> In general, that's not a decision for you to make - it's a decision > made by the developers who choose to code to the OpenSSL API or to the > GNUTLS API. They're similar in that they both provide SSL > functionality (Mozilla's NSS is a third), but as Armin says, they're > not drop-in alternatives. You install one or both, whatever is needed > by the packages you're installing.
Yeah, got that. Bummer! Although I also get the concept of the vulnerability of monocultures, one would think this would be a perfect function to coalesce into one maximally-hardened API. But I guess I'll have to install all three, against future application. This is a three-link chain, and the weakest one compromises the whole system. Major bummer! -- Paul Rogers [email protected] Rogers' Second Law: "Everything you do communicates." (I do not personally endorse any additions after this line. TANSTAAFL :-) -- http://www.fastmail.com - IMAP accessible web-mail -- http://lists.linuxfromscratch.org/listinfo/lfs-support FAQ: http://www.linuxfromscratch.org/blfs/faq.html Unsubscribe: See the above information page Do not top post on this list. A: Because it messes up the order in which people normally read text. Q: Why is top-posting such a bad thing? A: Top-posting. Q: What is the most annoying thing in e-mail? http://en.wikipedia.org/wiki/Posting_style
