Mark Felder wrote:
Another option is a second openssl port, one that overwrites base and
guarantees compatibility with RELEASE. Then we could at least have all
versions of openssl in vuln.xml (not that that's been a reliable
indicator of security of late).
This will never work. You can't guarantee compatibility with RELEASE and
upgrade it too.
How do you figure? RedHat does exactly that with every backport, and
they do it for the life of a release.
Roger
_______________________________________________
freebsd-security@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-security
To unsubscribe, send any mail to "freebsd-security-unsubscr...@freebsd.org"
