I do believe that OpenSSL 0.9.5a is fine the way it is, no need to patch it.
"Michael H. Warfield" wrote:
> Hello everyone...
>
> I'm relatively new to these lists, so this may have been hashed
> out in the past or may be in some FAQ somewhere I can't find. If so,
> I appologize in advance.
>
> In the OpenCA bundle, there are some patches for OpenSSL that are
> recommended in the INSTALL document. The latest patches seem to be
> for OpenSSL 0.9.4 and patches against a snapshot late last year.
> Examining the patches by hand, they seem to be adding some options
> for getting status information. Part of the 0.9.4 patch appears to
> already be in 0.9.5 and the snapshot patch no longer has that part.
> The snapshot patch does successfully patch 0.9.5. Patches to the code
> include changes to apps/ca.c to add a -status option and a -updatedb
> option and some changes to crypto/conf/conf.c (which no longer exists
> in OpenSSL snapshots although it is still present in 0.9.5).
>
> Now... These changes appear to be useful and needed by the OpenCA
> project. They also appear to have been kicking around for a while and
> partially integrated into OpenSSL.
>
> What is the status on these patches, given that there are no
> patches specifically for OpenSSL-0.9.5 or against any recent snapshots?
> Are they still necessary or are they now redundant in some way?
>
> They don't appear to have any negative impact on OpenSSL so,
> considering how long they've been available, why haven't they been
> fully integrated into OpenSSL if they do something useful? Is there
> some reason for NOT integrating them into OpenSSL or applying the patches?
>
> TIA!
>
> Mike
> --
> Michael H. Warfield | (770) 985-6132 | [EMAIL PROTECTED]
> (The Mad Wizard) | (770) 331-2437 | http://www.wittsend.com/mhw/
> NIC whois: MHW9 | An optimist believes we live in the best of all
> PGP Key: 0xDF1DD471 | possible worlds. A pessimist is sure of it!
>
> --------------------------------------------------------------
> For any problem: [EMAIL PROTECTED] or, better yet,
> [EMAIL PROTECTED] (a single message conaining the world HELP)
> --------------------------------------------------------------
--------------------------------------------------------------
Per problemi: [EMAIL PROTECTED] oppure (anche meglio)
[EMAIL PROTECTED] (messaggio con la sola parola HELP)
--------------------------------------------------------------
