Growing list of required(ish) ports
Darren Pilgrim
list_freebsd at bluerosetech.com
Tue Apr 9 13:09:42 UTC 2013
On 2013-04-08 10:22, Florent Peterschmitt wrote:
> Yep, OpenSSH is tiny enought to keep it in base system. It would be a
> big loss not to have it by default, securely installed in the base
> system.
I really wish it wasn't. Having OpenSSH (and thus OpenSSL) in the base
means FreeBSD has an outdated version installed by default. You have to
install openssl from ports in order to have modern cipher support, TLS
v1.1/1.2, DTLS, etc. This puts two sets of openssl libs on the system
and creates recurrent headaches with builds where the autoconfiguration
selects the wrong set of libs.
More information about the freebsd-ports
mailing list