> Stefano: I'm not sure if ignoring is a good thing SSL related. It > might be harmless, but the user doesn't necessarily know if there are > any security implications.
Jan: It's not a security concern. The check is there to warn that it may not function at all. However, I think the check is unnecessary, as OpenSSL has a relatively stable ABI, and as long as the same soname is available, it should work. > Stefano: The SSL error message and proftpd not starting after a dist > upgrade appear to be related. Well, if you read the source code, you'll see it's a warning only, it doesn't result in an abort. Run it in debug mode, and maybe you'll see why it doesn't start: # proftpd -d 10 -n > Having to make changes to any application to get it to work after an > upgrade should be considered unusual. If it's unavoidable, I would > expect to see a notice in the distribution release notes. Of course, that's not desirable, but features come and go, and a config file that was valid in one version of an application may not be valid in the next. -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/873984 Title: mod_tls and mod_sftp complain about OpenSSL version mismatch To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/proftpd-dfsg/+bug/873984/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
