Growing list of required(ish) ports

Darren Pilgrim list_freebsd at
Tue Apr 9 13:09:42 UTC 2013

On 2013-04-08 10:22, Florent Peterschmitt wrote:
> Yep, OpenSSH is tiny enought to keep it in base system. It would be a
> big loss not to have it by default, securely installed in the base
> system.

I really wish it wasn't.  Having OpenSSH (and thus OpenSSL) in the base 
means FreeBSD has an outdated version installed by default.  You have to 
install openssl from ports in order to have modern cipher support, TLS 
v1.1/1.2, DTLS, etc.  This puts two sets of openssl libs on the system 
and creates recurrent headaches with builds where the autoconfiguration 
selects the wrong set of libs.

More information about the freebsd-ports mailing list