Bug#338006: [Pkg-openssl-devel] Bug#338006: libssl0.9.8: bad record
mac because of wrong SSL_OP_TLS_BLOCK_PADDING_BUG handling -
possible workaround
Kurt Roeckx
kurt at roeckx.be
Sun Jan 15 16:04:05 UTC 2006
On Sun, Jan 15, 2006 at 04:15:53PM +0100, Sebastiaan wrote:
> Hi,
>
> this bug broke my apache2/courier-imapd-ssl/squirrelmail configuration,
> but I found a workaround posted somewhere in this list:
>
> http://lists.andrew.cmu.edu/pipermail/jeaton-test/2005-November.txt
>
> I used openssl_0.9.8a.orig.tar.gz and openssl_0.9.8a-5.diff.gz. In
> debian/rules, change CONFARGS to:
> CONFARGS = --prefix=/usr --openssldir=/usr/lib/ssl no-idea no-rc5 shared
This does 3 things:
- Add shared
- Remove zlib
- Remove no-mdc2
shared: I don't see how that would solve anything. It already
builds a shared module. It builds a version with no-shared and 1
or more with shared depending on the arch.
zlib: This will break things. See #334920, #333896, #335512.
- no-mdc2: mdc2 is disabled because it's not free. (#65368) I
also fail to see how adding it will make your problems go away.
So I fail to see how this solves anything.
Kurt
More information about the Pkg-openssl-devel
mailing list