<div dir="ltr"><blockquote class="gmail_quote" style="margin:0px 0px 0px 0.8ex;border-left:1px solid rgb(204,204,204);padding-left:1ex">> - Monitor user numbers as ESR 52 reaches end of life (2018), continue<br>
<span class="gmail-im">> security patches for XP/Vista users on ESR 52 branch if user numbers<br>
> justify it (exact threshold TBD)<br>
<br>
</span>This sounds like the potential to be a commitment to support the<br>
ESR52 branch for an indefinite amount of time.<br>
<br>
As that commitment lengthens, it has the potential to be more of a<br>
burden than continuing support for XP/Vista would have been (for<br>
example, if we have security bugs that require major architectural<br>
changes to fix). The cost of backporting security fixes increases<br>
with the age of the branch (time), probably as a worse-than-linear<br>
function of time.<br>
<br>
Is there a way we can avoid this potential indefinite commitment?</blockquote><div><br></div><div>What was discussed with release engineering was to take things on a case by case basis. In reality this shouldn't be an indefinite time commitment. By early 2018 user numbers will likely fall below the threshold where it becomes harder to justify continued investment. If a particular backporting issue is significant in nature, that may force a line in the sand to be drawn. That's sort of a risk that we'll have to accept with this approach.<br><br></div><div>Peter<br></div></div><div class="gmail_extra"><br><div class="gmail_quote">On Wed, Oct 12, 2016 at 7:17 PM, L. David Baron <span dir="ltr"><<a href="mailto:dbaron@dbaron.org" target="_blank">dbaron@dbaron.org</a>></span> wrote:<br><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">On Wednesday 2016-10-12 15:16 -0400, Peter Dolanjski wrote:<br>
> - Monitor user numbers as ESR 52 reaches end of life (2018), continue<br>
<span class="">> security patches for XP/Vista users on ESR 52 branch if user numbers<br>
> justify it (exact threshold TBD)<br>
<br>
</span>This sounds like the potential to be a commitment to support the<br>
ESR52 branch for an indefinite amount of time.<br>
<br>
As that commitment lengthens, it has the potential to be more of a<br>
burden than continuing support for XP/Vista would have been (for<br>
example, if we have security bugs that require major architectural<br>
changes to fix). The cost of backporting security fixes increases<br>
with the age of the branch (time), probably as a worse-than-linear<br>
function of time.<br>
<br>
Is there a way we can avoid this potential indefinite commitment?<br>
<span class="HOEnZb"><font color="#888888"><br>
-David<br>
<br>
--<br>
𝄞 L. David Baron <a href="http://dbaron.org/" rel="noreferrer" target="_blank">http://dbaron.org/</a> 𝄂<br>
𝄢 Mozilla <a href="https://www.mozilla.org/" rel="noreferrer" target="_blank">https://www.mozilla.org/</a> 𝄂<br>
Before I built a wall I'd ask to know<br>
What I was walling in or walling out,<br>
And to whom I was like to give offense.<br>
- Robert Frost, Mending Wall (1914)<br>
</font></span></blockquote></div><br></div>