Date: Thu, 1 May 2014 22:24:33 +0200 From: Michael Grimm <trashcan@odo.in-berlin.de> To: "freebsd-security@freebsd.org" <freebsd-security@freebsd.org>, "freebsd-ports@freebsd.org" <freebsd-ports@freebsd.org> Subject: Re: ports requiring OpenSSL not honouring OpenSSL from ports Message-ID: <AC9A6B25-3AEE-4140-9338-4D21A26AA8B4@odo.in-berlin.de> In-Reply-To: <5362725B.6010109@geminix.org> References: <201404271508.s3RF8sMA014085@catnip.dyslexicfish.net> <CACdU%2Bf_Wo6VDcJkn6tmF8MTU49=rnJM7SB6XxofGZVdukSarHA@mail.gmail.com> <201404272250.s3RMo2NZ095771@catnip.dyslexicfish.net> <445CDD31-5A11-4F5E-92DE-CB11A10E9BDE@odo.in-berlin.de> <5361896C.7010703@bluerosetech.com> <53621BE0.4040704@geminix.org> <15864901-C372-43A8-A6E6-BF0AF73F2EC6@vpnc.org> <536267A0.9010403@geminix.org> <5362725B.6010109@geminix.org>
next in thread | previous in thread | raw e-mail | index | archive | help
On 01.05.2014, at 18:12, Uwe Doering <gemini@geminix.org> wrote: > One additional data point: "WITH_OPENSSL_PORT" is mentioned in the > FreeBSD Porter's Handbook: >=20 > = http://www.freebsd.org/doc/en_US.ISO8859-1/books/porters-handbook/makefile= -options.html#idp67984816 If I would have searched for "knobs" in that document = (http://svnweb.freebsd.org/ports/head/KNOBS?view=3Dmarkup), recently, I = would have ended with: | Unknown location: /head/KNOBS And, I didn't know what "knobs" were until a year ago after migrating = from portmaster to poudriere, although running FBSD beginning with 6.2. = But don't get me wrong, I do not complain at all, its been my fault, = period. > But then, it cannot be expected that mere _users_ of the ports tree = read > the Porter's Handbook. True. > And it is also not mentioned there that it is, to > my knowledge, considered good practice to have that setting in > "/etc/make.conf" in order to avoid any confusion about which port is > linked with what version of OpenSSL. Here's my question: Which knobs are considered good practice? Is it = experience, is it gut feeling, religion, ...? I would love to see a = documentation covering the pro and cons about every "knob" ... I do not = complain, I know, that is hard work and hard to accomplish. But any links to documents -besides the ones already mentioned- are = highly appreciated. E.g: excuse my ignorance, but should I stay with ... | www-jail> ldd `which nginx` | /usr/local/sbin/nginx: | libcrypt.so.5 =3D> /lib/libcrypt.so.5 (0x8008aa000) ..., or would there be an alternative in ports? libgcrypt? or? (All my = relevant services are run being compiled from ports, and within jails.) Thanks, sorry for eventually dumb questions, and regards, Michael=
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?AC9A6B25-3AEE-4140-9338-4D21A26AA8B4>