Dirk Meyer a écrit: > >OPENSSL_OVERWRITE_BASE=yes >sould be used with extreme caution! > >This might break your base application in cases like this, when the base uses a diffrent api as the ports does. >
That's totally true. I was wondering if, to avoid ports problem with openssl (and maybe some over libs/important parts) - because somes refers directly to the openssl base, others to the ports one -, we might try to find a way to have openssl - in future release - in the base system being like a pre-installed port. It will be very hopeful too when security issues are discovered, because instead of patching the system base (and rebuilding the world...) we have only to do a portupgrade... Saving times :) An other interest in doing this, is that the system will be reported unsecure by portaudit... OpenSSH should have the same treatment :) -- Clément Moulin SimpleRezo _______________________________________________ [email protected] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-security To unsubscribe, send any mail to "[EMAIL PROTECTED]"
