Date: Tue, 22 Apr 2008 11:14:02 -0700 (PDT) From: Roger Marquis <marquis@roble.com> To: freebsd-security@freebsd.org Subject: Re: openssldoesn't -overwrite-base again (was: FreeBSD-SA-08:05.openssh) Message-ID: <20080422181402.DDE2E2B45B3@mx5.roble.com> In-Reply-To: <20080422120021.D18CD1065674@hub.freebsd.org>
index | next in thread | previous in thread | raw e-mail
Dirk Meyer wrote: > The -overwrite-base option was only functional on FreeBSD 4.x > With FreeBSD 5.x the libs are spread in /lib and /usr/lib, so > even if the ports overwrite base libs, some tools still use the > old (unpatched) libs from /lib. Couldn't this be addressed simply by removing the old libs, possibly replacing with symlinks, in coordination with the standard/base? We shouldn't need to worry about base applications linked to the old libs anyhow, unless a base app is making unreasonable expectations. Better to fix those bugs in base, IMO, than have multiple versions of key libraries. Roger Marquishome | help
Want to link to this message? Use this
URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20080422181402.DDE2E2B45B3>