Date: Wed, 23 Nov 2011 08:56:06 -0500 From: "James Edwards" <jedwards@bsdftw.org> To: "Matthew Seaman" <m.seaman@infracaninophile.co.uk> Cc: freebsd-questions@freebsd.org Subject: Re: BIND 9.8.1-P1 with OpenSSL 1.0.0 issues.. Message-ID: <b6e3bb22a7cc1945a6c2527854cbab3c.squirrel@webmail.bsdftw.org> In-Reply-To: <4ECCF2B5.3050704@infracaninophile.co.uk> References: <014201cca9de$ec1429c0$c43c7d40$@leadmon.net> <4ECCF2B5.3050704@infracaninophile.co.uk>
next in thread | previous in thread | raw e-mail | index | archive | help
On Wed, November 23, 2011 08:18, Matthew Seaman wrote: > I've been using the attached patch with the dns/bind98 port and > openssl-1.0.x from ports for months. This disables using the GOST > cipher plugins -- which is no big deal as far as I'm concerned. GOST > ciphers are only supplied as plugin modules unlike all other ciphers in > openssl, which is a new thing with version 1.0.0 in ports. It's that > libgost.so plugin shlib not playing well with chroot that apparently > causes named to crash. > > Cheers, > > Matthew > > -- > Dr Matthew J Seaman MA, D.Phil. 7 Priory Courtyard > Flat 3 > PGP: http://www.infracaninophile.co.uk/pgpkey Ramsgate > JID: matthew@infracaninophile.co.uk Kent, CT11 9PW > You, sir, are correct about the chroot. Bind 9.8.1 and OpenSSL 1.0.0 don't play nicely in a chroot environment. This also isn't limited to FreeBSD, as I experienced the problem on Solaris 10. James
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?b6e3bb22a7cc1945a6c2527854cbab3c.squirrel>