Re: Call for testers: OpenSSL 1.0.1c

To: Greg Troxel <gdt%ir.bbn.com@localhost>
Subject: Re: Call for testers: OpenSSL 1.0.1c
From: Thomas Klausner <wiz%NetBSD.org@localhost>
Date: Mon, 21 Jan 2013 16:31:40 +0100

On Mon, Jan 21, 2013 at 10:24:49AM -0500, Greg Troxel wrote:
> 
> "Jonathan Perkin" <jperkin%joyent.com@localhost> writes:
> 
> > One change from the current package which may possibly bite people is
> > the removal of MD2 to follow the default OpenSSL configuration.  I
> > note that NetBSD's 1.0.1c retains MD2 support, and I'd be interested
> > in feedback as to whether I should do the same in pkgsrc.
> 
> 
> Without thinking much, it seems that pkgsrc should follow base, but
> perhaps base should change.
> 
> What's the rationale for dropping md2?  It seems like the code could not
> be big, and the question is whether the memory usage hurts more than the
> benefit of any use.  Is the use of md2 really zero (rather than rare)
> these days?  It seems like it should be, but things live on longer than
> they should.

On the other hand, we usually follow upstream featurewise. I think the
argument _for adding patches to readd md2 support_ should be made, if
any.
 Thomas

Follow-Ups:
- Re: Call for testers: OpenSSL 1.0.1c
  - From: Tim Zingelman

References:
- Call for testers: OpenSSL 1.0.1c
  - From: Jonathan Perkin
- Re: Call for testers: OpenSSL 1.0.1c
  - From: Greg Troxel

Prev by Date: Re: Call for testers: OpenSSL 1.0.1c
Next by Date: Re: Call for testers: OpenSSL 1.0.1c
Previous by Thread: Re: Call for testers: OpenSSL 1.0.1c
Next by Thread: Re: Call for testers: OpenSSL 1.0.1c
Indexes:

Home | Main Index | Thread Index | Old Index