Date: Tue, 8 Apr 2014 14:05:00 -0400 From: Nathan Dorfman <na@rtfm.net> To: Mike Tancsa <mike@sentex.net> Cc: freebsd-security@freebsd.org Subject: Re: FreeBSD's heartbleed response Message-ID: <CADgEyUvQo52WpO%2BQUSAVQZ9T%2BmJFa=80GAnKzp4PWM9fRpkMTw@mail.gmail.com> In-Reply-To: <53443917.7040609@sentex.net> References: <20140408174210.GA5433@behemoth> <53443917.7040609@sentex.net>
next in thread | previous in thread | raw e-mail | index | archive | help
Someone please correct me if I'm wrong, but I think simply adding -DOPENSSL_NO_HEARTBEATS to crypto/openssl/Makefile (and recompiling!) is sufficient to remove the vulnerability from the base system. -nd.
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?CADgEyUvQo52WpO%2BQUSAVQZ9T%2BmJFa=80GAnKzp4PWM9fRpkMTw>