summaryrefslogtreecommitdiff
diff options
context:
space:
mode:
authorRene Mayrhofer <rene@mayrhofer.eu.org>2010-05-25 19:49:27 +0000
committerRene Mayrhofer <rene@mayrhofer.eu.org>2010-05-25 19:49:27 +0000
commit174142ce391dd561b42a2fb2d52333d9034de03d (patch)
tree617437c8055c784edb3e5023788d5731c9a31e46
parentdf6e66448db4e124704548f799f775f0bda7a203 (diff)
downloadvyos-strongswan-174142ce391dd561b42a2fb2d52333d9034de03d.tar.gz
vyos-strongswan-174142ce391dd561b42a2fb2d52333d9034de03d.zip
Disable other kernel interfaces again, KLIPS doesn't even build...
Diffstat
-rw-r--r--debian/changelog4
-rwxr-xr-xdebian/rules2
2 files changed, 1 insertions, 5 deletions
diff --git a/debian/changelog b/debian/changelog
index 2084a9556..7b28e67e6 100644
--- a/debian/changelog
+++ b/debian/changelog
@@ -6,10 +6,6 @@ strongswan (4.4.0-1) unstable; urgency=low
user to new system user strongswan (with nogroup) after startup
is still disabled until this can be integrated with build-time
determination of uid.
- * Enable PF_KEY and KLIPS kernel interfaces as an alternative to
- the standard NETKEY interface. This should allow interoperability
- with the KLIPS kernel module built by openswan modules source
- packages.
-- Rene Mayrhofer <rmayr@debian.org> Tue, 25 May 2010 21:03:52 +0200
diff --git a/debian/rules b/debian/rules
index 0ed3462fe..dee0a6c96 100755
--- a/debian/rules
+++ b/debian/rules
@@ -13,7 +13,6 @@ export DEB_BUILD_HARDENING=1
CONFIGUREARGS := --prefix=/usr --sysconfdir=/etc --localstatedir=/var \
--libexecdir=/usr/lib \
--with-capabilities=libcap \
- --enable-kernel-pfkey --enable-kernel-klips \
--enable-ldap --enable-curl \
--enable-nonblocking --enable-thread \
--enable-smartcard --enable-cisco-quirks \
@@ -25,6 +24,7 @@ CONFIGUREARGS := --prefix=/usr --sysconfdir=/etc --localstatedir=/var \
--enable-sql --enable-integrity-test \
--enable-nm --enable-ha --enable-dhcp --enable-farp
# --with-user=strongswan --with-group=nogroup \
+ # --enable-kernel-pfkey --enable-kernel-klips \
# Could enable --enable-nat-transport, but this is actually insecure,
# so don't!
# And for --enable-eap-sim we would need the library, which we don't
generated by cgit v1.2.3 (git 2.39.1) at 2024-11-13 16:11:03 +0000