Date: Tue, 08 Apr 2014 20:15:27 +0200 From: Dirk Engling <erdgeist@erdgeist.org> Cc: freebsd-security@freebsd.org Subject: Re: FreeBSD's heartbleed response Message-ID: <53443CBF.60103@erdgeist.org> In-Reply-To: <CADgEyUvQo52WpO%2BQUSAVQZ9T%2BmJFa=80GAnKzp4PWM9fRpkMTw@mail.gmail.com> References: <20140408174210.GA5433@behemoth> <53443917.7040609@sentex.net> <CADgEyUvQo52WpO%2BQUSAVQZ9T%2BmJFa=80GAnKzp4PWM9fRpkMTw@mail.gmail.com>
next in thread | previous in thread | raw e-mail | index | archive | help
On 08.04.14 20:05, Nathan Dorfman wrote: > Someone please correct me if I'm wrong, but I think simply adding > -DOPENSSL_NO_HEARTBEATS to crypto/openssl/Makefile (and recompiling!) is > sufficient to remove the vulnerability from the base system. You forgot to mention installing, but yes. erdgeist
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?53443CBF.60103>