Linked by Andrew Youll on Tue 19th Jul 2005 15:57 UTC
Original OSNews Interviews PC-BSD 0.7.8 has been released and I also recently conducted an interview with PC-BSD Project leader Kris Moore.
Thread beginning with comment 6350
To view parent comment, click here.
To read all comments associated with this story, please click here.
RE[2]: Looks awesome
by JLF65 on Tue 19th Jul 2005 19:46 UTC in reply to "RE: Looks awesome"
JLF65
Member since:
2005-07-06

If there's a bug in a library, not only one package needs to be fixed, but dozens.

Dozens is probably an overstatement, but it is a valid observation. However, look at it this way - I'd rather replace ten copies of a library (if you need to, most of the programs will work fine with the original lib) than to replace one copy of a lib and have it break ten programs.

Sometimes, updating a lib means all programs using the lib must be updated as well. By having a seperate copy for each program, you don't need to update programs which only changed because a lib changed.

Reply Parent Score: 2

RE[3]: Looks awesome
by jayc on Tue 19th Jul 2005 20:33 in reply to "RE[2]: Looks awesome"
jayc Member since:
2005-07-06

Dozens is probably an overstatement, but it is a valid observation. However, look at it this way - I'd rather replace ten copies of a library (if you need to, most of the programs will work fine with the original lib) than to replace one copy of a lib and have it break ten programs.

Dozens is actually an understatement. And this isn't about bug fixes. It's about security.

"apt-cache rdepends zlib1g" returns 1,848 packages that use zlib. Imagine if a user just had 10% of these packages installed. That's 184 pieces of software or libraries that would have to be ugpraded. And 184 of those must be upgraded to plug the security hole.

Shared libraries solve this problem by centrally updating a single library. The linked programs never even have to know about it.

Reply Parent Score: 1

RE[4]: Looks awesome
by JLF65 on Tue 19th Jul 2005 20:54 in reply to "RE[3]: Looks awesome"
JLF65 Member since:
2005-07-06

Dozens is actually an understatement. And this isn't about bug fixes. It's about security.

"apt-cache rdepends zlib1g" returns 1,848 packages that use zlib. Imagine if a user just had 10% of these packages installed. That's 184 pieces of software or libraries that would have to be ugpraded. And 184 of those must be upgraded to plug the security hole.


First, security doesn't affect most programs. Who cares if zlib has a hole if you're only using it with a SNES emulator? That's one less copy of zlib.

Second, you're still over-estimating it. I doubt the average person would have even 1% of those programs installed, so that's less than 18 packages, of which, most won't be a security issue as they don't connect to the net.

Third, if I DID have that many copies to replace, I'd write a bash script which found and replaced all the copies. It would take about three lines and two minutes. I would be surprised if you checked the PC-BSD forum and there wasn't already such a script available.

You're making a mountain out of a molehill to justify your position. It just doesn't hold any water.

Reply Parent Score: 1