From mboxrd@z Thu Jan 1 00:00:00 1970 From: =?utf-8?Q?Ludovic_Court=C3=A8s?= Subject: Re: Should we upgrade openssl? Date: Tue, 16 Apr 2019 22:17:32 +0200 Message-ID: <87r2a1d7s3.fsf@gnu.org> References: <87wojvmk9n.fsf@dustycloud.org> Mime-Version: 1.0 Content-Type: text/plain; charset=utf-8 Content-Transfer-Encoding: quoted-printable Return-path: Received: from eggs.gnu.org ([209.51.188.92]:45782) by lists.gnu.org with esmtp (Exim 4.71) (envelope-from ) id 1hGUWO-0006Qx-It for guix-devel@gnu.org; Tue, 16 Apr 2019 16:17:37 -0400 In-Reply-To: <87wojvmk9n.fsf@dustycloud.org> (Christopher Lemmer Webber's message of "Mon, 15 Apr 2019 10:10:44 -0400") List-Id: "Development of GNU Guix and the GNU System distribution." List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Errors-To: guix-devel-bounces+gcggd-guix-devel=m.gmane.org@gnu.org Sender: "Guix-devel" To: Christopher Lemmer Webber Cc: guix-devel@gnu.org Hello! Christopher Lemmer Webber skribis: > From the openssl website: > >> Note: The latest stable version is the 1.1.1 series. This is also our >> Long Term Support (LTS) version, supported until 11th September >> 2023. Our previous LTS version (1.0.2 series) will continue to be >> supported until 31st December 2019 (security fixes only during the >> last year of support). The 1.1.0 series is currently only receiving >> security fixes and will go out of support on 11th September 2019. All >> users of 1.0.2 and 1.1.0 are encouraged to upgrade to 1.1.1 as soon as >> possible. The 0.9.8, 1.0.0 and 1.0.1 versions are now out of support >> and should not be used. > > I know, everyone's going to groan hearing this, but maybe given the > above it would make sense to upgrade to the openssl 1.1.0 series before > Guix 1.0 gets out the door? Indeed, I was under the assumption that 1.0 was still the stable version, but apparently it=E2=80=99s not. What do Leo and others think? Thanks for the heads-up! Ludo=E2=80=99.