Ok this time a more interesting patch: crypto hasn't so much useflags (it could use idea, but it seems not to work for now), but openssh build can be disabled from within it. This, added to virtual/ssh, allow to enable or disable ssh/sshd from this ebuild, and so allow to use net-misc/openssh version, which is newer and (we hope) safer. If ssh is being built, with this patch freebsd-crypto takes care of installing sshd init script and sshd pam config (took from spb's baselayout 0.7-r1, please don't re-emerge it after this package until spb removes sshd stuff from there or you will be without them :) ). Please note if you want to use net-misc/openssh: it works well, but you must use the pam config file from this instead of the normal one, as the normal one will close you out. I'll investigate it a little bit when i'll know how pam works in both linux and here, as there seems to be some changes. Also, as there should be some openssl drop in replacement using gnu-tls (or there will be one in the future, i bet), having a virtual/ssl could help us here, too. HTH, Diego
Created attachment 53212 [details, diff] freebsd-crypto patch
freebsd-crypto is broken. As we have discussed in #gentoo-bsd, we should just use whatever portage offer to us (openssh, openssl, heimdal, etc) and them manage to find a solution to pam issues[1]. A bug will be filled in the next days/weeks regarding this issue. [1] http://article.gmane.org/gmane.linux.gentoo.bsd/6.
