On 2022-02-16 03:56:17 +0000, Dave Froble said:
> Just got an email from VSI, their version of SSL V3 is now available.
> This should be a good thing, bringing some of the latest SSL stuff to
> VMS.
OpenSSL 3.0.1 (SSL3 kit on OpenVMS, as differentiated from SSLv3) and
OpenSSH 8.8 both.
> Some good news.
Ayup. Definitely.
> Now if only a decent TCP/IP was available.
Getting more current SSL and more current ssh are a big part of that,
with more networking work and more networking integration work awaiting
VSI.
The network configuration tool is unnecessarily complex and error-prone
and unintegrated, for instance. It's blown up on me several times over
recent months, crashing out with missing symbols. Not that getting any
of the existing network configs over into some newer scheme will be
trivial, or will even be attempted, or won't otherwise run afoul of
existing UIC allocations or usernames selected. That OpenSSL 3.0.1 is
correctly but confusingly known as the SSL3 kit on OpenVMS—as
differentiated from the ancient SSLv3 version—is another area that
would disappear with networking integration, too. IP networking and SSL
shouldn't be separate installation kits or otherwise visible to an
installer. Not any more. But VSI necessarily has much bigger
priorities, not the least of which is the completion of the x86-64
port. Fixing an ever-more complex management UI likely isn't at the top
of any schedule or any priority list, but it is a cost that accretes.
--
Pure Personal Opinion | HoffmanLabs LLC