Re: Are OpenSSL bugs related to OpenSSH ?

From: Christopher Schulte (schulte+freebsd@nospam.schulte.org)
Date: 07/31/02

• Next message: Fred Condo: "Old SSL libraries lying around"
• Previous message: Darren Pilgrim: "Re: About the openssl hole"
• In reply to:(deleted message) Dirk Meyer: "Re: Are OpenSSL bugs related to OpenSSH ?"
• Next in thread: Jacques A. Vidrine: "Re: Are OpenSSL bugs related to OpenSSH ?"
• Reply: Jacques A. Vidrine: "Re: Are OpenSSL bugs related to OpenSSH ?"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

---

Date: Wed, 31 Jul 2002 15:44:11 -0500
To: dirk.meyer@dinoex.sub.org (Dirk Meyer), freebsd-security@FreeBSD.ORG
From: Christopher Schulte <schulte+freebsd@nospam.schulte.org>

At 09:43 PM 7/31/2002 +0200, Dirk Meyer wrote:
>The version BUMP makes this clear, even if the API is the same.
>Otherwise we have to hack about 200 ports to select.

I installed the 0.9.6e openssl port to overwrite base
(-DOPENSSL_OVERWRITE_BASE)
and relinked my critical apps. I added:

NO_OPENSSL= true

to /etc/make.conf

Now when I want to update to a patched RELENG_4_6, and use the base openssl,
should I:

1) deinstall the port
2) remove make.conf declaration
3) cvsup/make world
4) recompile my third party apps again, because /usr/lib/libcrypto.so.3 and
/usr/lib/libssl.so.3 are not used by the base openssl

I'm only a tad confused with number 4. Was the .2 -> .3 change made just
within
the port or within openssl itself? Thanks!

>kind regards Dirk
>
>- Dirk Meyer, Im Grund 4, 34317 Habichtswald, Germany
>- [dirk.meyer@dinoex.sub.org],[dirk.meyer@guug.de],[dinoex@FreeBSD.org]

--
Christopher Schulte
http://www.schulte.org/
Do not un-munge my @nospam.schulte.org
email address.  This address is valid.
To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message

---

• Next message: Fred Condo: "Old SSL libraries lying around"
• Previous message: Darren Pilgrim: "Re: About the openssl hole"
• In reply to:(deleted message) Dirk Meyer: "Re: Are OpenSSL bugs related to OpenSSH ?"
• Next in thread: Jacques A. Vidrine: "Re: Are OpenSSL bugs related to OpenSSH ?"
• Reply: Jacques A. Vidrine: "Re: Are OpenSSL bugs related to OpenSSH ?"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

---

Relevant Pages Re: openssl 0.9.8 breaking things ... > I think I have a clue as to why this is becoming complicated. ... For whatever reason, the 0.9.7g port ... > doesn't cause a conflict, ... > am a fool to go with the base openssl rather than the port? ... (freebsd-questions) RE: Replacing base OpenSSL with port ... Replacing base OpenSSL with port ... but don't know how and googling doesn't help. ... overwrite) the base OpenSSL with a newer one? ... Isn't there a port that does exactly this? ... (freebsd-questions) RE: Replacing base OpenSSL with port ... Replacing base OpenSSL with port ... but don't know how and googling doesn't help. ... overwrite) the base OpenSSL with a newer one? ... (freebsd-questions) Re: Replacing base OpenSSL with port ... Replacing base OpenSSL with port ... but don't know how and googling doesn't help. ... overwrite) the base OpenSSL with a newer one? ... (freebsd-questions)

---

• Security
• UNIX
• Linux
• Coding
• Usenet

• News
• Mailing-Lists
• Newsgroups
• Service
• About
• Privacy
• Search
• Imprint

www.derkeiler.com  > Mailing-Lists  > FreeBSD-Security  > 2002-07