Date: Sat, 18 Mar 2017 11:47:57 +0000 From: bugzilla-noreply@freebsd.org To: freebsd-ports-bugs@FreeBSD.org Subject: [Bug 217691] net/chrony: add nss option + other cleanups Message-ID: <bug-217691-13-0jYZspiMcg@https.bugs.freebsd.org/bugzilla/> In-Reply-To: <bug-217691-13@https.bugs.freebsd.org/bugzilla/> References: <bug-217691-13@https.bugs.freebsd.org/bugzilla/>
next in thread | previous in thread | raw e-mail | index | archive | help
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=3D217691 --- Comment #2 from Yonas Yanfa <yonas@fizk.net> --- (In reply to John Hein from comment #0) Great patch. I agree about the dependency proliferation concern. The NSS package pulls in sqlite, which might seem strange and unnecessary to chrony users. On the other hand, quite a few popular packages depend on NSS, including Chromium, Firefox, Thunderbird, GDM, and LibreOffice, so they likely already have it installed if they're a desktop user. Since MD5 is such a weak hash, why is chrony still using it? Would disabling NSS essentially expose chrony users to security vulnerabilities? If so, what kind? --=20 You are receiving this mail because: You are the assignee for the bug.=
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?bug-217691-13-0jYZspiMcg>