From owner-freebsd-security  Tue Jul 30 13: 4:53 2002
Delivered-To: freebsd-security@freebsd.org
Received: from mx1.FreeBSD.org (mx1.FreeBSD.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id D421A37B400
	for <security@freebsd.org>; Tue, 30 Jul 2002 13:04:50 -0700 (PDT)
Received: from web11607.mail.yahoo.com (web11607.mail.yahoo.com [216.136.172.59])
	by mx1.FreeBSD.org (Postfix) with SMTP id 64C1F43E4A
	for <security@freebsd.org>; Tue, 30 Jul 2002 13:04:50 -0700 (PDT)
	(envelope-from holtor@yahoo.com)
Message-ID: <20020730195807.28306.qmail@web11607.mail.yahoo.com>
Received: from [24.191.164.44] by web11607.mail.yahoo.com via HTTP; Tue, 30 Jul 2002 12:58:07 PDT
Date: Tue, 30 Jul 2002 12:58:07 -0700 (PDT)
From: Holt Grendal <holtor@yahoo.com>
Subject: Fixing OpenSSL Properly
To: security@freebsd.org
MIME-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Sender: owner-freebsd-security@FreeBSD.ORG
Precedence: bulk
List-ID: <freebsd-security.FreeBSD.ORG>
List-Archive: <http://docs.freebsd.org/mail/> (Web Archive)
List-Help: <mailto:majordomo@FreeBSD.ORG?subject=help> (List Instructions)
List-Subscribe: <mailto:majordomo@FreeBSD.ORG?subject=subscribe%20freebsd-security>
List-Unsubscribe: <mailto:majordomo@FreeBSD.ORG?subject=unsubscribe%20freebsd-security>
X-Loop: FreeBSD.org

While we wait for the base openssl version to be upgraded
to 0.9.6e (precisely why I hate having all this stuff in the
base system!) whats the proper way to patch our systems?

I figure:

cd /usr/ports/security/openssl
make OPENSSL_OVERWRITE_BASE=YES install

Then Rebuild libssh, mod_ssl, and anything else along
with restarting sshd, apache and anything else?

Will this all work fine and dandy?

Holt

__________________________________________________
Do You Yahoo!?
Yahoo! Health - Feel better, live better
http://health.yahoo.com

To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message