Try pinning it, see apt_preferences(5) for the method.Caitlin wrote:Iis there some way to upgrade my system EXCEPT FOR FIREFOX?
Disclaimer: untested, I would *never* run an outdated browser.
Try pinning it, see apt_preferences(5) for the method.Caitlin wrote:Iis there some way to upgrade my system EXCEPT FOR FIREFOX?
Code: Select all
/etc/apt/preferences
Code: Select all
Package: firefox*
Pin: *
Pin-Priority: -5
When I want to keep a package I doCaitlin wrote: I just want to keep what I've got for the time being.
Code: Select all
sudo apt-mark hold <package-name>
(1) But this is not Debian's fault, there is nothing EXPLICITLY stated that removes user's add-ons, Debian devs never said/wrote any code that could be translated to "Hey, let's remove all user's add ons"Removing add-ons unquestioningly also creates security problems.
The source of information was there a long time ago, as another user said earlier, that upgrade WAS in fact announced.firstly: Doing apt-get upgrade on a stable system should not leave a system in a less secure state ***WITHOUT INFORMING THE USER***.
Code: Select all
apt-listchanges
In that case Debian devs shouldn't research every user they have, it is equally stupid to maintain an EOL version for 1 or 2 users that won't affect debian if they leave out of millions our there who do searchNo one should need to research every package update in stable. To insist that is to be stupid and/or disingenuous.
CVE's are not the only concern on EOL versions, there could be some other issues like compat versions between extensions, dependencies & even web standards (Look at promises on Palemoon).1) Continue with the current version and take the responsibility for patching the vulns.
me neither.I do not blame Debian for not pursuing this path.
Again, that "vulnerable" state you're talking about is very relative in your case, if you claim to browse with all those extensions & proxies then YES, you are in a higher security level and extensions not working could decrease it, unfortunately not all users browse that way, in face if we put ourselves in their shoes then we could add a fancy dialog informing them that they have a much secure browser.Update the version and during the upgrade inform the user that their system will be left in a vulnerable state until action is taken.
Also the user's fault for not reading in this case, besides the maintainers fix issues when they can, and they mostly package & patch, if there are still doubts please return to (1).Unfortunately, option two was chosen but no notification given. This is a failure of the Debian maintainer's making. The bug that bw123 linked to only reinforces this.
These aren't the Arch or the Fedora Forums, If you don't like the way Debian works you can always switch distros.I'd really expect this in something like Arch, or Fedora, but not Debian. Well, not until now...I guess I do now.
you have no idea about the cheese manufacturing process.Caitlin wrote:or if it has enough security holes to supply a cheese factory for some time.