Skip site navigation (1)Skip section navigation (2)
Date:      Thu, 10 Dec 2009 12:51:07 +0100
From:      =?utf-8?Q?Dag-Erling_Sm=C3=B8rgrav?= <des@des.no>
To:        Bogdan =?utf-8?Q?=C4=86ulibrk?= <bc@default.rs>
Cc:        freebsd-security@freebsd.org, wollman@bimajority.org
Subject:   Re: FreeBSD Security Advisory FreeBSD-SA-09:15.ssl
Message-ID:  <86my1rm4ic.fsf@ds4.des.no>
In-Reply-To: <4B20D86B.7080800@default.rs> ("Bogdan =?utf-8?Q?=C4=86ulibrk?= =?utf-8?Q?=22's?= message of "Thu, 10 Dec 2009 12:15:55 %2B0100")
References:  <4B20D86B.7080800@default.rs>

next in thread | previous in thread | raw e-mail | index | archive | help
Bogdan =C4=86ulibrk <bc@default.rs> writes:
> This advisory kinda made big problem here in local (things stopped
> working). I had to do rollback this update because of "session
> renegotiation" breakage.

That's the whole point, the patch disables session renegotiation because
it's fundamentally broken.

> Is there some workaround to make things work along with this advisory?

You didn't mention *what* stopped working.

> Maybe switch to ports/security/openssl ?

Won't make any difference.

DES
--=20
Dag-Erling Sm=C3=B8rgrav - des@des.no



Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?86my1rm4ic.fsf>