[Desktop_architects] Shouldn't distros and ISVs ensure that security updates get deployed promptly?

[Dan Kegel]

On Thu, Feb 5, 2009 at 5:55 AM, Christopher Blizzard
<blizzard at mozilla.com> wrote:
> We dynamically load a lot of resources at runtime and if they move or are
> renamed, things can get exciting. ...
> Historically we've always asked the user to update to the latest version
> manually - if they don't want to, they don't have to.  I'll note, just for
> reference, that this is not what Google Chrome does.  It updates security
> updates without asking or warning.  I don't know what will happen with major
> updates but it will be interesting to see how users react to this.

Yes.  They certainly won't like it if the update process isn't transparant
and painless.  And enterprise customers (like Mr. Torvalds :-)
won't like it if it isn't something they can roll out at their own pace.

(And hopefully Chrome will handle distro updates better than Firefox;
it's still early enough that maybe that can be worked in to
the browser as a design feature.  I'm hoping that it can use
the same mechanism, i.e. the native package manager, for
updating all users, regardless of where they get their copy.)
- Dan