The FreeBSD Forums  

Go Back   The FreeBSD Forums > Ports > Ports Installation and Maintenance
Reload this Page [heads up] OpenSSL - read before upgrading
Register FAQ Calendar Search Today's Posts Mark Forums Read

Ports Installation and Maintenance Installing and maintaining the FreeBSD Ports Collection (i.e. third party software).

Reply
 
Thread Tools Display Modes
  #1  
Old November 7th, 2009, 00:58
DutchDaemon's Avatar
DutchDaemon DutchDaemon is online now
Moderator
  
Join Date: Nov 2008
Location: Rotterdam, the Netherlands
Posts: 3,326
Thanks: 8
Thanked 438 Times in 413 Posts
Exclamation [heads up] OpenSSL - read before upgrading
A new version of OpenSSL (security/openssl) has appeared in the ports tree.

Please note that this new release does not fix the TLS bug which has been discussed in security circles in the past few days; it merely disbles TLS/SSL renegotiation by default.

Read the following analysis and make sure you thoroughly test any application that needs/uses OpenSSL before putting it into production use:

http://isc.sans.org/diary.html?storyid=7543

Note: this only concerns OpenSSL from the ports tree. I do not know how and when OpenSSL in the base system will be upgraded, and with which defaults.
__________________
FreeBSD Handbook | FreeBSD Manuals | FAQ FreeBSD 6/7 | FreeBSD Wiki | FreeBSD Forum FAQ (Rules & Tips)
Always use CODE tags for posting system output! | End-of-Year Fundraising Drive | Donate!
---> Do not PM me with FreeBSD questions. I do not work here. <---
Last edited by DutchDaemon; November 7th, 2009 at 01:04.
Reply With Quote
  #2  
Old November 7th, 2009, 04:15
DutchDaemon's Avatar
DutchDaemon DutchDaemon is online now
Moderator
  
Join Date: Nov 2008
Location: Rotterdam, the Netherlands
Posts: 3,326
Thanks: 8
Thanked 438 Times in 413 Posts
Default
Just some preliminary findings:

* https (Apache 22 / OpenSSL) OK
* OpenVPN (same OpenSSL on both sides) OK
* imaps (Dovecot/OpenSSL) OK
__________________
FreeBSD Handbook | FreeBSD Manuals | FAQ FreeBSD 6/7 | FreeBSD Wiki | FreeBSD Forum FAQ (Rules & Tips)
Always use CODE tags for posting system output! | End-of-Year Fundraising Drive | Donate!
---> Do not PM me with FreeBSD questions. I do not work here. <---
Last edited by DutchDaemon; November 7th, 2009 at 04:24.
Reply With Quote
Reply

Tags
bugfix, openssl

« Previous Thread | Next Thread »
Thread Tools
Display Modes
Linear Mode Linear Mode

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
BB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Forum Jump

Similar Threads
Thread Thread Starter Forum Replies Last Post
[heads up] SORBS blacklist may close DutchDaemon Off-Topic 12 November 5th, 2009 22:51
tape read errors: how to read past? recover? monkeyboy System Hardware 5 May 13th, 2009 14:41
[Solved] Getting HEADS UP Patch from CVS repo vivek Installing & Upgrading 2 April 22nd, 2009 14:14
Cannot read from ext2 disk - g_vfs_done():da2[READ(snip)] error 5 skaffen General 0 March 6th, 2009 16:02


All times are GMT +1. The time now is 13:05.

Contact Us - FreeBSD - Archive - Top

Powered by vBulletin® Version 3.8.4
Copyright ©2000 - 2009, Jelsoft Enterprises Ltd.
The mark FreeBSD is a registered trademark of The FreeBSD Foundation and is used by The FreeBSD Project with the permission of The FreeBSD Foundation.