From owner-freebsd-ports  Tue Mar 19  4: 5:31 2002
Delivered-To: freebsd-ports@freebsd.org
Received: from net2.dinoex.sub.org (net2.dinoex.de [212.184.201.182])
	by hub.freebsd.org (Postfix) with ESMTP id 960B637B404
	for <freebsd-ports@FreeBSD.ORG>; Tue, 19 Mar 2002 04:05:26 -0800 (PST)
Received: from net2.dinoex.sub.org (dinoex@net2.dinoex.sub.org [127.0.0.1])
	by net2.dinoex.sub.org (8.12.2/8.12.2) with ESMTP id g2JC56wA017269; Tue, 19 Mar 2002 13:05:07 +0100 (CET)
	(envelope-from dirk.meyer@dinoex.sub.org)
Received: from gate.dinoex.sub.org (dinoex@localhost)
	by net2.dinoex.sub.org (8.12.2/8.12.2/Submit) with BSMTP id g2JC55cp017257;
	Tue, 19 Mar 2002 13:05:05 +0100 (CET)
	(envelope-from dirk.meyer@dinoex.sub.org)
To: freebsd-ports@FreeBSD.ORG, kris@obsecurity.org (Kris Kennaway)
Message-ID: <l1WGLKdQfx@dmeyer.dinoex.sub.org>
From: dirk.meyer@dinoex.sub.org (Dirk Meyer)
Organization: privat
Subject: Re: ports/36080: Support USE_OPENSSL=yes on 4.2
Date: Tue, 19 Mar 2002 12:58:17 +0100
X-Mailer: Dinoex 1.77
References: <nHFr2KdQfx@dmeyer.dinoex.sub.org> <200203190511.g2J5BR919708@freefall.freebsd.org> <200203190511.g2J5BR919708@freefall.freebsd.org> <20020318211645.A80096@xor.obsecurity.org> <nHFr2KdQfx@dmeyer.dinoex.sub.org> <20020318231737.A83256@xor.obsecurity.org>
X-Gateway: ZCONNECT gate.dinoex.sub.org [UNIX/Connect 0.93]
X-Accept-Language: de,en
X-PGP-Fingerprint: 44 16 EC 0A D3 3A 4F 28  8A 8A 47 93 F1 CF
	2F 12
X-Noad: Please don't send me ad's by mail.  I'm bored by this
	type of mail.
X-Copyright: (C) Copyright 2001 by Dirk Meyer -- All rights reserved.
X-Note: sending SPAM is a violation of both german and US law
	and will at least trigger a complaint at your provider's
	postmaster.
X-PGP-Key-Avail: mailto:pgp-public-keys@keys.de.pgp.net Subject:GET
	0x331CDA5D
X-No-Archive: yes
X-ZC-VIA: 20020319000000W+1@dinoex.sub.org
Sender: owner-freebsd-ports@FreeBSD.ORG
Precedence: bulk
List-ID: <freebsd-ports.FreeBSD.ORG>
List-Archive: <http://docs.freebsd.org/mail/> (Web Archive)
List-Help: <mailto:majordomo@FreeBSD.ORG?subject=help> (List Instructions)
List-Subscribe: <mailto:majordomo@FreeBSD.ORG?subject=subscribe%20freebsd-ports>
List-Unsubscribe: <mailto:majordomo@FreeBSD.ORG?subject=unsubscribe%20freebsd-ports>
X-Loop: FreeBSD.org

Kris Kennaway wrote:,

> This doesn't address my question..what, specifically, is the problem
> with the older openssl?

1)
Message-ID: 200107311936.f6VJada17938@freefall.freebsd.org
FreeBSD Security Advisory FreeBSD-SA-01:51.openssl
OpenSSL 0.9.6a and earlier contain flaw in PRNG

2)
Some applications, eg. OpenSSH does no longer
compile with the build-in version:

kind regards Dirk

- Dirk Meyer, Im Grund 4, 34317 Habichtswald, Germany
- [dirk.meyer@dinoex.sub.org],[dirk.meyer@guug.de],[dinoex@FreeBSD.org]

To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-ports" in the body of the message