Re: HOWTO update OpenSSL on 4.x ?
From: Martin (not-for-mail_at_example.org)
Date: 05/29/05
- Next message: Torfinn Ingolfsen: "Re: FreeBSd on a NSLU2?"
- Previous message: Neil: "Re: nvidia-driver woes"
- In reply to: Matty: "Re: HOWTO update OpenSSL on 4.x ?"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
Date: Sun, 29 May 2005 01:07:10 +0100
Matty wrote:
> Martin wrote:
>> I like to keep Internet-facing services up-to-date, and have noticed that
>> the FreeBSD 4.x base system is a little behind with OpenSSL releases,
>> while
>> the ports system is bang up-to-date. This is on a system recently
>> CVSupped to RELENG-4 and rebuilt.
>>
>> Q1. Is it safe and straightforward to install the port
>> in /usr/ports/security/openssl in order to take the latest OpenSSL?
>>
>> Q2. Does the port simply replace the base version of OpenSSL and use the
>> same config files?
>>
>> System info below. Thanks for any pointers!
>>
>> - Martin.
>>
>> --------------------------------------------
>> # uname -r
>> 4.11-STABLE
>>
>> # openssl version
>> OpenSSL 0.9.7d 17 Mar 2004
>>
>> # stunnel -version
>> stunnel 4.10 on i386-unknown-freebsd4.10 PTHREAD+POLL+IPv4+LIBWRAP with
>> OpenSSL 0.9.7d 17 Mar 2004
>>
>> # cat /usr/ports/security/openssl/distinfo
>> MD5 (openssl-0.9.7g.tar.gz) = 991615f73338a571b6a1be7d74906934
>> SIZE (openssl-0.9.7g.tar.gz) = 3132217
>>
>
> Why do you need to upgrade? Why not just apply patches to the version
> that in the main source tree?
Well, I guess the bigger question is: How do the FreeBSD ports maintainers
track security fixes to SSL, and for that matter and SSH? In other words,
do I actually need to do anything other than Cvsupping the base system and
rebuilding world?
- Next message: Torfinn Ingolfsen: "Re: FreeBSd on a NSLU2?"
- Previous message: Neil: "Re: nvidia-driver woes"
- In reply to: Matty: "Re: HOWTO update OpenSSL on 4.x ?"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
Relevant Pages
|
|
