Ticket #457 (closed enhancement: fixed)
Please use system-wide polarssl library if installed
|Reported by:||anon||Owned by:||ahu|
PowerDNS comes with its own PolarSSL sources. This makes it harder to track security issues, and Debian policy (4.13) says that packages in Debian should not do this.
See Debian Bug #671856 ( http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=671856)
Please consider adapting the configure script that it looks for the polarssl lib first in a system-wide directory before resorting to the local PolarSSL. Additionally, a configure option --use-internal-libpolarssl could be used to influence that decision.
I have been told that coreutils, for example, does it right and offers some code that can be adapted for PowerDNS. I didn't verify this.