But John...it will break them *how*? What are the error messages? I mean,
it *really* works for me. The OpenSSL site being down, I take the liberty
to quote the FAQ for 0.9.7:
> What is special about OpenSSL on Redhat?
> Red Hat Linux (release 7.0 and later) include a preinstalled limited
> version of OpenSSL. For patent reasons, support for IDEA, RC5 and MDC2
> is disabled in this version. The same may apply to other Linux
distributions.
> Users may therefore wish to install more or all of the features left out.
No problem.
> To do this you MUST ensure that you do not overwrite the openssl that is
in
> /usr/bin on your Red Hat machine. Several packages depend on this file,
> including sendmail and ssh. /usr/local/bin is a good alternative choice.
The
> libraries that come with Red Hat 7.0 onwards have different names and so
are
> not affected. (eg For Red Hat 7.2 they are /lib/libssl.so.0.9.6b and
> /lib/libcrypto.so.0.9.6b with symlinks /lib/libssl.so.2 and
> /lib/libcrypto.so.2 respectively).
So one is good for RH 7.0? Anyway I KNOW I did "the thing" on our old office
box running RH 7.0. Not a peep from the rest of the system. YMMW...
> Please note that we have been advised by Red Hat attempting to recompile
the
> openssl rpm with all the cryptography enabled will not work.
Right. So we don't use the package, no?
> All other packages depend on the original Red Hat supplied openssl
package.
Whatever that means.
> It is also worth noting that due to the way Red Hat supplies its
packages,
> updates to openssl on each distribution never change the package version,
> only the build number. For example, on Red Hat 7.1, the latest openssl
> package has version number 0.9.6 and build number 9 even though it
contains
> all the relevant updates in packages up to and including 0.9.6b.
> A possible way around this is to persuade Red Hat to produce a non-US
> version of Red Hat Linux.
> FYI: Patent numbers and expiry dates of US patents:
> MDC-2: 4,908,861 13/03/2007
> IDEA: 5,214,703 25/05/2010
> RC5: 5,724,428 03/03/2015
So I see some allusions that might or might not happen, nothing really
concrete. And so long as the GNU loader works the same way under RH than
anywhere else... the only thing that can happen is that rpm complains on
the next update...
Best regards,
-- David
--On Thursday, September 19, 2002 12:43 PM +0100 [EMAIL PROTECTED]
wrote:
> Your biggest error is that removing the openssl package on Red Hat 7.3
> will break the openssh, sendmail, and automount packages. It will also
> break nearly all the email packages on the system, with the exception of
> elm.
>
> Creating symlinks to the newer version doesn't work. I know, I've tried
> it. It is possible to compile a newer version of openssl on the same
> system without breaking your currently installed packages.
>
> See the openssl FAQ for details:
> http://www.openssl.org/support/faq.cgi#BUILD8
>
> -
> John Airey, BSc (Jt Hons), CNA, RHCE
> Internet systems support officer, ITCSD, Royal National Institute of the
> Blind,
> Bakewell Road, Peterborough PE2 6XU,
> Tel.: +44 (0) 1733 375299 Fax: +44 (0) 1733 370848 [EMAIL PROTECTED]
>
> Reality TV - the ultimate oxymoron
>
______________________________________________________________________
OpenSSL Project http://www.openssl.org
User Support Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
