Changeset 39d9ed8 for chapter08/openssl.xml

Timestamp:

04/01/2023 01:06:22 PM (13 months ago)

Author:

Xi Ruoyao <xry111@…>

Branches:

xry111/clfs-ng

Children:

7a570bd

Parents:

6bced9f (diff), fd531b84 (diff)
Note: this is a merge changeset, the changes displayed below correspond to the merge itself.
Use the (diff) links above to see all the changes relative to each parent.

Message:

Merge remote-tracking branch 'origin/trunk' into xry111/clfs-ng

File:

• chapter08/openssl.xml (modified) (1 diff)

chapter08/openssl.xml

@@ -97 +97 @@
         <emphasis>when upgrading to a version with the same MAJOR version
         number</emphasis>.
+      </para>
+
+      <!-- https://bugzilla.mindrot.org/show_bug.cgi?id=3548 -->
+      <para>
+        If <application>OpenSSH</application> is installed, it will be an
+        exception of the general rule above.  It contains an
+        over-restrictive OpenSSL version check, so both SSH client and SSH
+        server will refuse to start if OpenSSL
+        is updated with MAJOR version number unchanged but MINOR version
+        number changed.  You need to rebuild
+        <application>OpenSSH</application> after such an upgrade.
+        <emphasis role='bold'>If <application>OpenSSH</application> is being
+        used to access the system, you must rebuild and reinstall it
+        after upgrading OpenSSL to a new MINOR version number before logout
+        or you won't be able to login via SSH anymore.</emphasis>
       </para>