Subject: Re: tcpdump 3.7.2 vulnerabilities
To: None <>
From: Jeremy C. Reed <>
List: tech-pkg
Date: 01/25/2005 12:12:19
On Tue, 25 Jan 2005, Jeremy C. Reed wrote:

> I have one problem: the configure script checks for
> $ac_cv_ssleay_path/lib/librsaref.a and links with -lrsaref on one of my
> Linux systems. So => not found when I run on other system.
> Should we have an option for tcpdump to build with rsaref? I don't see it
> covered in the manpage and I have not knowling used this option, so I
> don't know.)
> Also, it installed and worked fine with libpcap-0.7.2 because of
> BUILDLINK_DEPENDS.libpcap+=     libpcap>=0.5.0
> I don't know if tcpdump should be forced to use same version or not. But
> since it built and worked fine for me, I guess this old libpcap can still
> be used.
> Also, it automatically has IPv6 support if /usr/include/netinet/ip6.h
> exists. Maybe an option for inet6 should be used here also.

Another issue is that it depends on openssl, but the configure script
checks for des_cbc_encrypt in -lcrypt. OpenSSL 0.9.7 provides
_ossl_old_des_cbc_encrypt (not des_cbc_encrypt) so tcpdump doesn't use it.

I might send-pr all this...

 Jeremy C. Reed

 	  	 	 BSD News, BSD tutorials, BSD links