0

I have a debian "squeeze" installation, but the mod_security delivered with this release is quite old. So I'm thinking of adding an additional line to my sources.list to get the "wheezy" version (wheezy = the version after the current version "squeeze") of mod_security.

What should I add to sources.list to receive only the next available version of mod_security?

This is one of my entires in sources.list:

deb http://ftp.de.debian.org/debian/ squeeze main contrib non-free

The current name of mod_sec is libapache-mod-security

powtac
  • 639
  • 2
  • 6
  • 19

1 Answers1

1

Careful - adding a full new repository can light up new versions for more than just that one individual package, putting you in this situation.

Feel free to add the repo:

deb http://ftp.de.debian.org/debian/ wheezy main contrib non-free

BUT, don't let it get used for more than just the package you need from it, unless you want to update the whole system.

Modify your /etc/apt/preferences file, adding configuration to lower the priority of the testing release:

Package: *
Pin: release a=testing
Pin-Priority: 450

And up the priority for the package that you're interested in (by the way, the package name changed):

Package: libapache2-modsecurity
Pin: release a=testing
Pin-Priority: 550

Verify with apt-cache policy that the testing repo is lower than the stable repos, and verify with apt-cache policy libapache2-modsecurity that the individual package prefers testing.

Community
  • 1
Shane Madden
  • 114,520
  • 13
  • 181
  • 251