On 2015/10/21 22:30, Theo de Raadt wrote:
> >Already, iked is started after /usr has been mounted, so why the
> >static requirement?
>
> Historic theories about ipsec protected nfs? Who knows.
>
> >> --- etc/rc 18 Oct 2015 21:33:18 - 1.467
> >> +++ etc/rc 20 Oct 2015 18:03:58 -
> >>
>Already, iked is started after /usr has been mounted, so why the
>static requirement?
Historic theories about ipsec protected nfs? Who knows.
>> --- etc/rc 18 Oct 2015 21:33:18 - 1.467
>> +++ etc/rc 20 Oct 2015 18:03:58 -
>> @@ -353,7 +353,7 @@ make_keys
>>
>> echo -n 'start
On 2015/10/20 23:00, Sebastian Benoit wrote:
> Christian Weisgerber(na...@mips.inka.de) on 2015.10.20 20:46:12 +:
> > On 2015-10-20, Reyk Floeter wrote:
> >
> > > For historical reasons, isakmpd and iked are compiled static:
> > > people used NFS over ipsec.
isakmpd is an odd one. Reading cv
Christian Weisgerber(na...@mips.inka.de) on 2015.10.20 20:46:12 +:
> On 2015-10-20, Reyk Floeter wrote:
>
> > For historical reasons, isakmpd and iked are compiled static:
> > people used NFS over ipsec.
> >
> > Is anyone still using this? Is it more than one person?
> >
> > Otherwise I'd su
On 2015-10-20, Reyk Floeter wrote:
> For historical reasons, isakmpd and iked are compiled static:
> people used NFS over ipsec.
>
> Is anyone still using this? Is it more than one person?
>
> Otherwise I'd suggest to make iked dynamic.
Already, iked is started after /usr has been mounted, so w
Hi,
For historical reasons, isakmpd and iked are compiled static:
people used NFS over ipsec.
Is anyone still using this? Is it more than one person?
Otherwise I'd suggest to make iked dynamic.
(btw., isakmpd is a bit special since it needs the ipsecctl dance, so
I am not touching it - I'm a b