On 2018/01/21 12:25, Daniel Jakots wrote: > > sslh supports OpenVPN. Our OpenVPN README says > (tail -n1 /usr/ports/net/openvpn/pkg/README): > chroot /var/empty > > So it's possible that users may run two software both > chrooting /var/empty. Can't it be a security 'imperfectness'?
And about 12 things in base. Not a problem afaik, it is definitely not supposed to be writable.. On 2018/01/21 19:10, Klemens Nanni wrote: > Instead of removing all the conditionals from the Makefile and passing > default values through make's `-D', USE_GMAKE is all you need. Either way works for me there. It's nice to have less patching, but it's also nice to avoid using gmake. > Combined this reduces a lot of noise; and if we can live with "v1.19" > instead of "1.19" in sslh's output and manpage, even the now introduced > genver.sh patch can be dropped. I think it's preferable not to patch genver.sh, just leave it how upstream wrote it.