Gentoo Websites Logo
Go to: Gentoo Home Documentation Forums Lists Bugs Planet Store Wiki Get Gentoo!

Bug 84902

Summary: freebsd-crypto useflag patch (with sshd init script and other)
Product: Gentoo/Alt Reporter: Diego Elio Pettenò (RETIRED) <flameeyes>
Component: OtherAssignee: Gentoo/BSD Team <bsd+disabled>
Status: RESOLVED CANTFIX    
Severity: normal    
Priority: High    
Version: unspecified   
Hardware: All   
OS: All   
Whiteboard:
Package list:
Runtime testing required: ---
Bug Depends on: 84898    
Bug Blocks:    
Attachments: freebsd-crypto patch

Description Diego Elio Pettenò (RETIRED) gentoo-dev 2005-03-11 14:06:02 UTC 
Ok this time a more interesting patch: crypto hasn't so much useflags (it could use idea, but it seems not to work for now), but openssh build can be disabled from within it.

This, added to virtual/ssh, allow to enable or disable ssh/sshd from this ebuild, and so allow to  use net-misc/openssh version, which is newer and (we hope) safer.

If ssh is being built, with this patch freebsd-crypto takes care of installing sshd init script and sshd pam config (took from spb's baselayout 0.7-r1, please don't re-emerge it after this package until spb removes sshd stuff from there or you will be without them :) ).

Please note if you want to use net-misc/openssh: it works well, but you must use the pam config file from this instead of the normal one, as the normal one will close you out. I'll investigate it a little bit when i'll know how pam works in both linux and here, as there seems to be some changes.

Also, as there should be some openssl drop in replacement using gnu-tls (or there will be one in the future, i bet), having a virtual/ssl could help us here, too.

HTH, Diego
Comment 1 Diego Elio Pettenò (RETIRED) gentoo-dev 2005-03-11 14:06:45 UTC 
Created attachment 53212 [details, diff]
freebsd-crypto patch
Comment 2 Otavio Piske (RETIRED) gentoo-dev 2005-03-31 09:55:50 UTC 
freebsd-crypto is broken. As we have discussed in #gentoo-bsd, we should just use whatever portage offer to us (openssh, openssl, heimdal, etc) and them manage to find a solution to pam issues[1]. A bug will be filled in the next days/weeks regarding this issue.

[1] http://article.gmane.org/gmane.linux.gentoo.bsd/6.