OpenSSL vs LibreSSL
Discussions criticize OpenSSL's poor code quality, security issues, and track record, while advocating for switching to LibreSSL or other alternatives like BoringSSL.
Activity Over Time
Top Contributors
Keywords
Sample Comments
Is there a reason people still use OpenSSL? Arenβt there better forks?
Can we not just dump OpenSSL for once and move over to LibreSSL already!?
So much for LibreSSL being a better choice than OpenSSL.
Given the OpenSSL trackrecord [1], I recommend switching to LibreSSL [2] if possible. They tore through OpenSSL to pull out all the horrors they found and beat it into shape. OpenSSL's code was so unbelievably bad that there's certainly more problems lurking in there.[1] http://www.openbsd.org/papers/bsdcan14-libressl/mgp00001.htm...[2] <a h
Does it make sense to stop recommending OpenSSL and start recommending LibreSSL now?
So to OpenSSL and not to LibreSSL?
Just because OpenSSL is very hard to replace doesn't mean it's not very bad.
A reminder that LibreSSL exists and has a fraction of the problems OpenSSL does.https://www.libressl.org/
God damn it not again. Bring on boringssl/libressl. Although they'll be full of holes as well probably, and as things stand there's a lot of people looking at openssl at the moment. So maybe better the devil you know
OpenSSL is free to do that, but given the issues in their code it would probably backfire.