From owner-freebsd-security  Wed Jul 31  8:16:11 2002
Delivered-To: freebsd-security@freebsd.org
Received: from mx1.FreeBSD.org (mx1.FreeBSD.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id 7BAF237B400
	for <freebsd-security@FreeBSD.ORG>; Wed, 31 Jul 2002 08:16:09 -0700 (PDT)
Received: from gw.nectar.cc (gw.nectar.cc [208.42.49.153])
	by mx1.FreeBSD.org (Postfix) with ESMTP id F1D9743E65
	for <freebsd-security@FreeBSD.ORG>; Wed, 31 Jul 2002 08:16:08 -0700 (PDT)
	(envelope-from nectar@nectar.cc)
Received: from madman.nectar.cc (madman.nectar.cc [10.0.1.111])
	by gw.nectar.cc (Postfix) with ESMTP
	id 856D03C; Wed, 31 Jul 2002 10:16:08 -0500 (CDT)
Received: from madman.nectar.cc (localhost [IPv6:::1])
	by madman.nectar.cc (8.12.3/8.12.3) with ESMTP id g6VFG8U4027015;
	Wed, 31 Jul 2002 10:16:08 -0500 (CDT)
	(envelope-from nectar@madman.nectar.cc)
Received: (from nectar@localhost)
	by madman.nectar.cc (8.12.3/8.12.3/Submit) id g6VFG8nx027014;
	Wed, 31 Jul 2002 10:16:08 -0500 (CDT)
Date: Wed, 31 Jul 2002 10:16:07 -0500
From: "Jacques A. Vidrine" <nectar@FreeBSD.ORG>
To: Dirk Meyer <dirk.meyer@dinoex.sub.org>
Cc: freebsd-security@FreeBSD.ORG
Subject: Re: Are OpenSSL bugs related to OpenSSH ?
Message-ID: <20020731151607.GD26793@madman.nectar.cc>
Mail-Followup-To: "Jacques A. Vidrine" <nectar@FreeBSD.org>,
	Dirk Meyer <dirk.meyer@dinoex.sub.org>, freebsd-security@FreeBSD.ORG
References: <1028113366.1406.0.camel@linux> <200207311127.g6VBRWY98818@www.wsf.at> <Wx/oYHzdAA@dmeyer.dinoex.sub.org>
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
In-Reply-To: <Wx/oYHzdAA@dmeyer.dinoex.sub.org>
X-Url: http://www.nectar.cc/
User-Agent: Mutt/1.5.1i-ja.1
Sender: owner-freebsd-security@FreeBSD.ORG
Precedence: bulk
List-ID: <freebsd-security.FreeBSD.ORG>
List-Archive: <http://docs.freebsd.org/mail/> (Web Archive)
List-Help: <mailto:majordomo@FreeBSD.ORG?subject=help> (List Instructions)
List-Subscribe: <mailto:majordomo@FreeBSD.ORG?subject=subscribe%20freebsd-security>
List-Unsubscribe: <mailto:majordomo@FreeBSD.ORG?subject=unsubscribe%20freebsd-security>
X-Loop: FreeBSD.org

On Wed, Jul 31, 2002 at 03:26:29PM +0200, Dirk Meyer wrote:
> 
> > BTW: which version of OpenSSL bumped so.2 -> so.3 ?
> 
> http://www.FreeBSD.org/cgi/cvsweb.cgi/ports/security/openssl/Makefile?rev=1.58&content-type=text/x-cvsweb-markup
> 
> otherwise configure scripts fails,
> detecting new headers and old libs. E.g. /lib/libsssl.so.2 will
> be prefered over an existing and newer /usr/local/lib/libsssl.so.2
> 
> To keep ports working, I bumped the Version back then.

I think the configure script is broken, and having the port library
version number artificially higher is not a great idea. :-(

Cheers,
-- 
Jacques A. Vidrine <n@nectar.cc>                 http://www.nectar.cc/
NTT/Verio SME          .     FreeBSD UNIX     .       Heimdal Kerberos
jvidrine@verio.net     .  nectar@FreeBSD.org  .          nectar@kth.se

To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message