Scheduled Maintenance: We are aware of an issue with Google, AOL, and Yahoo services as email providers which are blocking new registrations. We are trying to fix the issue and we have several internal and external support tickets in process to resolve the issue. Please see: viewtopic.php?t=158230

 

 

 

Sources list on Bookworm

New to Debian (Or Linux in general)? Ask your questions here!
Post Reply
Message
Author
Udaba
Posts: 80
Joined: 2019-03-18 00:35
Has thanked: 4 times

Sources list on Bookworm

#1 Post by Udaba »

Hello there , i installed bookworm , all went smooth . After 30 minutes when i updated i got this :
Err:3 http://security.debian.org bookworm/updates Release
404 Not Found [IP: 2a04:4e42:70::644 80]
My sources list look something like this :
deb http://deb.debian.org/debian/ bookworm main contrib non-free
deb-src http://deb.debian.org/debian/ bookworm main contrib non-free

deb http://deb.debian.org/debian/ bookworm-updates main contrib non-free
deb-src http://deb.debian.org/debian/ bookworm-updates main contrib non-free

deb http://security.debian.org/ bookworm/updates main contrib non-free
deb-src http://security.debian.org/ bookworm/updates main contrib non-free


Tried to add an # at bookworm-updates with no luck .
Thanks in advance.

User avatar
FreewheelinFrank
Global Moderator
Global Moderator
Posts: 2082
Joined: 2010-06-07 16:59
Has thanked: 38 times
Been thanked: 225 times

Re: Sources list on Bookworm

#2 Post by FreewheelinFrank »

That format is the old format. For Bullseye it is:
deb http://security.debian.org/debian-security bullseye-security main contrib non-free
You can change bullseye for bookworm but the security repository for bookworm is just a dummy because Testing doesn't get security updates.

Udaba
Posts: 80
Joined: 2019-03-18 00:35
Has thanked: 4 times

Re: Sources list on Bookworm

#3 Post by Udaba »

Bookworm does not have security updates?

kedaha
Posts: 3521
Joined: 2008-05-24 12:26
Has thanked: 33 times
Been thanked: 77 times

Re: Sources list on Bookworm

#4 Post by kedaha »

hi,
An important thing to note, both for regular users and the developers of testing, is that security updates for testing are not managed by the security team. For more information please see the Security Team's FAQ.
See debian.org/devel/testing
DebianStable

Code: Select all

$ vrms

No non-free or contrib packages installed on debian!  rms would be proud.

Udaba
Posts: 80
Joined: 2019-03-18 00:35
Has thanked: 4 times

Re: Sources list on Bookworm

#5 Post by Udaba »

kedaha wrote: 2022-01-17 23:03 hi,
An important thing to note, both for regular users and the developers of testing, is that security updates for testing are not managed by the security team. For more information please see the Security Team's FAQ.
See debian.org/devel/testing
Τhanks for this .
So testing is not secure as is ustable or stable?
So i should just delete the security updates?
Thanks again.

User avatar
FreewheelinFrank
Global Moderator
Global Moderator
Posts: 2082
Joined: 2010-06-07 16:59
Has thanked: 38 times
Been thanked: 225 times

Re: Sources list on Bookworm

#6 Post by FreewheelinFrank »

Yes, Testing is the least secure.
Yes, you can delete line in sources.list relating to security: they don't do anything.

Udaba
Posts: 80
Joined: 2019-03-18 00:35
Has thanked: 4 times

Re: Sources list on Bookworm

#7 Post by Udaba »

FreewheelinFrank wrote: 2022-01-17 23:18 Yes, Testing is the least secure.
Yes, you can delete line in sources.list relating to security: they don't do anything.
Bookworm wont be stable at 2 years from now? Its considered unsecure cause it doesnt get security updates . Does it get the updates before becoming stable?

User avatar
FreewheelinFrank
Global Moderator
Global Moderator
Posts: 2082
Joined: 2010-06-07 16:59
Has thanked: 38 times
Been thanked: 225 times

Re: Sources list on Bookworm

#8 Post by FreewheelinFrank »

Testing gets security updates from upstream. The security team patches things in Stable. Things in Testing won't go into stable until they have the upstream fixes for security issues.

Udaba
Posts: 80
Joined: 2019-03-18 00:35
Has thanked: 4 times

Re: Sources list on Bookworm

#9 Post by Udaba »

FreewheelinFrank wrote: 2022-01-17 23:36 Testing gets security updates from upstream. The security team patches things in Stable. Things in Testing won't go into stable until they have the upstream fixes for security issues.
Thanks again.
Same thing happens with sid?
Sid doesnt get security updates?

Bulkley
Posts: 6383
Joined: 2006-02-11 18:35
Has thanked: 2 times
Been thanked: 39 times

Re: Sources list on Bookworm

#10 Post by Bulkley »

Udaba wrote: 2022-01-17 22:52Bookworm does not have security updates?
Testing is not for everyone. It is a development release to be tested. That's why they call it Testing. Basically, those who use Testing should know how to fix problems they encounter. They should file bug reports with suggested fixes (in detail) so that developers can make improvements. When they are satisfied that it is ready, the Testing release will become the new Stable.

kedaha
Posts: 3521
Joined: 2008-05-24 12:26
Has thanked: 33 times
Been thanked: 77 times

Re: Sources list on Bookworm

#11 Post by kedaha »

Best to go with the defaults. Testing does get security updates, but they're not handled by the Security Team but of course, they haven't been tried and tested over the lengthy period of time required to produce a stable release. See security-support-testing.
Being somewhat inclined to laziness, I've always used successive stable releases myself for maximum stability/security & prefer "Debian nirvana" to "the eternal karmic struggle of upgrade hell", as Osamu Aoki the author of The Debian Reference puts it. 8) But, each to his own ...
DebianStable

Code: Select all

$ vrms

No non-free or contrib packages installed on debian!  rms would be proud.

User avatar
FreewheelinFrank
Global Moderator
Global Moderator
Posts: 2082
Joined: 2010-06-07 16:59
Has thanked: 38 times
Been thanked: 225 times

Re: Sources list on Bookworm

#12 Post by FreewheelinFrank »

Q: How is security handled for unstable?

A: Security for unstable is primarily handled by package maintainers, not by the Debian Security Team. Although the security team may upload high-urgency security-only fixes when maintainers are noticed to be inactive, support for stable will always have priority. If you want to have a secure (and stable) server you are strongly encouraged to stay with stable.

Q: How is security handled for testing?

A: Security for testing benefits from the security efforts of the entire project for unstable. However, there is a minimum two-day migration delay, and sometimes security fixes can be held up by transitions. The Security Team helps to move along those transitions holding back important security uploads, but this is not always possible and delays may occur. Especially in the months after a new stable release, when many new versions are uploaded to unstable, security fixes for testing may lag behind. If you want to have a secure (and stable) server you are strongly encouraged to stay with stable.
https://www.debian.org/security/faq#testing

User avatar
craigevil
Posts: 5391
Joined: 2006-09-17 03:17
Location: heaven
Has thanked: 28 times
Been thanked: 39 times

Re: Sources list on Bookworm

#13 Post by craigevil »

# Testing (Bookworm) See: https://wiki.debian.org/DebianTesting
# deb https://deb.debian.org/debian testing main contrib non-free
# deb-src https://deb.debian.org/debian testing main contrib non-free

# Testing Security (Bookworm) See: https://www.debian.org/security/faq#testing
# https://www.debian.org/doc/manuals/secu ... rt-testing
# deb https://security.debian.org/ testing-security main contrib non-free
# deb-src https://security.debian.org/ testing-security main contrib non-free
Raspberry PI 400 Distro: Raspberry Pi OS Base: Debian Sid Kernel: 5.15.69-v8+ aarch64 DE: MATE Ram 4GB
Debian - "If you can't apt install something, it isn't useful or doesn't exist"
My Giant Sources.list

User avatar
Bloom
df -h | grep > 90TiB
df -h | grep > 90TiB
Posts: 504
Joined: 2017-11-11 12:23
Been thanked: 26 times

Re: Sources list on Bookworm

#14 Post by Bloom »

Tip: remove the deb-src lines if you're not a programmer. You won't need them and they only occupy space needlessly.

User avatar
fopenp
Posts: 6
Joined: 2020-02-21 12:30
Location: Italy

Re: Sources list on Bookworm

#15 Post by fopenp »

Security repository for "testing" is always empty. There's no point to add it in sources.list . To date, bookworm is "testing".
Every package will be replaced with a new version (with normal patching, no security patches) about 10 days (or more) after staying in "sid" without bug reports. Testing is more suited for desktop users.

clementishutin
Posts: 37
Joined: 2021-12-10 11:59
Been thanked: 3 times

Re: Sources list on Bookworm

#16 Post by clementishutin »

The Security Team tries to accelerate those transitions forward by deferring important security uploads, but this isn't always practicable, so there may be delays.

User avatar
canci
Global Moderator
Global Moderator
Posts: 2502
Joined: 2006-09-24 11:28
Has thanked: 136 times
Been thanked: 136 times

Re: Sources list on Bookworm

#17 Post by canci »

Can we please have a pop-up for forum newbies where it states in bold letters that Testing and Unstable are development branches and not Arch Linux?
Image Stable / Asus VivoBook X421DA / AMD Ryzen 7 3700U / Radeon Vega Mobile Gfx (Picasso) / 8 GB RAM / 512GB NVMe

READ THIS:

* How to Post a Thread Here
* Other Tips and Great Resources

User avatar
Bloom
df -h | grep > 90TiB
df -h | grep > 90TiB
Posts: 504
Joined: 2017-11-11 12:23
Been thanked: 26 times

Re: Sources list on Bookworm

#18 Post by Bloom »

Testing = beta, Unstable/Sid = alpha

User avatar
sunrat
Administrator
Administrator
Posts: 6412
Joined: 2006-08-29 09:12
Location: Melbourne, Australia
Has thanked: 116 times
Been thanked: 462 times

Re: Sources list on Bookworm

#19 Post by sunrat »

clementishutin wrote: 2022-02-08 07:22 The Security Team tries to accelerate those transitions forward by deferring important security uploads, but this isn't always practicable, so there may be delays.
Not sure what you mean be this. Doesn't make sense.
canci wrote: 2022-02-08 07:48 Can we please have a pop-up for forum newbies where it states in bold letters that Testing and Unstable are development branches and not Arch Linux?
Considering the large proportion of posts here which are from people who should not be running development branches, I doubt this would be effective. There's always someone who will chip in and tell them it's a Very Bad Idea®.
Besides, we need a bit of comic relief here sometimes. :mrgreen:
“ computer users can be divided into 2 categories:
Those who have lost data
...and those who have not lost data YET ”
Remember to BACKUP!

Post Reply