Am I correct in assuming that if I do a: make OPENSSL_OVERWRITE_BASE=yes install clean in /usr/ports/security/openssl ( after updating my ports tree ) that the port will overwrite the base openssl, thus not requiring the subsequent patch and recompile of the OS to patch this Vulnerability? Dana
On 17 mars 2004, at 19:02, D Golden wrote:> Am I correct in assuming that if I do a: > > make OPENSSL_OVERWRITE_BASE=yes install clean > > in /usr/ports/security/openssl ( after updating my ports tree ) that > the > port will overwrite the base openssl, thus not requiring the subsequent > patch and recompile of the OS to patch this Vulnerability?You'll still have to recompile any program that is statically linked to OpenSSH patpro -- je cherche un poste d'admin-sys Mac/UNIX (ou une jeune et jolie femme riche) http://patpro.net/cv.php
On Wed, Mar 17, 2004 at 01:02:49PM -0500, D Golden wrote:> Am I correct in assuming that if I do a: > > make OPENSSL_OVERWRITE_BASE=yes install clean > > in /usr/ports/security/openssl ( after updating my ports tree ) that the > port will overwrite the base openssl, thus not requiring the subsequent > patch and recompile of the OS to patch this Vulnerability?No. Cheers, -- Jacques Vidrine / nectar@celabo.org / jvidrine@verio.net / nectar@freebsd.org