Am Samstag, 19. Mai 2007 21:51 schrieb Pieter de Goeje: [...] > I believe libssl is broken if not compiled with -DOPENSSL_NO_DH. Gcc will > warn that the program will abort if the code reaches any call to > DHparams_dup() when compiling libssl. > > ssl3_send_client_key_exchange calls this (macro) at s3_clnt.c:1856. There > are other places too. I can confirm that many applications don't work with SSL protocolls any more, like kmail and opera. Your solution sounds reasonable. How is -DOPENSSL_NO_DH best implemented? Best regards, -Harry > > - Pieter de Goeje > _______________________________________________ > freebsd-current_at_freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-current > To unsubscribe, send any mail to "freebsd-current-unsubscribe_at_freebsd.org"Received on Sat May 19 2007 - 21:06:00 UTC
This archive was generated by hypermail 2.4.0 : Wed May 19 2021 - 11:39:36 UTC