Hey Mate, Late to the party. Yes they are still lollygagging on wheezy. You can install packages by adding the base wheezy repository to your config but be sure to leave the security repo URL out (because it no longer exists). As for security updates, you have no choice but to wait for them to crank out new stable builds... For example, I'm not entirely sure if their kernel suffers from that TCP ACK counter sideline attack. I recommend manually adjusting the counter to its max in sysctl config just to be safe. If there are other vulnerabilities that affect the binaries in their firmware, it's pretty hard to be sure.
↧