* Aaron Lehmann (aaronl@vitelus.com) wrote: > On Tue, Feb 11, 2003 at 10:07:55PM -0500, Stephen Frost wrote: > > Currently in Debian there are quite a few packages which still link > > against OpenSSL 0.9.6 (libldap2-tls, ssh-krb5, others). Newer > > packages are being linked against OpenSSL 0.9.7 (ssh, etc). The > > problem happens when these two end up getting linked into the same > > running program. An example of how this can happen is this: > > Why can't we just recompile the programs in question against libssl > 0.9.7? I've been waiting awhile to be able to remove 0.9.6. We can and work is being done on it- but until then you're stuck in this situation where things can segfault and people will file bugs about it. Perhaps the fact that there are these problems will encourage maintainers to check their packages and recompile them against the latest. Of course, the reality is that there will always be a period of 'catch-up' for *something* and so 'just recompile' isn't really a good overall solution to the problem. Stephen
Attachment:
pgpmV0u63R1Zx.pgp
Description: PGP signature