BIND 9.8.1-P1 with OpenSSL 1.0.0 issues..

James Edwards jedwards at
Wed Nov 23 13:56:07 UTC 2011

On Wed, November 23, 2011 08:18, Matthew Seaman wrote:

> I've been using the attached patch with the dns/bind98 port and
> openssl-1.0.x from ports for months.  This disables using the GOST
> cipher plugins -- which is no big deal as far as I'm concerned.  GOST
> ciphers are only supplied as plugin modules unlike all other ciphers in
> openssl, which is a new thing with version 1.0.0 in ports.  It's that
> plugin shlib not playing well with chroot that apparently
> causes named to crash.
> 	Cheers,
> 	Matthew
> --
> Dr Matthew J Seaman MA, D.Phil.                   7 Priory Courtyard
>                                                   Flat 3
> PGP:     Ramsgate
> JID: matthew at               Kent, CT11 9PW

You, sir, are correct about the chroot. Bind 9.8.1 and OpenSSL 1.0.0 don't
play nicely in a chroot environment.  This also isn't limited to FreeBSD,
as I experienced the problem on Solaris 10.


More information about the freebsd-questions mailing list