[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: gnurl CVE applicability
From: |
Schanzenbach, Martin |
Subject: |
Re: gnurl CVE applicability |
Date: |
Mon, 4 Apr 2022 15:23:58 +0000 |
> On 4. Apr 2022, at 17:14, Christian Grothoff <grothoff@gnunet.org> wrote:
>
> On 4/4/22 17:09, Nikita Ronja Gillmann wrote:
>>>
>>> Regardless, you should be able to build GNUnet against vanilla libcurl
>>> these days, so that might be a better way to avoid worrying about this.
>> In the context of pkgsrc, the problem is that I can not enforce a change of
>> setting in curl (for example built against gnutls) for the defaults.
>> Or maybe you can explain how a gnunet built against curl and gnurl would
>> differ these days in terms of functionality and features.
>
> Ah, I see. Well, yes, non-gnutls curl is likely still going to cause grief
> for some parts of GNUnet...
>
Well afair it only does for the gns proxy. So you may simply not
install/package that and link against vanilla curl.
BR
signature.asc
Description: Message signed with OpenPGP