From owner-freebsd-security@FreeBSD.ORG Fri Apr 1 20:52:39 2011 Return-Path: Delivered-To: freebsd-security@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id BB037106566C for ; Fri, 1 Apr 2011 20:52:39 +0000 (UTC) (envelope-from leccine@gmail.com) Received: from mail-bw0-f54.google.com (mail-bw0-f54.google.com [209.85.214.54]) by mx1.freebsd.org (Postfix) with ESMTP id 590248FC08 for ; Fri, 1 Apr 2011 20:52:38 +0000 (UTC) Received: by bwz12 with SMTP id 12so3434966bwz.13 for ; Fri, 01 Apr 2011 13:52:37 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:mime-version:in-reply-to:references:date :message-id:subject:from:to:cc:content-type; bh=3laTRDOvW7fNEdxD1YwW9tZZ7EUxj3CnGIOMNe50/9Q=; b=E9AWAshU9cx4X1qVRkQq2OgKztjJBklk/pBLV9TxTHrJuCvbdxPCmWNPdadDY9dAUS SFQBmrFMWBGkz2NJI/1+q8YJumG7c6A47G2d+34k7tb87sYXlt3apj8aNyXSvf9wCCkq BpgBuLqaz5E3pNn8pwsx4cNcpw+vOhDaVMB7k= DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=mime-version:in-reply-to:references:date:message-id:subject:from:to :cc:content-type; b=jri9UEhUenMsFQHnapJ1A+Skpsz9xTDNuuElXDzdJLRdv+KpHffag2HzTt6X4mE/DD OMCUVrNtMnUof/SpiXA3B9ZJcZut2GDSEPYKfSDBL3ewDCUu5J3j4ImUOJtHTJjGW9KM 9oTRuGnbIjlfiWG/oruV5Pa1XRvCN8dHDjctk= MIME-Version: 1.0 Received: by 10.204.127.68 with SMTP id f4mr4062262bks.42.1301691157318; Fri, 01 Apr 2011 13:52:37 -0700 (PDT) Received: by 10.204.62.13 with HTTP; Fri, 1 Apr 2011 13:52:37 -0700 (PDT) In-Reply-To: <4D9639B0.1070302@FreeBSD.org> References: <20110401153300.GA85392@guilt.hydra> <4D9639B0.1070302@FreeBSD.org> Date: Fri, 1 Apr 2011 21:52:37 +0100 Message-ID: From: =?UTF-8?Q?Istv=C3=A1n?= To: Doug Barton Content-Type: text/plain; charset=UTF-8 X-Content-Filtered-By: Mailman/MimeDel 2.1.5 Cc: freebsd-security , Chad Perrin Subject: Re: SSL is broken on FreeBSD X-BeenThere: freebsd-security@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: "Security issues \[members-only posting\]" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 01 Apr 2011 20:52:40 -0000 > > > Nothing could be further from the truth. I think Chad addressed that topic > well. I would simply like to add that it's pretty common for us to see > people report things along the lines of, "When I try to do XYZ thing that I > did on Linux it doesn't work on FreeBSD." What is generally the case in > these situations is that there are alternate ways to accomplish the same > goal on FreeBSD, and some polite discussion about that can usually resolve > the issue. > > well i would argue with that, on Linux it was possible to validate the certs what X company is using, on FreeBSD it was not. You can twist this as much as you want, I still can't see how this improves anything. Well I am not really interested in new projects replacing SSL since the webshop I am using running SSL :( But thanks anyway. I.