From owner-freebsd-current Sat Feb 19 22:26:55 2000 Delivered-To: freebsd-current@freebsd.org Received: from freefall.freebsd.org (freefall.FreeBSD.ORG [204.216.27.21]) by hub.freebsd.org (Postfix) with ESMTP id AD14C37BD99; Sat, 19 Feb 2000 22:26:53 -0800 (PST) (envelope-from kris@FreeBSD.org) Received: from localhost (kris@localhost) by freefall.freebsd.org (8.9.3/8.9.2) with ESMTP id WAA09197; Sat, 19 Feb 2000 22:26:53 -0800 (PST) (envelope-from kris@FreeBSD.org) X-Authentication-Warning: freefall.freebsd.org: kris owned process doing -bs Date: Sat, 19 Feb 2000 22:26:53 -0800 (PST) From: Kris Kennaway To: "Jordan K. Hubbard" Cc: "Victor A. Salaman" , Doug Barton , freebsd-current@FreeBSD.ORG Subject: Re: openssl in -current In-Reply-To: <40915.951027321@zippy.cdrom.com> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-current@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG On Sat, 19 Feb 2000, Jordan K. Hubbard wrote: > The questions which aren't being answered here are "what use is OpenSSL > without RSA" To ports, not much - with the exception of one or two, they all require RSA. Intrinsically, a lot. I have big plans for using openssl in the base system, and if we don't get it in at the start of 4.x then it may have to wait until 5.0 to avoid all the potential integration issues, the kind of which we've already seen. It would be easier the next time around, but I still can't guarantee it won't break -stable :-) > and "are we really providing anything of value if we stop short of > providing a complete out-of-box solution?" It's more of a precursor at this stage. The only difference a user who installs the default non-rsa version will see is that instead of installing automatically when they do a 'make install' of e.g. openssh is that it will prompt them: This port requires RSA crypto, which is not present in your version of OpenSSL. Please see Chapter 6.5 in the handbook for a description of the problem and alternative solutions. They'll read this, discover they need to install a package first and do so, and then everything works fine. Thats how things are now (well, with Jim's patch from earlier tonight). If you can make the necessary changes to sysinstall to ask the questions I posted earlier, it can all be taken care of during sysinstall and will work perfectly thereafter. Kris ---- "How many roads must a man walk down, before you call him a man?" "Eight!" "That was a rhetorical question!" "Oh..then, seven!" -- Homer Simpson To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-current" in the body of the message