From owner-svn-doc-head@freebsd.org  Fri Feb  8 21:57:31 2019
Return-Path: <owner-svn-doc-head@freebsd.org>
Delivered-To: svn-doc-head@mailman.ysv.freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1])
 by mailman.ysv.freebsd.org (Postfix) with ESMTP id 8715D14C794E;
 Fri,  8 Feb 2019 21:57:31 +0000 (UTC)
 (envelope-from pluknet@FreeBSD.org)
Received: from mxrelay.nyi.freebsd.org (mxrelay.nyi.freebsd.org
 [IPv6:2610:1c1:1:606c::19:3])
 (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits)
 server-signature RSA-PSS (4096 bits)
 client-signature RSA-PSS (4096 bits) client-digest SHA256)
 (Client CN "mxrelay.nyi.freebsd.org",
 Issuer "Let's Encrypt Authority X3" (verified OK))
 by mx1.freebsd.org (Postfix) with ESMTPS id 2A6EB6E99D;
 Fri,  8 Feb 2019 21:57:31 +0000 (UTC)
 (envelope-from pluknet@FreeBSD.org)
Received: from repo.freebsd.org (repo.freebsd.org
 [IPv6:2610:1c1:1:6068::e6a:0])
 (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits))
 (Client did not present a certificate)
 by mxrelay.nyi.freebsd.org (Postfix) with ESMTPS id 1BAD71F37D;
 Fri,  8 Feb 2019 21:57:31 +0000 (UTC)
 (envelope-from pluknet@FreeBSD.org)
Received: from repo.freebsd.org ([127.0.1.37])
 by repo.freebsd.org (8.15.2/8.15.2) with ESMTP id x18LvU8I056261;
 Fri, 8 Feb 2019 21:57:30 GMT (envelope-from pluknet@FreeBSD.org)
Received: (from pluknet@localhost)
 by repo.freebsd.org (8.15.2/8.15.2/Submit) id x18LvUD1056260;
 Fri, 8 Feb 2019 21:57:30 GMT (envelope-from pluknet@FreeBSD.org)
Message-Id: <201902082157.x18LvUD1056260@repo.freebsd.org>
X-Authentication-Warning: repo.freebsd.org: pluknet set sender to
 pluknet@FreeBSD.org using -f
From: Sergey Kandaurov <pluknet@FreeBSD.org>
Date: Fri, 8 Feb 2019 21:57:30 +0000 (UTC)
To: doc-committers@freebsd.org, svn-doc-all@freebsd.org,
 svn-doc-head@freebsd.org
Subject: svn commit: r52805 - head/en_US.ISO8859-1/books/handbook/security
X-SVN-Group: doc-head
X-SVN-Commit-Author: pluknet
X-SVN-Commit-Paths: head/en_US.ISO8859-1/books/handbook/security
X-SVN-Commit-Revision: 52805
X-SVN-Commit-Repository: doc
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit
X-Rspamd-Queue-Id: 2A6EB6E99D
X-Spamd-Bar: --
Authentication-Results: mx1.freebsd.org
X-Spamd-Result: default: False [-2.95 / 15.00];
 local_wl_from(0.00)[FreeBSD.org];
 NEURAL_HAM_MEDIUM(-1.00)[-0.996,0];
 NEURAL_HAM_SHORT(-0.95)[-0.950,0];
 NEURAL_HAM_LONG(-1.00)[-0.999,0];
 ASN(0.00)[asn:11403, ipnet:2610:1c1:1::/48, country:US]
X-BeenThere: svn-doc-head@freebsd.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: SVN commit messages for the doc tree for head
 <svn-doc-head.freebsd.org>
List-Unsubscribe: <https://lists.freebsd.org/mailman/options/svn-doc-head>,
 <mailto:svn-doc-head-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/svn-doc-head/>
List-Post: <mailto:svn-doc-head@freebsd.org>
List-Help: <mailto:svn-doc-head-request@freebsd.org?subject=help>
List-Subscribe: <https://lists.freebsd.org/mailman/listinfo/svn-doc-head>,
 <mailto:svn-doc-head-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Fri, 08 Feb 2019 21:57:31 -0000

Author: pluknet
Date: Fri Feb  8 21:57:30 2019
New Revision: 52805
URL: https://svnweb.freebsd.org/changeset/doc/52805

Log:
  Update OpenSSL chapter after WITH_OPENSSL_PORT has gone.
  
  PR:		233315

Modified:
  head/en_US.ISO8859-1/books/handbook/security/chapter.xml

Modified: head/en_US.ISO8859-1/books/handbook/security/chapter.xml
==============================================================================
--- head/en_US.ISO8859-1/books/handbook/security/chapter.xml	Fri Feb  8 21:34:44 2019	(r52804)
+++ head/en_US.ISO8859-1/books/handbook/security/chapter.xml	Fri Feb  8 21:57:30 2019	(r52805)
@@ -1800,27 +1800,14 @@ kadmind5_server_enable="YES"</programlisting>
       <package>www/apache24</package> and
       <package>databases/postgresql91-server</package>, include a
       compile option for building with
-      <application>OpenSSL</application>.</para>
+      <application>OpenSSL</application>.  If selected, the port will
+      add support using <application>OpenSSL</application> from the
+      base system.  To instead have the port compile against
+      <application>OpenSSL</application> from the
+      <package>security/openssl</package> port, add the following to
+      <filename>/etc/make.conf</filename>:</para>
 
-    <para>&os; provides two versions of
-      <application>OpenSSL</application>: one in the base system and
-      one in the Ports Collection.  Users can choose which version to
-      use by default for other ports using the following knobs:</para>
-
-    <itemizedlist>
-      <listitem>
-	<para>WITH_OPENSSL_PORT: when set, the port will use
-	  <application>OpenSSL</application> from the
-	  <package>security/openssl</package> port, even if the
-	  version in the base system is up to date or newer.</para>
-      </listitem>
-
-      <listitem>
-	<para>WITH_OPENSSL_BASE: when set, the port will compile
-	  against <application>OpenSSL</application> provided by the
-	  base system.</para>
-      </listitem>
-    </itemizedlist>
+    <programlisting>DEFAULT_VERSIONS+= ssl=openssl</programlisting>
 
     <para>Another common use of <application>OpenSSL</application> is
       to provide certificates for use with software applications.