OpenSSL problem: bind98-base FreeBSD port
Doug Barton
dougb at dougbarton.us
Mon Jul 9 00:40:17 UTC 2012
On 07/08/2012 17:33, Matthew Pounsett wrote:
>
> On 2012/07/08, at 20:29, Matthew Pounsett wrote:
>
>>
>> On 2012/07/08, at 20:26, Mark Andrews wrote:
>>
>>>
>>> One can also build named w/o GOST support if one wants. We statically
>>> link all the engines when building named on Windows.
>>
>> Unfortunately the port doesn't provide the config hooks to disable GOST support.
>
> Actually.. how do you go about doing that anyway? I was just taking a look at writing a patch for the port to allow GOST to be turned off, but BIND's configure script doesn't have any information in it about disabling individual ciphers.
I wouldn't accept it anyway. For better or worse, GOST is part of the
protocol.
Doug
--
If you're never wrong, you're not trying hard enough
More information about the bind-users
mailing list