Mark Fletcher wrote: > If one downloads libssl1.0.2 from the Debian package pool and installs > it, it appears to install OK and RStudio starts working -- but, what > damage / compromise is that likely to have done to the system? Is it OK > to do this? Should one take other steps to prevent libssl1.0.2 being > used by other applications?
Usually one application is linked to specific version of one library, but it depends how the software is being compiled. This is also true for the library itself. In the case with libssl1.0.2 you are may be lucky that there is no broken dependency in libssl1.0.2 too and you can use it. What one can do to safely isolate one library is to extract that library "dpkg -x <package>.deb <targetdir>" and then set explicit LD_LIBRARY_PATH for the application or even LD_PRELOAD for the library.
