Date: Fri, 18 Dec 2015 15:47:15 +0000 (UTC) From: rhi <r@hirner.at> To: freebsd-security@freebsd.org Subject: Re: [OpenSSL] /etc/ssl/cert.pem not honoured by default Message-ID: <loom.20151218T164148-505@post.gmane.org> References: <loom.20151218T123930-865@post.gmane.org> <5673FB3B.2010201@freebsd.org>
next in thread | previous in thread | raw e-mail | index | archive | help
Matthew Seaman <matthew <at> freebsd.org> writes: > Is that the ports or the base version of openssl? I can recreate your > results with the base openssl, but everything works as expected with the > ports version: Yes, it's the base OpenSSL. Is this a known limitation or a bug in the base OpenSSL or do I use it wrongly? Until now, I have avoided installing the OpenSSL port because the base OpenSSL gets security updates via freebsd-update and so it's one thing less to care about... also, I don't like the idea of having two different versions of the same thing on the system (because some applications might use the one versions, others the second one, and then it's quite difficult to find the bugs). Or is it recommended to let ports use the port OpenSSL, so that base OpenSSL is only used for the system itself? And thanks for your help! I wouldn't have had the idea that base OpenSSL vs. port OpenSSL could be the cause of the problem.
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?loom.20151218T164148-505>