Y
Hacker News
new
|
ask
|
show
|
jobs
by
vladsanchez
2250 days ago
OpenSSL is the culprit of a MacPort installation issue (vde2) for which there is no maintainer. It exposes operational vulnerability to unmaintained open source software.
3 comments
geofft
2250 days ago
Just to make sure I understand - you're saying that because OpenSSL is under active maintenance and vde2 is not, OpenSSL is in the wrong?
If you want to use unmaintained software, you know OpenSSL 1.0 still exists in this world, right?
link
saagarjha
2250 days ago
This looks like it should be vde2's problem, not OpenSSL's:
https://lists.macports.org/pipermail/macports-users/2019-Oct...
link
Avamander
2250 days ago
Lets be fair, unmaintained proprietary software has the same vulnerability.
link
If you want to use unmaintained software, you know OpenSSL 1.0 still exists in this world, right?