gentoo.
I can't comment on them all, but this isn't true for most of the systems I use. You can build debs, rpms or other types of package for most systems. Of course, some distributions heavily patch some packages and don't provide good build tools or information, so it can be a lot of effort.
Besides, for things like Apache, OpenSSL, Postfix, etc (things that are required to be configured securely) I always roll my own anyway and to hell with the package management system.
Compile-time defaults should be secured in the distribution anyway and it's a bug if not IMO. The package system shouldn't interfere with your configurations (but some do).