www/firefox really depends on security/openssl?
Mark Felder
feld at FreeBSD.org
Wed May 13 12:57:00 UTC 2015
On Wed, May 13, 2015, at 06:11, Carmel NY wrote:
> On Wed, 13 May 2015 01:24:35 +0200, Dr. Peter Voigt stated:
>
> [Truncated]
>
> The most reliable method to eliminate this, for lack of a better word
> "bullshit", would be for FreeBSD to keep the "base" system "openssl"
> version" up-to-date. It is apparent to even the most casual observer that
> the present method of allowing to different versions of such an important
> application on the same system without a fail proof method of choosing
> which
> version to use as you have demonstrated is truly counter productive to a
> "stable" environment.
>
> Assuming that the FreeBSD developers won't do it, perhaps you might
> investigate on how to replace the "base openssl" with the "port's
> openssl"
> version and eliminate the problem completely.
>
> By the way, I have run into this same nonsense myself.
>
You can't do this without breaking the base system, so please don't try.
The "correct" solution is for OpenSSL in base to be "private" so nothing
else knows of its existence except the base system utilities that depend
on it.
There are plans for this to happen. I am not privy to a timeline.
More information about the freebsd-ports
mailing list