BIND 9.8.1-P1 with OpenSSL 1.0.0 issues..
James Edwards
jedwards at bsdftw.org
Wed Nov 23 13:56:07 UTC 2011
On Wed, November 23, 2011 08:18, Matthew Seaman wrote:
> I've been using the attached patch with the dns/bind98 port and
> openssl-1.0.x from ports for months. This disables using the GOST
> cipher plugins -- which is no big deal as far as I'm concerned. GOST
> ciphers are only supplied as plugin modules unlike all other ciphers in
> openssl, which is a new thing with version 1.0.0 in ports. It's that
> libgost.so plugin shlib not playing well with chroot that apparently
> causes named to crash.
>
> Cheers,
>
> Matthew
>
> --
> Dr Matthew J Seaman MA, D.Phil. 7 Priory Courtyard
> Flat 3
> PGP: http://www.infracaninophile.co.uk/pgpkey Ramsgate
> JID: matthew at infracaninophile.co.uk Kent, CT11 9PW
>
You, sir, are correct about the chroot. Bind 9.8.1 and OpenSSL 1.0.0 don't
play nicely in a chroot environment. This also isn't limited to FreeBSD,
as I experienced the problem on Solaris 10.
James
More information about the freebsd-questions
mailing list