[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: libressl
From: |
Leo Famulari |
Subject: |
Re: libressl |
Date: |
Wed, 2 Mar 2016 14:15:04 -0500 |
User-agent: |
Mutt/1.5.24 (2015-08-30) |
On Wed, Mar 02, 2016 at 12:03:17PM +0100, Danny Milosavljevic wrote:
> Hi,
>
> with these openssl security problems lately that don't affect
> libressl, wouldn't it be better to just use libressl as input
> everywhere? For the non-removed API, it's compatible, and they merge
> fixes from openssl anyway - and the attack surface is smaller. (the
> ABI differs - so it's not advisable to just replace the openssl binary
> without recompilation of the clients)
If a Scheme wizard can programatically replace all references of openssl
to libressl in the code base, I would be interested in testing it
locally.
- libressl, Danny Milosavljevic, 2016/03/02
- Re: libressl,
Leo Famulari <=
- Re: libressl, Nils Gillmann, 2016/03/02