From owner-freebsd-ports@freebsd.org  Tue Aug 23 19:19:13 2016
Return-Path: <owner-freebsd-ports@freebsd.org>
Delivered-To: freebsd-ports@mailman.ysv.freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org
 [IPv6:2001:1900:2254:206a::19:1])
 by mailman.ysv.freebsd.org (Postfix) with ESMTP id 6A46DBC4EED
 for <freebsd-ports@mailman.ysv.freebsd.org>;
 Tue, 23 Aug 2016 19:19:13 +0000 (UTC)
 (envelope-from marquis@roble.com)
Received: from mailman.ysv.freebsd.org (mailman.ysv.freebsd.org
 [IPv6:2001:1900:2254:206a::50:5])
 by mx1.freebsd.org (Postfix) with ESMTP id 5B7AA1A0F
 for <freebsd-ports@freebsd.org>; Tue, 23 Aug 2016 19:19:13 +0000 (UTC)
 (envelope-from marquis@roble.com)
Received: by mailman.ysv.freebsd.org (Postfix)
 id 5AD65BC4EEC; Tue, 23 Aug 2016 19:19:13 +0000 (UTC)
Delivered-To: ports@mailman.ysv.freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org
 [IPv6:2001:1900:2254:206a::19:1])
 by mailman.ysv.freebsd.org (Postfix) with ESMTP id 5A81CBC4EEB
 for <ports@mailman.ysv.freebsd.org>; Tue, 23 Aug 2016 19:19:13 +0000 (UTC)
 (envelope-from marquis@roble.com)
Received: from mx5.roble.com (mx5.roble.com [206.40.34.5])
 (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits))
 (Client CN "mx5.roble.com", Issuer "mx5.roble.com" (not verified))
 by mx1.freebsd.org (Postfix) with ESMTPS id 404011A0E
 for <ports@freebsd.org>; Tue, 23 Aug 2016 19:19:12 +0000 (UTC)
 (envelope-from marquis@roble.com)
Date: Tue, 23 Aug 2016 12:19:11 -0700 (PDT)
From: Roger Marquis <marquis@roble.com>
To: Matt Smith <fbsd@xtaz.co.uk>
cc: ports@freebsd.org
Subject: Re: Upcoming OpenSSL 1.1.0 release
In-Reply-To: <20160823124201.GB48814@xtaz.uk>
References: <6d35459045985929d061f3c6cca85efe@imap.brnrd.eu>
 <0E328A9485C47045F93C19AB@atuin.in.mat.cc> <20160823124201.GB48814@xtaz.uk>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII; format=flowed
X-BeenThere: freebsd-ports@freebsd.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: Porting software to FreeBSD <freebsd-ports.freebsd.org>
List-Unsubscribe: <https://lists.freebsd.org/mailman/options/freebsd-ports>,
 <mailto:freebsd-ports-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-ports/>
List-Post: <mailto:freebsd-ports@freebsd.org>
List-Help: <mailto:freebsd-ports-request@freebsd.org?subject=help>
List-Subscribe: <https://lists.freebsd.org/mailman/listinfo/freebsd-ports>,
 <mailto:freebsd-ports-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Tue, 23 Aug 2016 19:19:13 -0000

Matt Smith wrote:
> Going slightly off-topic, I'm curious what the opinion is around this
> and LibreSSL.

My organization evaluated this a few months ago and after a few diffs
and code reviews decided that libressl was the future.  We updated
poudriere and all make.confs, removed openssl, installed libressl and
have had no issues.  We did the same with openntp a few months earlier
and recommend both for any installation that needs good security.

Roger