rpm/up2date question

Fri Apr 23 15:17:23 UTC 2004

Kevin M. Shortt said:
> For instance, I use openssl. Well www.openssl.org has 0.9.7d available
> and is the recommended stable and secure release of openssl.
[snip]
> Can anyone remark or comment to help me either correct my ignorance
> or share with me what you do to combat needing to maintain both
> ways of administrating your machines?

Version numbers are not a reliable way to determine security.

http://www.redhat.com/advice/speaks_backport.html

-- 
William Hooper