Re: [Improved patch!] Was: Re: [Evolution-hackers] [PATCH] Fix OpenSSL certificate validation in Evolution (1.4.4 and 1.4.6)
- From: Frederic Crozat <fcrozat mandrakesoft com>
- To: evolution-hackers lists ximian com
- Subject: Re: [Improved patch!] Was: Re: [Evolution-hackers] [PATCH] Fix OpenSSL certificate validation in Evolution (1.4.4 and 1.4.6)
- Date: Thu, 19 Aug 2004 10:07:33 +0200
Le jeu 19/08/2004 à 09:54, Anton Altaparmakov a écrit :
> Further to my previous post, here is a much improved and this time final
> patch replacing the previous one (attached). It changes the call from:
>
> SSL_CTX_load_verify_locations(ssl_ctx, NULL, "/etc/ssl/certs");
>
> to:
>
> SSL_CTX_set_default_verify_paths(ssl_ctx);
>
> Which asks the OpenSSL library to use the default path for the
> certificates (configured at compile time when building openssl so on
> each distribution it can be different, for suse it is /etc/ssl/certs and
> for redhat it is /usr/share/ssl I am told).
>
> This thus removes the hardcoded /etc/ssl/certs and is hence much better
> and always going to work on a system with a properly installed openssl
> library.
>
> I know at least some of you Ximian Developers don't like OpenSSL, but
> other people, in particular distributions like it, and you will find
> that distros always compile evolution with openssl support, like it or
> not. It also happens to work beautifully with my patch so why not
> include it? If you don't use openssl fine, but at least allow everyone
> else to use it without having to apply a patch first... Thank you.
Ahem, I think at least RH, Mdk and Debian are not using OpenSSL enabled
Evolution. You should check facts before writing such claims..
--
Frederic Crozat <fcrozat mandrakesoft com>
Mandrakesoft
[
Date Prev][
Date Next] [
Thread Prev][
Thread Next]
[
Thread Index]
[
Date Index]
[
Author Index]
