Date: Tue, 22 Apr 2008 11:14:02 -0700 (PDT) From: Roger Marquis <marquis@roble.com> To: freebsd-security@freebsd.org Subject: Re: openssldoesn't -overwrite-base again (was: FreeBSD-SA-08:05.openssh) Message-ID: <20080422181402.DDE2E2B45B3@mx5.roble.com> In-Reply-To: <20080422120021.D18CD1065674@hub.freebsd.org> References: <20080422120021.D18CD1065674@hub.freebsd.org>
next in thread | previous in thread | raw e-mail | index | archive | help
Dirk Meyer wrote: > The -overwrite-base option was only functional on FreeBSD 4.x > With FreeBSD 5.x the libs are spread in /lib and /usr/lib, so > even if the ports overwrite base libs, some tools still use the > old (unpatched) libs from /lib. Couldn't this be addressed simply by removing the old libs, possibly replacing with symlinks, in coordination with the standard/base? We shouldn't need to worry about base applications linked to the old libs anyhow, unless a base app is making unreasonable expectations. Better to fix those bugs in base, IMO, than have multiple versions of key libraries. Roger Marquis
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20080422181402.DDE2E2B45B3>