471
submitted 5 months ago by renzev@lemmy.world to c/linuxmemes@lemmy.world

Firefox on Debian stable is so old that websites yell at you to upgrade to a newer browser. And last time I tried installing Debian testing (or was it debian unstable?), the installer shat itself trying to make the bootloader. After I got it to boot, apt refused to work because of a missing symlink to busybox. Why on earth do they even need busybox if the base install already comes with full gnu coreutils? I remember Debian as the distro that Just Wroks(TM), when did it all go so wrong? Is anyone else here having similar issues, or am I doing something wrong?

top 50 comments
sorted by: hot top controversial new old
[-] LH0ezVT@sh.itjust.works 166 points 5 months ago* (last edited 5 months ago)

You are literally describing the idea of Debian. Yes, stable is old, but that is the whole purpose. You get (mostly) security updates only for a few years. No big updates, no surprises. Great for stuff like company PCs, servers, and other systems you want to just work™ with minimal admin work.

And testing is, well, for testing. Ironing out bugs and preparing the next stable. Although what you describes sounds more like unstable, the one where they explicitly say that they will break stuff to try out other stuff.

So, everything works as intended and advertised here. If you want a different approach to stability, I guess you will have to use a different distro, sorry.

I guess when you last tried it, it was at a time when a new stable came out, so testing was more or less equal to stable.

About the firefox: It ships Firefox ESR these days, meaning you get an older, less often updated tested firefox (with security updates, of course). Again, this is the whole point. Less updates, less admin work, more time to find and fix bugs. Remember the whole Quantum add-on mess, for example?

As others have said, you can install other versions of firefox (like the "normal" one) via flatpak, snap... nowadays. The same goes for other software, where you would need the newest and shiniest version sooner. I'm using debian on my work/uni laptop and a bunch of servers, and it works pretty well for me.

[-] realbadat@programming.dev 25 points 5 months ago

This is why Debian is my server of choice, and my work desktop of choice.

OP, There are some flavors of Debian out there that are more rapid release, like LMDE, Siduction, Sparky, even Kali (though I wouldn't recommend Kali as a primary desktop personally). Some based on Sid, some based on Testing.

[-] growingentropy@lemmy.dbzer0.com 8 points 5 months ago

The last paragraph is vital. Grab a flatpak of any software you need to be more up to date. Flatpaks running on Debian are amazing. Current software running on a stable base.

load more comments (1 replies)
[-] carlytm@lemm.ee 146 points 5 months ago

OP when they try Debian and it's exactly what it advertises itself as:

[-] 9488fcea02a9@sh.itjust.works 61 points 5 months ago

My bank used to complain that my browser was out of date. I wrote an email to customer service explaining to them that:

A) debian's "out of date" browser actually includes all up to date security patches. B) simply reading the browser agent isnt really security. I had simply been spoofing my browser agent to get around their silly browser "security" policy

They removed the browser check 2 weeks later. Not sure if it was because of me

[-] efstajas@lemmy.world 24 points 5 months ago

simply reading the browser agent isnt really security

It's not for their security, but for that of genuinely clueless people that are just running an actually outdated browser that might have known and exploitable security flaws.

[-] LeFantome@programming.dev 6 points 5 months ago

It is not about security at all. They do not want to test or support old browsers. So, they set a minimum version and tell you that you need to upgrade to that.

If they only support one browser, it is going to be Chrome. Chrome has more zero-day vulnerabilities than any other project I can think of. It is not about security.

[-] efstajas@lemmy.world 3 points 5 months ago* (last edited 5 months ago)

How do you know this? Of course there are lots of reasons for why they'd want to enforce minimum browser versions. But security might very well be one of them. Especially if you're a bank you probably feel bad about sending session tokens to a browser that potentially has known security vulnerabilities.

And sure, the user agent isn't a sure way to tell whether a browser is outdated, but in 95% of cases it's good enough, and people that know enough to understand the block shouldn't apply to them can bypass it easily anyway.

[-] SpaceCowboy@lemmy.ca 3 points 5 months ago

Yeah if it were about security they'd check the version of HTTPS, SSL, TLS and all that stuff.

load more comments (1 replies)
[-] deathbird@mander.xyz 20 points 5 months ago

The hero we need rn tbh

[-] Siegfried@lemmy.world 36 points 5 months ago

Ehm... im using debian stable, no website is telling me to update Firefox (I'm on deb 10, 11 and 12 in different PCs).

Deb 12, my home computer, is on unstable and running smoothly.

Debian isn't "just works" but "it's a freaking rock" + "open source hardcore philosophy".

Maybe I got lucky?

[-] snekerpimp@lemmy.world 36 points 5 months ago

Debian is working as intended. You are wanting to use Ubuntu or Mint if you want more up to date packages.

[-] unwillingsomnambulist@midwest.social 12 points 5 months ago

If the user really wants a new browser, Flatpak is always an option.

[-] snekerpimp@lemmy.world 5 points 5 months ago

They also have a .deb you can manually update as well.

[-] possiblylinux127@lemmy.zip 4 points 5 months ago

They can just use Flatpak as it will be the newest outside of Arch. Alternatively they could run Distrobox with something like Fedora.

load more comments (8 replies)
load more comments (1 replies)
[-] ipacialsection@startrek.website 30 points 5 months ago* (last edited 5 months ago)

For me, the outdated packages in stable have actually gotten better over time, as DEs get closer to a place where I don't need any major updates to enjoy using them, Flatpaks become more readily available, and on a subjective level, I get less and less invested in current Linux news. Before Debian became my "forever distro", I'd hopped to it a few times, and often found myself wishing for a newer piece of software that wasn't in backports or flathub, or simply being bored with how stable it is, but that's been happening less and less. And I feel like Debian 12 in particular left me with software that I wouldn't mind being stuck with for two years.

I've gotten warnings to upgrade my browser with Debian's Firefox ESR, but they never affected a website's usability in a way that a newer version would fix, and they do provide security updates and new ESR series when they come out; even if you must have the newest Firefox, you can use the Flatpak.

Additionally, I'm currently on testing in order to get better support for my GPU, and each time I've tried to use it, it's worked for me for a longer time than the last as I get better at resolving or avoiding broken packages. If you do experience issues like the one you described, and can replicate them, and no one else has already reported them, you should report them to Debian's bug tracker. The whole point of Testing is to find and squash all the critical bugs before the next stable releases.

load more comments (2 replies)
[-] Petter1@lemm.ee 24 points 5 months ago
load more comments (1 replies)
[-] Tundra@lemmy.ml 23 points 5 months ago

Debian Stable ± Flatpak gets best of both worlds

[-] muntedcrocodile@lemm.ee 22 points 5 months ago

I use debian headless as a server never had any issues but then again pretty much any linux system is gonna be a decent server since everything is containerised now.

[-] flop_leash_973@lemmy.world 18 points 5 months ago

These days I care a lot less that a package is outdated than I do it being unstable personally. If security concerns are getting patched and it is still doing what I want it to do, I couldn't care less about UI elements getting moved around just to make some PM happy.

[-] suzune@ani.social 17 points 5 months ago

Stable is for servers, unstable for desktop. It has worked for 20 years. I actually installed two further Debian workstations recently after trying and failing with Kubuntu. So .... no, I don't have this problem.

No idea why busybox is needed. Is this is your emergency boot environment like initramfs? Sometimes it's nice that Linux boots up and offers an environment to fix stuff while some modules are broken.

load more comments (2 replies)
[-] agelord@lemmy.world 17 points 5 months ago

It got better, that's what happened. You're using Firefox ESR, it's not unsafe.

Mozilla also provides a Deb repo for Debian and its derivatives: https://support.mozilla.org/en-US/kb/install-firefox-linux#w_install-firefox-deb-package-for-debian-based-distributions

[-] SpaceCadet@feddit.nl 9 points 5 months ago

Yeah and Flatpaks also exist.

Flatpaks are probably the best generic solution for using an LTS release like Debian Stable on a desktop system. You get the best of both worlds: up to date desktop packages and a stable base.

[-] Maragato@lemmy.world 16 points 5 months ago* (last edited 5 months ago)

You can install Firefox from Mozilla's own repository. It is a luxury to have in Debian a Mozilla repository to install Firefox.

[-] umbraroze@lemmy.world 15 points 5 months ago

Debian's Firefox is Firefox ESR, or Extended Support Release. It's behind the bleeding edge, but gets security updates.

If you want the bleeding edge Firefox, you can add Mozilla's own APT repository and install it. Doesn't even conflict with Debian (firefox-esr vs firefox, it even uses a separate user profile by default). Instructions are on the Firefox download page somewhere.

load more comments (2 replies)
[-] LeFantome@programming.dev 14 points 5 months ago

As everybody else has said, Debian is working as intended. To respond to the actual post though, Debian is working exactly as it always has.

If you think Debian used to be good, you must really love it now. It is better than ever.

Unlike in the past, the primary drawback of Debian Stable ( old package versions ) has multiple viable solutions. Other have rightly pointed out things like the Mozilla APT package and Flatpaks. Great solutions.

My favourite solution is to install Arch via Distrobox. You can then get all the stability of Debian everywhere you need it and, anytime you need additional packages or newer packages, you can install them in the Arch distrobox. Firefox is a prime candidate. You are not going to get newer packages or a greater section than via he Arch repos / AUR ( queue Nix rebuttals ).

[-] avidamoeba@lemmy.ca 14 points 5 months ago

Debian is as great as it's ever been.

[-] pastermil@sh.itjust.works 13 points 5 months ago

Never had issues due to 'outdated' packages myself, but then again, I wasn't into the latest & greatest.

I mean, you're always free to choose something else instead of bitching.

[-] Olap@lemmy.world 12 points 5 months ago* (last edited 5 months ago)

Arch is where the cool kids put in the work these days. Their philosophy of downstream packages untouched results in fewer problems and easier maintenance. Why would anyone be a package maintainer for Debian? It's a thankless task, and hard

[-] EddyBot@discuss.tchncs.de 9 points 5 months ago

the work amount of backporting fixes which ARE already fixed in newer versions is also insane

thats one of the reason why Arch Linux sticks to stable upstream versions, backporting is just not feasable on smaller teams

load more comments (1 replies)
[-] Samsy@lemmy.ml 11 points 5 months ago

I manage over 40 Debian clients in production use. All are managed with ansible. It's the easiest time in my sysadmin time ever.

My own systems are fedora and Debian unstable. Why? Because I test upcoming changes and features. And think how it would be if all 40 clients run on unstable or fedora, every day updates of 20-60 packages for nothing the user would care about.

Debian stable is my hero.

[-] possiblylinux127@lemmy.zip 11 points 5 months ago* (last edited 5 months ago)

TL;DR

You want Debian stable with either back ports or containers. On desktop flatpak is your friend. Also do not add extra repos.

Honestly there is little reason to not use flatpak for web browsers. If you want packages from Fedora or other distros you can use Distrobox with podman as the back end.

[-] RedDoozer@lemmy.zip 10 points 5 months ago* (last edited 5 months ago)

Debian stable and flatpaks, I don't see all the fuss

load more comments (1 replies)
[-] akincisor@sh.itjust.works 6 points 5 months ago

I have been using unstable on desktop for at least 15 years. Every time a new stable was released that would cause a month of just staying off updates till things stabilized. Recently it's not even had that issue.

I've had to pin a package or two in that time, but unstable has been rock solid otherwise. I even run it on my server.

[-] mlg@lemmy.world 6 points 5 months ago

Kali: I have no such weakness!

trips and falls on postgres upgrade

[-] kuneho@lemmy.world 6 points 5 months ago

Debian was always like this.

[-] rc__buggy@sh.itjust.works 6 points 5 months ago* (last edited 5 months ago)

Huh? Install testing or sid?

The Debian way is to install stable then change your sources.list to either testing or unstable.

I call shenanigans.

edit: what version was Stable using before 11Jun? 'cause it's 115.12.0esr-1 right now.

load more comments (3 replies)
[-] muhyb@programming.dev 5 points 5 months ago

Ever considered LMDE? Best of both worlds if you ask me.

load more comments (1 replies)
[-] mariusafa@lemmy.sdf.org 5 points 5 months ago

Debian testing is complelty okay. If you want to have the most up to date security use apt to grab sid security updates. https://wiki.debian.org/DebianTesting

load more comments (2 replies)
[-] iopq@lemmy.world 5 points 5 months ago

What's why we have NixOS. The unstable channel is more stable than most other distros and when it's not, you just roll back

[-] Atlas48@ttrpg.network 4 points 5 months ago

"I use NixOS, btw"

load more comments (1 replies)
[-] CrypticCoffee@lemmy.ml 4 points 5 months ago

Or there is OpenSuse Tumbleweed which is up to date, and stable...

load more comments (3 replies)
[-] TCB13@lemmy.world 4 points 5 months ago

What if you just get your browser using their own repositories or flatpak? 🌈

[-] jabjoe@feddit.uk 4 points 5 months ago

I've been on Debian Testing for my own desktops for about 15 years now. Sometimes as a Frankendebian mixing in SID/unstable. Sometimes mainly unstable, but mostly just Testing.

It rarely breaks, but when it does, it's a learning opportunity. Stable for servers and other people's desktops. Maybe with backports. Flatpacks if this no other option.

You don't get 100% solid and 100% new. Ever. With anything.

load more comments (3 replies)
load more comments
view more: next ›
this post was submitted on 23 Jun 2024
471 points (88.3% liked)

linuxmemes

21281 readers
320 users here now

Hint: :q!


Sister communities:


Community rules (click to expand)

1. Follow the site-wide rules

2. Be civil
  • Understand the difference between a joke and an insult.
  • Do not harrass or attack members of the community for any reason.
  • Leave remarks of "peasantry" to the PCMR community. If you dislike an OS/service/application, attack the thing you dislike, not the individuals who use it. Some people may not have a choice.
  • Bigotry will not be tolerated.
  • These rules are somewhat loosened when the subject is a public figure. Still, do not attack their person or incite harrassment.
  • 3. Post Linux-related content
  • Including Unix and BSD.
  • Non-Linux content is acceptable as long as it makes a reference to Linux. For example, the poorly made mockery of sudo in Windows.
  • No porn. Even if you watch it on a Linux machine.
  • 4. No recent reposts
  • Everybody uses Arch btw, can't quit Vim, and wants to interject for a moment. You can stop now.
  •  

    Please report posts and comments that break these rules!


    Important: never execute code or follow advice that you don't understand or can't verify, especially here. The word of the day is credibility. This is a meme community -- even the most helpful comments might just be shitposts that can damage your system. Be aware, be smart, don't fork-bomb your computer.

    founded 1 year ago
    MODERATORS