Re: [RFR2] templates://openssl/{libssl0.9.8.templates}
On (30/03/07 06:54), Christian Perrier wrote:
> Template: libssl0.9.8/restart-services
> Type: string
> _Description: Services to restart to make them use the new libraries:
> This release of OpenSSL fixes some security issues. Services may not
> use these fixes until they are restarted. Please note that restarting
> the SSH server (sshd) should not affect any existing connections.
They will not use these fixes, "may not" makes it sound like they are
not allowed to.
> .
> Please check the list of detected services that need to be restarted
> and correct it, if needed. The services names must be identical to the
> initialisation script names in /etc/init.d and separated by
> spaces. No services will be restarted if the list is empty.
This is en_GB, have we made a decision on that point yet?
> .
> Any service that later fails unexpectedly after this upgrade should
> be restarted. It is recommended to reboot this host to avoid any
> SSL-related trouble.
I'm not sure about the first sentence here. Using "later" seems strange
to me, but more than that it just seems to be saying "if any services
fail then restart them" which only seems to be loosely related to this
template. I think it can be left in, but I wonder if anyone else has any
thoughts.
Thanks,
James
--
James Westby -- GPG Key ID: B577FE13 -- http://jameswestby.net/
seccure key - (3+)k7|M*edCX/.A:n*N!>|&7U.L#9E)Tu)T0>AM - secp256r1/nistp256
Index: tmp/libssl0.9.8.templates
===================================================================
--- tmp.orig/libssl0.9.8.templates 2007-04-01 18:45:08.000000000 +0100
+++ tmp/libssl0.9.8.templates 2007-04-01 18:45:54.000000000 +0100
@@ -1,7 +1,7 @@
Template: libssl0.9.8/restart-services
Type: string
_Description: Services to restart to make them use the new libraries:
- This release of OpenSSL fixes some security issues. Services may not
+ This release of OpenSSL fixes some security issues. Services will not
use these fixes until they are restarted. Please note that restarting
the SSH server (sshd) should not affect any existing connections.
.
Reply to: