interfasys
Verified User
Why go through the pain of manually upgrading OpenSSL from source when RH provides rpms?
I know my RH7.3 package still shows version OpenSSL 0.9.6b, but it's supposed to be a patched version (not the latest though...).
Same goes for OpenSSH and probably others.
Should we prefer a source base version so that we can react quickly in case of vulnerability? It seems RH patched OpenSSH very quickly last time.
I know my RH7.3 package still shows version OpenSSL 0.9.6b, but it's supposed to be a patched version (not the latest though...).
Same goes for OpenSSH and probably others.
Should we prefer a source base version so that we can react quickly in case of vulnerability? It seems RH patched OpenSSH very quickly last time.