Re: base components should always be default (Re: change in default openssl coming)

On 09.07.2016 18:25, Kevin Oberman wrote: > This discussion has now been going on for a while. Several times the > question "Why should be do this?" has been asked and answered, but I want > to know why it is desirable to have ports use the base OpenSSL. I thought, I explained my thinking for this

Re: base components should always be default (Re: change in default openssl coming)

Kevin Oberman wrote: On Mon, Jul 11, 2016 at 1:10 PM, Michelle Sullivan > wrote: Wojciech Puchar wrote: Interesting question. Perl was removed from the base system years ago with no ill affects. ssh ...?

Re: base components should always be default (Re: change in default openssl coming)

On Mon, Jul 11, 2016 at 1:10 PM, Michelle Sullivan wrote: > Wojciech Puchar wrote: > >> Interesting question. Perl was removed from the base system years ago with no ill affects. ssh ...? >>> >> Do ssh use ssl protocol? >> > > Actually I don't know, just takign a wild stab in the d

Re: base components should always be default (Re: change in default openssl coming)

Wojciech Puchar wrote: Interesting question. Perl was removed from the base system years ago with no ill affects. ssh ...? Do ssh use ssl protocol? Actually I don't know, just takign a wild stab in the dark.. certainly fetch etc as others have already pointed out. Michelle -- Michelle Su

Re: base components should always be default (Re: change in default openssl coming)

On 07/11/16 05:25, Wojciech Puchar wrote: Interesting question. Perl was removed from the base system years ago with no ill affects. ssh ...? Do ssh use ssl protocol? No, Only bits in libcrypto. (and maybe the up and coming systemd ..! :P (joking)) -- Michelle Sullivan http://www.mhix

Re: base components should always be default (Re: change in default openssl coming)

Interesting question. Perl was removed from the base system years ago with no ill affects. ssh ...? Do ssh use ssl protocol? (and maybe the up and coming systemd ..! :P (joking)) -- Michelle Sullivan http://www.mhix.org/ ___ freebsd-ports@freebsd

Re: base components should always be default (Re: change in default openssl coming)

Why openssl is a part of base system at all? Interesting question. Perl was removed from the base system years ago with no ill affects. it is definitely not "always needed" thing. Many of servers i control don't use it at all, or use only because openvpn is used. So definitely it is not cruci

Re: base components should always be default (Re: change in default openssl coming)

This discussion has now been going on for a while. Several times the question "Why should be do this?" has been asked and answered, but I want to know why it is desirable to have ports use the base OpenSSL. Other than the time and disk space required to install the OpenSSL package, I fail to see th

Re: base components should always be default (Re: change in default openssl coming)

On 07/09/16 22:40, Thierry Thomas wrote: > Le sam 9 jul 16 à 20:35:59 +0200, Guido Falsi > écrivait : > >> But that option will not change the basic problem of how the OS is >> developed. FreeBSD base will anyway include OpenSSL even though users >> can choose(and have been able to for a long w

Re: base components should always be default (Re: change in default openssl coming)

Le sam 9 jul 16 à 20:35:59 +0200, Guido Falsi écrivait : > But that option will not change the basic problem of how the OS is > developed. FreeBSD base will anyway include OpenSSL even though users > can choose(and have been able to for a long while) too not install it. But with a packaged bas

Re: base components should always be default (Re: change in default openssl coming)

On 07/09/16 19:31, Thierry Thomas wrote: > Le sam 9 jul 16 à 12:49:53 +0200, Guido Falsi > écrivait : > >> Completely removing OpenSSL from base requires replacing it with some >> other SSL implementation, or removing a lot of other goodies which >> interface themselves with the external world

Re: base components should always be default (Re: change in default openssl coming)

El 9 jul. 2016 3:13 p. m., "Guido Falsi" escribió: > > On 07/09/16 14:36, Fernando Herrero Carrón wrote: > > El 9 jul. 2016 10:33 a. m., "Wojciech Puchar" escribió: > >> > >> > >> > >> On Fri, 8 Jul 2016, Mikhail T. wrote: > >> > >>> On 08.07.2016 02:26, Mathieu Arnold wrote: > > During

Re: base components should always be default (Re: change in default openssl coming)

Le sam 9 jul 16 à 12:49:53 +0200, Guido Falsi écrivait : > Completely removing OpenSSL from base requires replacing it with some > other SSL implementation, or removing a lot of other goodies which > interface themselves with the external world from base. Well, anyway, we are going to a packag

Re: base components should always be default (Re: change in default openssl coming)

On 07/09/16 14:36, Fernando Herrero Carrón wrote: > El 9 jul. 2016 10:33 a. m., "Wojciech Puchar" escribió: >> >> >> >> On Fri, 8 Jul 2016, Mikhail T. wrote: >> >>> On 08.07.2016 02:26, Mathieu Arnold wrote: During this summer (sometime in August I think) I will be changing the > default

Re: base components should always be default (Re: change in default openssl coming)

El 9 jul. 2016 10:33 a. m., "Wojciech Puchar" escribió: > > > > On Fri, 8 Jul 2016, Mikhail T. wrote: > >> On 08.07.2016 02:26, Mathieu Arnold wrote: >>> >>> During this summer (sometime in August I think) I will be changing the default OpenSSL for the ports tree from the base system version to se

Re: base components should always be default (Re: change in default openssl coming)

On 07/09/16 12:19, Gerard Seibert wrote: > On Sat, 9 Jul 2016 10:32:35 +0200, Wojciech Puchar stated: > >> Why openssl is a part of base system at all? > > Interesting question. Perl was removed from the base system years ago > with no ill affects. > There's a kerberos implementation in base wh

Re: base components should always be default (Re: change in default openssl coming)

Gerard Seibert wrote: On Sat, 9 Jul 2016 10:32:35 +0200, Wojciech Puchar stated: Why openssl is a part of base system at all? Interesting question. Perl was removed from the base system years ago with no ill affects. ssh ...? (and maybe the up and coming systemd ..! :P (joking)) -- Michell

Re: base components should always be default (Re: change in default openssl coming)

On Sat, 9 Jul 2016 10:32:35 +0200, Wojciech Puchar stated: >Why openssl is a part of base system at all? Interesting question. Perl was removed from the base system years ago with no ill affects. -- Carmel ___ freebsd-ports@freebsd.org mailing list ht

Re: base components should always be default (Re: change in default openssl coming)

Xin Li wrote: On 7/8/16 12:20, Grzegorz Junka wrote: The only reason I heard why base isn't updated with the proper package from ports is because of security implications. Older versions are more security-tested and therefore safer. If there is a vulnerability in the base it's much more hassle

Re: base components should always be default (Re: change in default openssl coming)

On Fri, 8 Jul 2016, Mikhail T. wrote: On 08.07.2016 02:26, Mathieu Arnold wrote: During this summer (sometime in August I think) I will be changing the default OpenSSL for the ports tree from the base system version to security/openssl. The short answer is "Why?!" The longer reaction is: "p

Re: base components should always be default (Re: change in default openssl coming)

On 7/8/16 12:20, Grzegorz Junka wrote: > > The only reason I heard why base isn't updated with the proper package > from ports is because of security implications. Older versions are more > security-tested and therefore safer. If there is a vulnerability in the > base it's much more hassle to up

Re: base components should always be default (Re: change in default openssl coming)

On 08/07/2016 23:59, Kevin Oberman wrote: On Fri, Jul 8, 2016 at 12:20 PM, Grzegorz Junka wrote: On 08/07/2016 16:29, Mikhail T. wrote: On 08.07.2016 02:26, Mathieu Arnold wrote: During this summer (sometime in August I think) I will be changing the default OpenSSL for the ports tree from

Re: base components should always be default (Re: change in default openssl coming)

On Fri, Jul 8, 2016 at 12:20 PM, Grzegorz Junka wrote: > > On 08/07/2016 16:29, Mikhail T. wrote: > >> On 08.07.2016 02:26, Mathieu Arnold wrote: >> >>> During this summer (sometime in August I think) I will be changing the >>> default OpenSSL for the ports tree from the base system version to >>

Re: base components should always be default (Re: change in default openssl coming)

On 08/07/2016 16:29, Mikhail T. wrote: On 08.07.2016 02:26, Mathieu Arnold wrote: During this summer (sometime in August I think) I will be changing the default OpenSSL for the ports tree from the base system version to security/openssl. The short answer is "Why?!" The longer reaction is: "pl

base components should always be default (Re: change in default openssl coming)

On 08.07.2016 02:26, Mathieu Arnold wrote: > During this summer (sometime in August I think) I will be changing the > default OpenSSL for the ports tree from the base system version to > security/openssl. The short answer is "Why?!" The longer reaction is: "please don't". Certainly not without a