Ignore:
Timestamp:
02/03/2024 01:23:14 AM (5 months ago)
Author:
Douglas R. Reno <renodr@…>
Branches:
12.1, ken/TL2024, lazarus, rahul/power-profiles-daemon, trunk, xry111/llvm18
Children:
50ceb065
Parents:
51347047
Message:

Promote libpsl to recommended in wget, curl, and NetworkManager.

This is to protect against the "global cookie" issue outlined in
https://daniel.haxx.se/blog/2024/01/10/psl-in-curl/

After some discussion we've decided to promote these to recommended, and
in cURL I've added a note that while the package can technically be
built without psl support, it's not recommended due to the security
implications.

File:
1 edited

Legend:

Unmodified
Added
Removed

  • networking/netlibs/curl.xml

    r51347047 r7b231190  
    8585    <bridgehead renderas="sect3">cURL Dependencies</bridgehead>
    8686
    87     <bridgehead renderas="sect4">Required</bridgehead>
    88     <para role="required">
    89       <xref linkend="libpsl"/>
    90     </para>
    91 
    9287    <bridgehead renderas="sect4">Recommended</bridgehead>
    9388    <para role="recommended">
    94       <xref role="runtime" linkend="make-ca"/> (runtime)
     89      <xref linkend="libpsl"/>
     90    </para>
     91
     92    <note>
     93      <para>
     94        While there is an option to build the package without libpsl, both
     95        the upstream developers and the BLFS editors alike highly recommend
     96        not disabling support for libpsl due to severe security implications.
     97      </para>
     98    </note>
     99
     100    <bridgehead renderas="sect4">Recommended at runtime</bridgehead>
     101    <para role="recommended">
     102      <xref role="runtime" linkend="make-ca"/>
    95103    </para>
    96104
Note: See TracChangeset for help on using the changeset viewer.