From owner-freebsd-questions@FreeBSD.ORG  Fri Apr  9 10:59:47 2010
Return-Path: <owner-freebsd-questions@FreeBSD.ORG>
Delivered-To: freebsd-questions@freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34])
	by hub.freebsd.org (Postfix) with ESMTP id BF562106566C
	for <freebsd-questions@freebsd.org>;
	Fri,  9 Apr 2010 10:59:47 +0000 (UTC)
	(envelope-from ken@mthelicon.com)
Received: from hercules.mthelicon.com (hercules.mthelicon.com
	[IPv6:2001:49f0:2023::2])
	by mx1.freebsd.org (Postfix) with ESMTP id 8AF568FC17
	for <freebsd-questions@freebsd.org>;
	Fri,  9 Apr 2010 10:59:47 +0000 (UTC)
Received: from PortaPegIII (hydra.fletchermoorland.co.uk [78.33.209.59])
	(authenticated bits=0)
	by hercules.mthelicon.com (8.14.3/8.14.3) with ESMTP id o39Axelh030109
	for <freebsd-questions@freebsd.org>; Fri, 9 Apr 2010 10:59:41 GMT
	(envelope-from ken@mthelicon.com)
From: "Pegasus Mc Cleaft" <ken@mthelicon.com>
To: <freebsd-questions@freebsd.org>
Date: Fri, 9 Apr 2010 11:59:41 +0100
Message-ID: <000301cad7d3$c267bc10$47373430$@com>
MIME-Version: 1.0
X-Mailer: Microsoft Office Outlook 12.0
Thread-Index: AcrX08E5/KMqsapDRJKPqMw6wn/Obg==
Content-Language: en-gb
X-Spam-Status: No, score=4.3 required=5.0 tests=BAYES_50,DNS_FROM_OPENWHOIS,
	FH_DATE_PAST_20XX,HTML_MESSAGE autolearn=no version=3.2.5
X-Spam-Level: ****
X-Spam-Checker-Version: SpamAssassin 3.2.5 (2008-06-10) on
	hercules.mthelicon.com
Content-Type: text/plain;
	charset="us-ascii"
Content-Transfer-Encoding: 7bit
X-Content-Filtered-By: Mailman/MimeDel 2.1.5
Subject: SSL / SSH choosing hardware accelerator first
X-BeenThere: freebsd-questions@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: User questions <freebsd-questions.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>, 
	<mailto:freebsd-questions-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-questions>
List-Post: <mailto:freebsd-questions@freebsd.org>
List-Help: <mailto:freebsd-questions-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>, 
	<mailto:freebsd-questions-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Fri, 09 Apr 2010 10:59:47 -0000

Hello group, 

 

                I am currently running FreeBSD 9-Current AMD64. I have a
Hifn crypto accelerator installed in the machine. I have noticed that when I
connect to the machine using SSH, it does not use the crypto hardware. There
was a patch that someone made that forced SSL to use the hardware by
default, but I was wondering if there was a way to do this in
userland/configuration?  It would be nice to have the hardware accelerated
cryptography used as first priority before deciding to use the software
emulated modes. Does anyone know how this can be done?

 

Peg