> Since my goal is a running system with no known security vulnerabilities ...
> I have a habit of wanting to use the 'latest everything' as I check versions
> of software on my server once every few weeks.
These two items contradict each other. If you want a secure system, you should
only upgrade (a) if vulnerabilities come out that require it; or (b) there are
new features that you absolutely must have. And you also might want to think
about why static libraries are (at least theoretically) more secure than shared
libraries.
/r$
--
Principal Security Engineer
Akamai Technology
Cambridge, MA
______________________________________________________________________
OpenSSL Project http://www.openssl.org
User Support Mailing List [email protected]
Automated List Manager [email protected]
