LibreSSL on Gentoo

Hanno's Blog

Saturday, July 12. 2014

LibreSSL on Gentoo


Trackbacks

Weblog: devsonacid.wordpress.com
Tracked: Jul 13, 14:35
Weblog: siamogeek.com
Tracked: Jul 13, 15:57
Weblog: threatpost.com
Tracked: Jul 14, 17:26
Weblog: internetcrimefightersorg.com
Tracked: Jul 16, 05:05
Weblog: www.itsprite.com
Tracked: Jun 13, 15:27

Comments
Display comments as (Linear | Threaded)

Thanks. a very informative and well written blog.

(We are likely going to be addressing most of your issues)

Cheers
-Bob
#1 Bob Beck (Homepage) on 2014-07-12 21:00 (Reply)
Please provide checksums for verification;
sha256/sha512, gpg are all welcome. Currently there is none!

Thanks all for making it possible to have an OpenSSL alternative.

greetings
#1.1 Security-aware-guy on 2014-07-13 15:37 (Reply)
http://marc.info/?l=openbsd-announce&m=140525121404700
#1.1.1 rjc on 2014-07-13 15:57 (Reply)
Because of its promise of portability, I immediately tried to build it on both uClibc and musl and got the same result as Sabotage:

compat/issetugid_linux.c:7:30: fatal error: gnu/libc-version.h: No such file or directory

I emailed Bob Beck to see if he's interested in supporting other libc.
#2 Anthony G. Basile (Homepage) on 2014-07-13 02:58 (Reply)
> Yesterday and today I played around with it on Gentoo Linux. I was able to replace my system's OpenSSL completely with LibreSSL and with few exceptions was able to successfully rebuild all packages using OpenSSL.

Think you meant rebuild all packages using LibreSSL
#3 SomeGuy on 2014-07-13 06:23 (Reply)
check this out:
https://github.com/libressl-portable/portable
#4 wopot on 2014-07-13 07:14 (Reply)
> For libesmtp all the code was in ntlm. After reading that ntlm is an ancient, proprietary Microsoft authentication protocol I decided that I don't need that anyway so I just added --disable-ntlm to the ebuild.

NTLM might be old and, even though Microsoft discourages doing so, it is still being used even in their own products, i.e. it's the only way to authenticate to their Exchange server using SMTP on unix-like systems (i.e. if your company uses Exchange and you use mutt, Thundebird, etc - you are stuck using the web interface) or even between the Exchange server and Outlook when the client is not, or outside, of the AD domain.
#5 rjc on 2014-07-13 10:27 (Reply)
Promising software, but the logo? The next one with "Bärtchen"?
#6 Felix E. Klee (Homepage) on 2014-07-19 14:34 (Reply)

Add Comment

E-Mail addresses will not be displayed and will only be used for E-Mail notifications.

To prevent automated Bots from commentspamming, please enter the string you see in the image below in the appropriate input box. Your comment will only be submitted if the strings match. Please ensure that your browser supports and accepts cookies, or your comment cannot be verified correctly.
CAPTCHA

 
 

About

This blog is written by Hanno Böck. Unless noted otherwise, its content is licensed as CC0.

You can find my web page with links to my work as a journalist here.

I am also publishing a newsletter about climate change and decarbonization technologies.

The blog uses the free software Serendipity and is hosted at schokokeks.org.

Hanno on Mastodon | Contact / Imprint | Privacy / Datenschutz