SSLv2 - do we really need it?
Michael Bienia
michael at vorlon.ping.de
Thu Jul 31 14:42:49 BST 2008
On 2008-07-23 21:50:38 -0400, Michael Casadevall wrote:
> Well, if a user has both Universe and Main enabled, if we have a
> openssl-sslv2, which is the same package expect with SSLv2 compiled in, all
> it needs is a Replaces/Conflicts/Provides which removes the sslv3-only
> package.
I guess that's no option as all packages depending on libssl0.9.8 have a
versioned dependency and Provides doesn't work with versioned
dependencies. So you would need to recompile all package to depend on
libssl0.9.8 | libssl0.9.8-ssl2.
Michael
More information about the ubuntu-devel
mailing list