[OpenSSL] /etc/ssl/cert.pem not honoured by default
Dag-Erling Smørgrav
des at des.no
Wed Dec 23 08:39:17 UTC 2015
Roger Marquis <marquis at roble.com> writes:
> Matthew Seaman wrote:
> > There are plans to make many of the base system shlibs private and that
> > includes switching the ports to use openssl from ports, but I don't think
> > any changes along those lines are really imminent.
>
> Are you Sure? 3 months ago DES thought they'd be ready for 11:
>
> > The plan is for 11 to have a fully packaged base system. There should
> > be some information in developer summit reports on the wiki. The code
> > is in projects/release-pkg.
These are two different things. What Matthew is talking about is
already well under way and has been since before 10:
% tar tf 9.0/FreeBSD-9.0-RELEASE-amd64-disc1.iso | egrep -w 'lib(private)?ssh'
usr/lib/libssh.a
usr/lib/libssh.so.5
usr/lib32/libssh.a
usr/lib32/libssh.so.5
usr/lib32/libssh.so
usr/lib/libssh.so
% tar tf 9.3/FreeBSD-9.3-RELEASE-amd64-disc1.iso | egrep -w 'lib(private)?ssh'
usr/lib/private/libssh.a
usr/lib/private/libssh.so.5
usr/lib/private/libssh.so
% tar tf 10.0/FreeBSD-10.0-RELEASE-amd64-disc1.iso | egrep -w 'lib(private)?ssh'
usr/lib/private/libssh.a
usr/lib/private/libssh.so.5
usr/lib/private/libssh.so
% tar tf 11.0/FreeBSD-11.0-CURRENT-amd64-20151102-r290273-disc1.iso | egrep -w 'lib(private)?ssh'
usr/lib/libprivatessh.a
usr/lib/libprivatessh.so.5
usr/lib/libprivatessh.so
DES
--
Dag-Erling Smørgrav - des at des.no
More information about the freebsd-security
mailing list