From owner-freebsd-security Tue Jul 30 11:17:51 2002 Delivered-To: freebsd-security@freebsd.org Received: from mx1.FreeBSD.org (mx1.FreeBSD.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 1845C37B400 for ; Tue, 30 Jul 2002 11:17:49 -0700 (PDT) Received: from mail.lambertfam.org (www.lambertfam.org [216.223.196.6]) by mx1.FreeBSD.org (Postfix) with ESMTP id 0825643E65 for ; Tue, 30 Jul 2002 11:17:48 -0700 (PDT) (envelope-from lambert@lambertfam.org) Received: from localhost.localdomain (localhost [127.0.0.1]) by localhost.inch.com (Postfix) with ESMTP id 02AFF3515B for ; Tue, 30 Jul 2002 14:15:05 -0400 (EDT) Received: from laptop.lambertfam.org (unknown [10.1.0.2]) by mail.lambertfam.org (Postfix) with ESMTP id 79F6034DA1 for ; Tue, 30 Jul 2002 14:15:01 -0400 (EDT) Received: by laptop.lambertfam.org (Postfix, from userid 1000) id 523BE28B09; Tue, 30 Jul 2002 14:17:40 -0400 (EDT) Date: Tue, 30 Jul 2002 14:17:39 -0400 From: Scott Lambert To: freebsd-security@FreeBSD.ORG Subject: Re: Re[2]: About the openssl hole Message-ID: <20020730181739.GA50219@laptop.lambertfam.org> Mail-Followup-To: freebsd-security@FreeBSD.ORG References: <004001c237cf$23c00560$fa00a8c0@elixor> <170112657687.20020730181657@buz.ch> <000d01c237e5$ceede1d0$fa00a8c0@elixor> <5113861671.20020730183701@buz.ch> <002301c237ea$04b4d4f0$fa00a8c0@elixor> Mime-Version: 1.0 Content-Type: text/plain; charset=iso-8859-1 Content-Disposition: inline Content-Transfer-Encoding: 8bit In-Reply-To: User-Agent: Mutt/1.4i Sender: owner-freebsd-security@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org On Tue, Jul 30, 2002 at 07:52:54PM +0200, Dirk Meyer wrote: > Geir RÜness wrote: > > > But as many know, the port of openssl will > > not completly replace the core open ssl. > > (You could see this if you build mod_ssl) > > apache13-modssl will see and use an installed > port of openssl in /usr/local But if you install the openssl port with -DOPENSSL_OVERWRITE_BASE, the ports should simply see the "base" install of openssl and use it that way, no? Do openssl using programs need to be recompiled for library changes between OpenSSL 0.9.6a and OpenSSL 0.9.6d? ssh, sendmail, postfix, stunnel, various pop3 and imap daemons, apache, ....? -- Scott Lambert KC5MLE Unix SysAdmin lambert@lambertfam.org To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message