Firefox on Debian stable is so old that websites yell at you to upgrade to a newer browser. And last time I tried installing Debian testing (or was it debian unstable?), the installer shat itself trying to make the bootloader. After I got it to boot, apt refused to work because of a missing symlink to busybox. Why on earth do they even need busybox if the base install already comes with full gnu coreutils? I remember Debian as the distro that Just Wroks™, when did it all go so wrong? Is anyone else here having similar issues, or am I doing something wrong?

  • 9488fcea02a9@sh.itjust.works
    591·
    7 days ago

    My bank used to complain that my browser was out of date. I wrote an email to customer service explaining to them that:

    A) debian’s “out of date” browser actually includes all up to date security patches. B) simply reading the browser agent isnt really security. I had simply been spoofing my browser agent to get around their silly browser “security” policy

    They removed the browser check 2 weeks later. Not sure if it was because of me

    • efstajas@lemmy.world
      221·
      7 days ago

      simply reading the browser agent isnt really security

      It’s not for their security, but for that of genuinely clueless people that are just running an actually outdated browser that might have known and exploitable security flaws.

      • LeFantome@programming.dev
        71·
        6 days ago

        It is not about security at all. They do not want to test or support old browsers. So, they set a minimum version and tell you that you need to upgrade to that.

        If they only support one browser, it is going to be Chrome. Chrome has more zero-day vulnerabilities than any other project I can think of. It is not about security.

        • efstajas@lemmy.world
          3·
          5 days ago

          How do you know this? Of course there are lots of reasons for why they’d want to enforce minimum browser versions. But security might very well be one of them. Especially if you’re a bank you probably feel bad about sending session tokens to a browser that potentially has known security vulnerabilities.

          And sure, the user agent isn’t a sure way to tell whether a browser is outdated, but in 95% of cases it’s good enough, and people that know enough to understand the block shouldn’t apply to them can bypass it easily anyway.

        • SpaceCowboy@lemmy.ca
          3·
          6 days ago

          Yeah if it were about security they’d check the version of HTTPS, SSL, TLS and all that stuff.

          • efstajas@lemmy.world
            2·
            6 days ago

            Doing that would tell you nothing about whether the browser might have un-patched, known vulnerabilities elsewhere.

  • LeFantome@programming.dev
    131·
    6 days ago

    As everybody else has said, Debian is working as intended. To respond to the actual post though, Debian is working exactly as it always has.

    If you think Debian used to be good, you must really love it now. It is better than ever.

    Unlike in the past, the primary drawback of Debian Stable ( old package versions ) has multiple viable solutions. Other have rightly pointed out things like the Mozilla APT package and Flatpaks. Great solutions.

    My favourite solution is to install Arch via Distrobox. You can then get all the stability of Debian everywhere you need it and, anytime you need additional packages or newer packages, you can install them in the Arch distrobox. Firefox is a prime candidate. You are not going to get newer packages or a greater section than via he Arch repos / AUR ( queue Nix rebuttals ).

    • DefederateLemmyMl@feddit.nlEnglish
      9·
      6 days ago

      Yeah and Flatpaks also exist.

      Flatpaks are probably the best generic solution for using an LTS release like Debian Stable on a desktop system. You get the best of both worlds: up to date desktop packages and a stable base.

  • umbraroze@lemmy.world
    15·
    7 days ago

    Debian’s Firefox is Firefox ESR, or Extended Support Release. It’s behind the bleeding edge, but gets security updates.

    If you want the bleeding edge Firefox, you can add Mozilla’s own APT repository and install it. Doesn’t even conflict with Debian (firefox-esr vs firefox, it even uses a separate user profile by default). Instructions are on the Firefox download page somewhere.

  • Samsy@lemmy.ml
    10·
    6 days ago

    I manage over 40 Debian clients in production use. All are managed with ansible. It’s the easiest time in my sysadmin time ever.

    My own systems are fedora and Debian unstable. Why? Because I test upcoming changes and features. And think how it would be if all 40 clients run on unstable or fedora, every day updates of 20-60 packages for nothing the user would care about.

    Debian stable is my hero.

  • iopq@lemmy.world
    72·
    6 days ago

    What’s why we have NixOS. The unstable channel is more stable than most other distros and when it’s not, you just roll back

  • MehBlah@lemmy.world
    21·
    6 days ago

    I can’t remember the last time I installed Debian and it failed. I last installed it a month ago. Gnome takes some tweaking for me. Mostly to get that stock Ubuntu feel. Nothing extension manager can’t do.

  • LH0ezVT@sh.itjust.works
    1652·
    7 days ago

    You are literally describing the idea of Debian. Yes, stable is old, but that is the whole purpose. You get (mostly) security updates only for a few years. No big updates, no surprises. Great for stuff like company PCs, servers, and other systems you want to just work™ with minimal admin work.

    And testing is, well, for testing. Ironing out bugs and preparing the next stable. Although what you describes sounds more like unstable, the one where they explicitly say that they will break stuff to try out other stuff.

    So, everything works as intended and advertised here. If you want a different approach to stability, I guess you will have to use a different distro, sorry.

    I guess when you last tried it, it was at a time when a new stable came out, so testing was more or less equal to stable.

    About the firefox: It ships Firefox ESR these days, meaning you get an older, less often updated tested firefox (with security updates, of course). Again, this is the whole point. Less updates, less admin work, more time to find and fix bugs. Remember the whole Quantum add-on mess, for example?

    As others have said, you can install other versions of firefox (like the “normal” one) via flatpak, snap… nowadays. The same goes for other software, where you would need the newest and shiniest version sooner. I’m using debian on my work/uni laptop and a bunch of servers, and it works pretty well for me.

    • growingentropy@lemmy.dbzer0.com
      8·
      7 days ago

      The last paragraph is vital. Grab a flatpak of any software you need to be more up to date. Flatpaks running on Debian are amazing. Current software running on a stable base.

    • florenzthedev@lemmy.world
      1·
      6 days ago

      Mozilla even has a repository for installing the latest version through apt if you don’t want to use flatpack or snap, it’s pretty painless. Link

    • realbadat@programming.dev
      24·
      7 days ago

      This is why Debian is my server of choice, and my work desktop of choice.

      OP, There are some flavors of Debian out there that are more rapid release, like LMDE, Siduction, Sparky, even Kali (though I wouldn’t recommend Kali as a primary desktop personally). Some based on Sid, some based on Testing.

  • carly™@lemm.eeEnglish
    1435·
    7 days ago

    OP when they try Debian and it’s exactly what it advertises itself as:

  • snekerpimp@lemmy.world
    361·
    7 days ago

    Debian is working as intended. You are wanting to use Ubuntu or Mint if you want more up to date packages.