> > Compile libssl with -DDOPENSSL_NO_BUF_FREELIST > > > > > Yes but that's because OpenSSL is broken.
If OpenSSL had not been broken in this respect, Segglemann's bug would not have survived any sort of testing or peer review. > So no, fixing OpenSSL to work without its freelist would not necessarily > have exposed heartbleed. John, there is bullshit coming out of your mouth.
