On Tue, Sep 11, 2007 at 04:15:47PM -0400, Aaron Smith wrote:
> I'll see if I can figure out what's causing apache to link to 0.9.7. As
> far as I know, I've got all my environment variables set to look at the
> 0.9.8 libraries. It seems odd that the original compile would work
> though.
On any complex system that mixes multiple TLS talking components
(LDAP, Apache itself, nss modules that use LDAP, ...) it is important
to standardize on a single system-wide version of the OpenSSL library
(not just OpenSSL, similar concerns apply to Berkeley DB and other
core components).
When faced with such a system (one that is partly built from source,
and partly via vendor binary packages), you must resist the urge to use
the latest-greatest version of a library that is also included at a
different release level in the base system.
If the default OpenSSL for the vendor system is 0.9.7, stick with that,
but use the latest patch level. If you want 0.9.8, upgrade to a system
release that uses 0.9.8 throughout.
--
Viktor.
______________________________________________________________________
OpenSSL Project http://www.openssl.org
User Support Mailing List openssl-users@openssl.org
Automated List Manager [EMAIL PROTECTED]
