The goal is to facilitate maintenance of production servers by providing a way to stay current with all security fixes. Forum thread http://forums.gentoo.org/viewtopic.php?t=16340 discusses possible implementations, like (from the most interesting to the least) : - A specific package.mask (security.mask ?) listing packages with known security holes, and an "emerge security" feature that would compare installed packages with this security.mask and upgarde those necessary (Pigeon, psharp idea) - A specific rsync that would get only security fixes ("emerge world" would bring the system up to date security-wise (Tristam29 idea) - A security "flag" that could be set in a package so that an "emerge world --security" would get only security-related packages (helmers, whit idea) - ...
*** This bug has been marked as a duplicate of 5835 ***