X-Original-To: alpine-devel@lists.alpinelinux.org
Delivered-To: alpine-devel@mail.alpinelinux.org
Received: from mail-pa0-f48.google.com (mail-pa0-f48.google.com [209.85.220.48])
	(using TLSv1 with cipher ECDHE-RSA-RC4-SHA (128/128 bits))
	(No client certificate requested)
	by mail.alpinelinux.org (Postfix) with ESMTPS id 72901DC0143
	for <alpine-devel@lists.alpinelinux.org>; Wed,  4 Mar 2015 05:07:29 +0000 (UTC)
Received: by pablj1 with SMTP id lj1so24139459pab.8
        for <alpine-devel@lists.alpinelinux.org>; Tue, 03 Mar 2015 21:07:28 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=gmail.com; s=20120113;
        h=date:from:to:subject:message-id:mime-version:content-type
         :content-transfer-encoding;
        bh=Vi8X93vr1ZXKSHCQxs5eUuIS+3woZcOEixG6ukwCW4w=;
        b=m/bD6BeHJzuEfZrpBmbUm5HboHcUpxCDbLawJ9YMztpmedtrq0brfcMBl3GB6J0Jft
         447zc+1ABWpLonne96cysv6n4FVGr3SLwaWnJ1RAG0vL8fdet8NKBNznpM5o0lRQsA1n
         LJRDTs4xuqxZIhP3JajO/1R0RtKdHQmusI8c8mGsO7oCaNgF4rYOXCdaEcfr9ytwkS/F
         /X08N/+M3Mwh5Sjyy1Jx5ofnJQ9ZdKiWb/rGhLOkXXNmar9pb6C+dACjffQp+/XaiNHv
         lOZG5x63X2eDsqpvN7OMShNXA9EQzAZKczz43XL0d6uzlSiT3MIaDycbyjnmr/KraOcc
         Cjyg==
X-Received: by 10.66.254.195 with SMTP id ak3mr3913102pad.38.1425445648110;
        Tue, 03 Mar 2015 21:07:28 -0800 (PST)
Received: from twinpeaks.my.domain ([74.82.134.59])
        by mx.google.com with ESMTPSA id dl1sm36543pdb.75.2015.03.03.21.07.27
        for <alpine-devel@lists.alpinelinux.org>
        (version=TLSv1.2 cipher=ECDHE-RSA-AES128-GCM-SHA256 bits=128/128);
        Tue, 03 Mar 2015 21:07:27 -0800 (PST)
Date: Tue, 3 Mar 2015 21:07:25 -0800
From: Orion <systmkor@gmail.com>
To: "alpine-devel@lists.alpinelinux.org"
 <alpine-devel@lists.alpinelinux.org>
Subject: [alpine-devel] [CVE 2015-0204] - Yet Another OpenSSL Vuln
Message-ID: <20150303210725.69cf0724@twinpeaks.my.domain>
X-Mailer: Claws Mail 3.11.0 (GTK+ 2.24.23; x86_64-alpine-linux-musl)
X-Mailinglist: alpine-devel
Precedence: list
List-Id: Alpine Development <alpine-devel.lists.alpinelinux.org>
List-Unsubscribe: 
	<mailto:alpine-devel+unsubscribe@lists.alpinelinux.org?subject=unsubscribe>
List-Post: <mailto:alpine-devel@lists.alpinelinux.org>
List-Help: <mailto:alpine-devel+help@lists.alpinelinux.org?subject=help>
List-Subscribe: 
	<mailto:alpine-devel+subscribe@lists.alpinelinux.org?subject=subscribe>
MIME-Version: 1.0
Content-Type: text/plain; charset=US-ASCII
Content-Transfer-Encoding: 7bit

I understand the hesitation of blindly jumping over to LibreSSL however
I think it's a good idea that we begin getting LibreSSL working with
Alpine. I don't suggest for it to become the default overnight. However
it seems like a perfect opportunity to also get some automated testing
in for packages until we feel comfortable to make it the default. If
nothing else it should be an option for users.

This and other recent OpenSSL vulns that don't apply to LibreSSL.
http://permalink.gmane.org/gmane.os.openbsd.tech/41090

-- 
keybase.io/systmkor


---
Unsubscribe:  alpine-devel+unsubscribe@lists.alpinelinux.org
Help:         alpine-devel+help@lists.alpinelinux.org
---