Ubuntu just ruined ubuntu - what distro will mail in a box go to in April of 2024?

Ubuntu just crippled 18.04 and 20.04 before the promised 5 year support window by requiring ubuntu pro to continue to obtain security updates.

Please pick a new distro well before 22.04 jumps the shark in April 2024.

1 Like

I wonder where you got that from? Because the official website says differently…

https://ubuntu.com/about/release-cycle

https://wiki.ubuntu.com/Releases

Also not true: Ubuntu Pro | Ubuntu

If you are using Ubuntu LTS without subscription, nothing changes. Every LTS release will still get 5 years of security updates for 2300+ packages in the Main repos, as it has always been.

With Ubuntu Pro / ESM you get 10 years of security updates for the 2300 packages in Main, plus an additional 23000+ packages in Universe, which were simply never patched before or only on some rather rare occasions, mostly by the community and / or upstream. However, most of the packages in Universe stayed untouched during the lifetime of an LTS release.

If you want to put in the work to recreate this entire project, please by all means go ahead.

2 Likes

pretty sure that project already exists →

Compatible with Debian.

1 Like

I appreciate you and mailinabox very much.

Thanks for setting the record straight

I am shocked that ntp is in Universe

I asume you mean NSD… And yes, that came too my mind too.

On the other hand, there haven’t been many security issues with NSD over the years. And even the ones listed in their Security Advisory (which btw are all fixed in the version that is shipping with Ubuntu 22.04) are mostly rated low and medium. NSD simply does not offer that big of an attack surface, in order to become a high security risk. Or at least it doesn’t if you are using it with Mail-in-a-Box in it’s default configuration.

But, I’m no security expert, so take this with a grain of salt. :wink:

ntp is network time protocol - ubuntu 18.04 is offering to upgrade it, likbzip4 and fail2ban if I join Ubuntu Pro…

The following security updates require Ubuntu Pro with ‘esm-apps’ enabled:
libzip4 sntp fail2ban ntp
Learn more about Ubuntu Pro at Ubuntu Pro | Ubuntu

Ah ok. I’m already on Ubuntu 22.04 and for me it looks like this:

The following security updates require Ubuntu Pro with 'esm-apps' enabled:
  libldns3 libmagickwand-6.q16-6 libmagickcore-6.q16-6 imagemagick-6-common
  ldnsutils

NTP is on the latest version in 22.04

ntp/jammy,now 1:4.2.8p15+dfsg-1ubuntu2 amd64

http://changelogs.ubuntu.com/changelogs/pool/universe/n/ntp/ntp_4.2.8p15+dfsg-1ubuntu2/changelog

Debian Upstream:
https://metadata.ftp-master.debian.org/changelogs//main/n/ntp/ntp_4.2.8p15+dfsg-1_changelog

Now the million dollar question is: Would we have been able to update these packages at all, before ESM was introduced? I Id say no, because as I already said, only packages from main and restricted have received long-term support before. Now that they have introduced Ubuntu Pro / ESM, there is an additional option that allows you to receive updates for Universe packages as well… So nothing really changes on standard LTS, except for the fact that we now can see what we are missing out on… :wink:

Is there any way to get these updates without registering for U-Pro?
If not,
and the only way is registration, what data do they want and how accurate the data I supply needs to be? :wink:

As miabuser pointed out Canonical is now providing security patches for packages in universe - which have not been routinely patched in the past. The wording of such in command line tools was sub-optimal in my opinion.

In hopes of putting this thread to rest - I just used the ubuntu pro to update the universe apps with patches for my 18.04 box.

I already had an ubuntu one account, so I just went to

https://ubuntu.com/pro/dashboard

to get my token (for 5 free machines under pro)

ran: $ sudo pro attach

and then $ sudo apt update;sudo apt upgrade

(the above assumes your box is already up to date on everything else)

This topic was automatically closed after 61 days. New replies are no longer allowed.