Date: Thu, 1 May 2014 22:24:33 +0200 From: Michael Grimm <trashcan@odo.in-berlin.de> To: "freebsd-security@freebsd.org" <freebsd-security@freebsd.org>, "freebsd-ports@freebsd.org" <freebsd-ports@freebsd.org> Subject: Re: ports requiring OpenSSL not honouring OpenSSL from ports Message-ID: <AC9A6B25-3AEE-4140-9338-4D21A26AA8B4@odo.in-berlin.de> In-Reply-To: <5362725B.6010109@geminix.org> References: <201404271508.s3RF8sMA014085@catnip.dyslexicfish.net> <CACdU%2Bf_Wo6VDcJkn6tmF8MTU49=rnJM7SB6XxofGZVdukSarHA@mail.gmail.com> <201404272250.s3RMo2NZ095771@catnip.dyslexicfish.net> <445CDD31-5A11-4F5E-92DE-CB11A10E9BDE@odo.in-berlin.de> <5361896C.7010703@bluerosetech.com> <53621BE0.4040704@geminix.org> <15864901-C372-43A8-A6E6-BF0AF73F2EC6@vpnc.org> <536267A0.9010403@geminix.org> <5362725B.6010109@geminix.org>
next in thread | previous in thread | raw e-mail | index | archive | help
On 01.05.2014, at 18:12, Uwe Doering <gemini@geminix.org> wrote: > One additional data point: "WITH_OPENSSL_PORT" is mentioned in the > FreeBSD Porter's Handbook: > > http://www.freebsd.org/doc/en_US.ISO8859-1/books/porters-handbook/makefile-options.html#idp67984816 If I would have searched for "knobs" in that document (http://svnweb.freebsd.org/ports/head/KNOBS?view=markup), recently, I would have ended with: | Unknown location: /head/KNOBS And, I didn't know what "knobs" were until a year ago after migrating from portmaster to poudriere, although running FBSD beginning with 6.2. But don't get me wrong, I do not complain at all, its been my fault, period. > But then, it cannot be expected that mere _users_ of the ports tree read > the Porter's Handbook. True. > And it is also not mentioned there that it is, to > my knowledge, considered good practice to have that setting in > "/etc/make.conf" in order to avoid any confusion about which port is > linked with what version of OpenSSL. Here's my question: Which knobs are considered good practice? Is it experience, is it gut feeling, religion, ...? I would love to see a documentation covering the pro and cons about every "knob" ... I do not complain, I know, that is hard work and hard to accomplish. But any links to documents -besides the ones already mentioned- are highly appreciated. E.g: excuse my ignorance, but should I stay with ... | www-jail> ldd `which nginx` | /usr/local/sbin/nginx: | libcrypt.so.5 => /lib/libcrypt.so.5 (0x8008aa000) ..., or would there be an alternative in ports? libgcrypt? or? (All my relevant services are run being compiled from ports, and within jails.) Thanks, sorry for eventually dumb questions, and regards, Michael
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?AC9A6B25-3AEE-4140-9338-4D21A26AA8B4>