Firefox on Debian stable is so old that websites yell at you to upgrade to a newer browser. And last time I tried installing Debian testing (or was it debian unstable?), the installer shat itself trying to make the bootloader. After I got it to boot, apt refused to work because of a missing symlink to busybox. Why on earth do they even need busybox if the base install already comes with full gnu coreutils? I remember Debian as the distro that Just Wroks™, when did it all go so wrong? Is anyone else here having similar issues, or am I doing something wrong?

  • LH0ezVT@sh.itjust.works
    link
    fedilink
    arrow-up
    168
    ·
    edit-2
    5 months ago

    You are literally describing the idea of Debian. Yes, stable is old, but that is the whole purpose. You get (mostly) security updates only for a few years. No big updates, no surprises. Great for stuff like company PCs, servers, and other systems you want to just work™ with minimal admin work.

    And testing is, well, for testing. Ironing out bugs and preparing the next stable. Although what you describes sounds more like unstable, the one where they explicitly say that they will break stuff to try out other stuff.

    So, everything works as intended and advertised here. If you want a different approach to stability, I guess you will have to use a different distro, sorry.

    I guess when you last tried it, it was at a time when a new stable came out, so testing was more or less equal to stable.

    About the firefox: It ships Firefox ESR these days, meaning you get an older, less often updated tested firefox (with security updates, of course). Again, this is the whole point. Less updates, less admin work, more time to find and fix bugs. Remember the whole Quantum add-on mess, for example?

    As others have said, you can install other versions of firefox (like the “normal” one) via flatpak, snap… nowadays. The same goes for other software, where you would need the newest and shiniest version sooner. I’m using debian on my work/uni laptop and a bunch of servers, and it works pretty well for me.

    • realbadat@programming.dev
      link
      fedilink
      arrow-up
      25
      ·
      5 months ago

      This is why Debian is my server of choice, and my work desktop of choice.

      OP, There are some flavors of Debian out there that are more rapid release, like LMDE, Siduction, Sparky, even Kali (though I wouldn’t recommend Kali as a primary desktop personally). Some based on Sid, some based on Testing.

    • growingentropy@lemmy.dbzer0.com
      link
      fedilink
      arrow-up
      8
      ·
      5 months ago

      The last paragraph is vital. Grab a flatpak of any software you need to be more up to date. Flatpaks running on Debian are amazing. Current software running on a stable base.

    • florenzthedev@lemmy.world
      link
      fedilink
      arrow-up
      1
      ·
      edit-2
      5 months ago

      Mozilla even has a repository for installing the latest version through apt if you don’t want to use flatpack or snap, it’s pretty painless. Link

  • carly™@lemm.ee
    link
    fedilink
    English
    arrow-up
    151
    ·
    5 months ago

    OP when they try Debian and it’s exactly what it advertises itself as:

  • 9488fcea02a9@sh.itjust.works
    link
    fedilink
    arrow-up
    62
    ·
    5 months ago

    My bank used to complain that my browser was out of date. I wrote an email to customer service explaining to them that:

    A) debian’s “out of date” browser actually includes all up to date security patches. B) simply reading the browser agent isnt really security. I had simply been spoofing my browser agent to get around their silly browser “security” policy

    They removed the browser check 2 weeks later. Not sure if it was because of me

    • efstajas@lemmy.world
      link
      fedilink
      arrow-up
      25
      ·
      5 months ago

      simply reading the browser agent isnt really security

      It’s not for their security, but for that of genuinely clueless people that are just running an actually outdated browser that might have known and exploitable security flaws.

      • LeFantome@programming.dev
        link
        fedilink
        arrow-up
        7
        ·
        5 months ago

        It is not about security at all. They do not want to test or support old browsers. So, they set a minimum version and tell you that you need to upgrade to that.

        If they only support one browser, it is going to be Chrome. Chrome has more zero-day vulnerabilities than any other project I can think of. It is not about security.

        • efstajas@lemmy.world
          link
          fedilink
          arrow-up
          3
          ·
          edit-2
          5 months ago

          How do you know this? Of course there are lots of reasons for why they’d want to enforce minimum browser versions. But security might very well be one of them. Especially if you’re a bank you probably feel bad about sending session tokens to a browser that potentially has known security vulnerabilities.

          And sure, the user agent isn’t a sure way to tell whether a browser is outdated, but in 95% of cases it’s good enough, and people that know enough to understand the block shouldn’t apply to them can bypass it easily anyway.

        • SpaceCowboy@lemmy.ca
          link
          fedilink
          arrow-up
          3
          ·
          5 months ago

          Yeah if it were about security they’d check the version of HTTPS, SSL, TLS and all that stuff.

          • efstajas@lemmy.world
            link
            fedilink
            arrow-up
            2
            ·
            edit-2
            5 months ago

            Doing that would tell you nothing about whether the browser might have un-patched, known vulnerabilities elsewhere.

  • snekerpimp@lemmy.world
    link
    fedilink
    arrow-up
    37
    ·
    5 months ago

    Debian is working as intended. You are wanting to use Ubuntu or Mint if you want more up to date packages.

  • Siegfried@lemmy.world
    link
    fedilink
    arrow-up
    37
    ·
    5 months ago

    Ehm… im using debian stable, no website is telling me to update Firefox (I’m on deb 10, 11 and 12 in different PCs).

    Deb 12, my home computer, is on unstable and running smoothly.

    Debian isn’t “just works” but “it’s a freaking rock” + “open source hardcore philosophy”.

    Maybe I got lucky?

  • f00f/eris@startrek.website
    link
    fedilink
    English
    arrow-up
    30
    ·
    edit-2
    5 months ago

    For me, the outdated packages in stable have actually gotten better over time, as DEs get closer to a place where I don’t need any major updates to enjoy using them, Flatpaks become more readily available, and on a subjective level, I get less and less invested in current Linux news. Before Debian became my “forever distro”, I’d hopped to it a few times, and often found myself wishing for a newer piece of software that wasn’t in backports or flathub, or simply being bored with how stable it is, but that’s been happening less and less. And I feel like Debian 12 in particular left me with software that I wouldn’t mind being stuck with for two years.

    I’ve gotten warnings to upgrade my browser with Debian’s Firefox ESR, but they never affected a website’s usability in a way that a newer version would fix, and they do provide security updates and new ESR series when they come out; even if you must have the newest Firefox, you can use the Flatpak.

    Additionally, I’m currently on testing in order to get better support for my GPU, and each time I’ve tried to use it, it’s worked for me for a longer time than the last as I get better at resolving or avoiding broken packages. If you do experience issues like the one you described, and can replicate them, and no one else has already reported them, you should report them to Debian’s bug tracker. The whole point of Testing is to find and squash all the critical bugs before the next stable releases.

    • iopq@lemmy.world
      link
      fedilink
      arrow-up
      2
      ·
      5 months ago

      You must not be using an Nvidia GPU on Wayland because KDE is pushing updates for this use case

      • f00f/eris@startrek.website
        link
        fedilink
        English
        arrow-up
        1
        ·
        edit-2
        5 months ago

        I’m using an AMD Ryzen iGPU on Wayland. I switched to Testing because the support already existed, but the kernel and mesa versions in stable were buggy for my particular GPU and I didn’t want to make a FrankenDebian.

  • flop_leash_973@lemmy.world
    link
    fedilink
    arrow-up
    20
    ·
    5 months ago

    These days I care a lot less that a package is outdated than I do it being unstable personally. If security concerns are getting patched and it is still doing what I want it to do, I couldn’t care less about UI elements getting moved around just to make some PM happy.

  • Suzune@ani.social
    link
    fedilink
    arrow-up
    18
    ·
    5 months ago

    Stable is for servers, unstable for desktop. It has worked for 20 years. I actually installed two further Debian workstations recently after trying and failing with Kubuntu. So … no, I don’t have this problem.

    No idea why busybox is needed. Is this is your emergency boot environment like initramfs? Sometimes it’s nice that Linux boots up and offers an environment to fix stuff while some modules are broken.

    • jabjoe@feddit.uk
      link
      fedilink
      English
      arrow-up
      3
      ·
      5 months ago

      Busybox is used in the initramfs normally. It’s the shell used by any scripts in that early stage, as well as the fallback shell environment.

    • renzev@lemmy.worldOP
      link
      fedilink
      English
      arrow-up
      1
      ·
      5 months ago

      No idea why busybox is needed. Is this is your emergency boot environment like initramfs?

      I cannot for the life of me find the particular fix I followed, but I swear it was a missing symlink to busybox. Not in initramfs, but in the full booted environment. That’s why I was so confused haha. I can’t find anything about it right now, so maybe I’m misremembering something…

  • Olap@lemmy.world
    link
    fedilink
    arrow-up
    17
    ·
    edit-2
    5 months ago

    Arch is where the cool kids put in the work these days. Their philosophy of downstream packages untouched results in fewer problems and easier maintenance. Why would anyone be a package maintainer for Debian? It’s a thankless task, and hard

    • EddyBot@discuss.tchncs.de
      link
      fedilink
      arrow-up
      9
      ·
      5 months ago

      the work amount of backporting fixes which ARE already fixed in newer versions is also insane

      thats one of the reason why Arch Linux sticks to stable upstream versions, backporting is just not feasable on smaller teams

      • gbin@lemmy.ca
        link
        fedilink
        arrow-up
        1
        ·
        5 months ago

        I have been an Arch user for years now and anytime I touch a debian based distro it is such a headache: weird patched packages that don’t compile anything past or present, insta dependency hell with PPAs, package names of 200 characters because apt doesn’t have a good way to represent metadata… It made me a strong believer that trying to fight the bit rot and stick to the old stuff is counterproductive: a consistent head based development with a good community fixing bugs super quickly results in less hours of work fighting the paleolithic era dependencies, safer (as security fixes are faster to get in, packages are foreign to hackers and constantly changing etc), easier to find documentation as you don’t need to dig into history to find which option existed or not, recent stuff is also easier to support for the developers of the various packages as it is fresh in their minds. Another point is to look at it from a tech debt lens: either you fix your stuff to work with current deps now or you just accumulate tech debt for the next engineer to fix in a way larger and combining a mountain of breakages in the future that of course IT and SREs will never want to do until the 15y old software is a disaster of security issues…

    • DefederateLemmyMl@feddit.nl
      link
      fedilink
      English
      arrow-up
      9
      ·
      5 months ago

      Yeah and Flatpaks also exist.

      Flatpaks are probably the best generic solution for using an LTS release like Debian Stable on a desktop system. You get the best of both worlds: up to date desktop packages and a stable base.

  • Maragato@lemmy.world
    link
    fedilink
    Español
    arrow-up
    16
    ·
    edit-2
    5 months ago

    You can install Firefox from Mozilla’s own repository. It is a luxury to have in Debian a Mozilla repository to install Firefox.

  • pastermil@sh.itjust.works
    link
    fedilink
    arrow-up
    16
    ·
    5 months ago

    Never had issues due to ‘outdated’ packages myself, but then again, I wasn’t into the latest & greatest.

    I mean, you’re always free to choose something else instead of bitching.