> In general, that's not a decision for you to make - it's a decision
> made by the developers who choose to code to the OpenSSL API or to the
> GNUTLS API. They're similar in that they both provide SSL
> functionality (Mozilla's NSS is a third), but as Armin says, they're
> not drop-in alternatives. You install one or both, whatever is needed
> by the packages you're installing.
Yeah, got that. Bummer! Although I also get the concept of the
vulnerability of monocultures, one would think this would be a perfect
function to coalesce into one maximally-hardened API. But I guess
I'll have to install all three, against future application. This is a
three-link chain, and the weakest one compromises the whole system.
Major bummer!
--
Paul Rogers
paulgrog...@fastmail.fm
Rogers' Second Law: "Everything you do communicates."
(I do not personally endorse any additions after this line. TANSTAAFL :-)
--
http://www.fastmail.com - IMAP accessible web-mail
--
http://lists.linuxfromscratch.org/listinfo/lfs-support
FAQ: http://www.linuxfromscratch.org/blfs/faq.html
Unsubscribe: See the above information page
Do not top post on this list.
A: Because it messes up the order in which people normally read text.
Q: Why is top-posting such a bad thing?
A: Top-posting.
Q: What is the most annoying thing in e-mail?
http://en.wikipedia.org/wiki/Posting_style
