From owner-freebsd-ports-bugs@FreeBSD.ORG  Fri Jan  6 15:50:07 2006
Return-Path: <owner-freebsd-ports-bugs@FreeBSD.ORG>
X-Original-To: freebsd-ports-bugs@FreeBSD.org
Delivered-To: freebsd-ports-bugs@FreeBSD.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id EC16616A41F;
	Fri,  6 Jan 2006 15:50:07 +0000 (GMT)
	(envelope-from yvan.vanhullebus@netasq.com)
Received: from smtp.netasq.com (netasq.netasq.com [213.30.137.178])
	by mx1.FreeBSD.org (Postfix) with ESMTP id 5B9BA43D4C;
	Fri,  6 Jan 2006 15:49:59 +0000 (GMT)
	(envelope-from yvan.vanhullebus@netasq.com)
Received: from [10.2.0.4] (f1000c001440400601.netasq.com [10.0.0.126])
	by smtp.netasq.com (Postfix) with ESMTP
	id 95F851764A7; Fri,  6 Jan 2006 16:47:31 +0100 (CET)
Received: by yvan.netasq.int (Postfix, from userid 1000)
	id D197054B9; Fri,  6 Jan 2006 16:49:52 +0100 (CET)
Date: Fri, 6 Jan 2006 16:49:52 +0100
From: VANHULLEBUS Yvan <vanhu@netasq.com>
To: Vivek Khera <vivek@khera.org>
Message-ID: <20060106154952.GA49901@yvan.netasq.int>
References: <200601042048.k04KmWq2042871@freefall.freebsd.org>
	<20060105083258.GA7275@yvan.netasq.int>
	<893D5977-DCDD-4E36-A6D0-878F7980EC67@khera.org>
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
In-Reply-To: <893D5977-DCDD-4E36-A6D0-878F7980EC67@khera.org>
User-Agent: All mail clients suck. This one just sucks less.
Cc: freebsd-ports-bugs@FreeBSD.org, Edwin Groothuis <edwin@FreeBSD.org>
Subject: Re: ports/91317: ports/security/ipsec-tools enables itself at
	startup
X-BeenThere: freebsd-ports-bugs@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: Ports bug reports <freebsd-ports-bugs.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-ports-bugs>, 
	<mailto:freebsd-ports-bugs-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-ports-bugs>
List-Post: <mailto:freebsd-ports-bugs@freebsd.org>
List-Help: <mailto:freebsd-ports-bugs-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-ports-bugs>, 
	<mailto:freebsd-ports-bugs-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Fri, 06 Jan 2006 15:50:08 -0000

On Thu, Jan 05, 2006 at 10:29:05AM -0500, Vivek Khera wrote:
> On Jan 5, 2006, at 3:32 AM, VANHULLEBUS Yvan wrote:
> 
> >They will probably have to add racoon_enable="YES" in their
> >/etc/rc.conf.
> 
> which is the way ports should work.  period.

Yep, but which is not the way this port worked.
It is good to fix it, but it may be interesting to warn users which
didn't notice that, and had a port which worked "accidentally" !


> >Third, there may be a misunderstanding between racoon_enable (used in
> >racoon.sh) and ike_* values in /etc/defaults/rc.conf.
> 
> you could add compatibility to enable racoon if ike_enable is set,  
> perhaps.

Not as simple: there are 3 variables: ike_enable, ike_program
and ike_flags.

Well, perhaps we could simply enable racoon if ike_enable=YES and
ike_program=/usr/local/sbin/racoon ?


Yvan.

-- 
NETASQ - Secure Internet Connectivity
http://www.netasq.com