nostr:npub1ysufjjd485tftr4wy2a83fqyqvtfq0yn820gl8vl6hcsdz8uv2hskx2jyl what's the problem with that? Is it that OpenSSL needs to be easily/more quickly updateable?
nostr:npub19zcmd845ct95g9q487mr02jzwuhzg4f0knz33prsaq7lw2vcvqxqt5padn Yeah and while distros can get embargos for OpenSSL so they can at least prepare themselves, you're likely not going to.
And OpenSSL is used for HTTPS requests, so pretty much directly network-facing and it can have rather nasty security vulnerabilities.
nostr:npub1ysufjjd485tftr4wy2a83fqyqvtfq0yn820gl8vl6hcsdz8uv2hskx2jyl Would an option to do "static except these specific things" make sense? :blobfoxthink: Or are we just back at square one then? Because if OpenSSL can be such a problem, I assume distros make sure they have the newest version any how, so it wouldn't create the compatibility issues we see now. Or am I seeing things too simplistic?
