diff options
Diffstat (limited to 'net-vpn')
-rw-r--r-- | net-vpn/strongswan/metadata.xml | 150 |
1 files changed, 45 insertions, 105 deletions
diff --git a/net-vpn/strongswan/metadata.xml b/net-vpn/strongswan/metadata.xml index 9e6793b9791f..72eecce94d3b 100644 --- a/net-vpn/strongswan/metadata.xml +++ b/net-vpn/strongswan/metadata.xml @@ -1,109 +1,49 @@ <?xml version="1.0" encoding="UTF-8"?> <!DOCTYPE pkgmetadata SYSTEM "http://www.gentoo.org/dtd/metadata.dtd"> <pkgmetadata> - <maintainer type="person"> - <email>patrick@gentoo.org</email> - <name>Patrick Lauer</name> - </maintainer> - <maintainer type="person"> - <email>gurligebis@gentoo.org</email> - <name>Bjarke Istrup Pedersen</name> - </maintainer> - <longdescription lang="en"> - StrongSwan is direct descendant of the discontinued FreeS/WAN project. - As an IPsec based VPN solution which is focused on security and ease of - use, it fully implements the IKEv1/IKEv2 protocols, MOBIKE, NAT-Traversal - via UDP encapsulation (incl. port floating) and Dead Peer Detection. It - also fully supports the Linux 2.6 IPsec stack, IPv6, certificates/keys on - Smartcards and virtual IP address pools. - </longdescription> - <use> - <flag name="constraints"> - Enable advanced X.509 constraint checking plugin. - </flag> - <flag name="dhcp"> - Enable server support for querying virtual IP addresses for clients - from a DHCP server. (IKEv2 only) - </flag> - <flag name="eap"> - Enable support for the different EAP modules that is supported. - </flag> - <flag name="farp"> - Enable faking of ARP responses for virtual IP addresses assigned to - clients. (IKEv2 only) - </flag> - <flag name="gcrypt"> - Enable <pkg>dev-libs/libgcrypt</pkg> plugin which provides 3DES, AES, - Blowfish, Camellia, CAST, DES, Serpent and Twofish ciphers along with - MD4, MD5 and SHA1/2 hash algorithms, RSA and DH groups 1,2,5,14-18 and - 22-24(4.4+). Also includes a software random number generator. - </flag> - <flag name="non-root"> - Force IKEv1/IKEv2 daemons to normal user privileges. This might impose - some restrictions mainly to the IKEv1 daemon. Disable only if you really - require superuser privileges. - </flag> - <flag name="openssl"> - Enable <pkg>dev-libs/openssl</pkg> plugin which is required for Elliptic - Curve Cryptography (DH groups 19-21,25,26) and ECDSA. Also provides 3DES, - AES, Blowfish, Camellia, CAST, DES, IDEA and RC5 ciphers along with MD2, - MD4, MD5 and SHA1/2 hash algorithms, RSA and DH groups 1,2,5,14-18 and - 22-24(4.4+) - <pkg>dev-libs/openssl</pkg> has to be compiled with USE="-bindist". - </flag> - <flag name="pkcs11"> - Enable pkcs11 support. - </flag> - <flag name="strongswan_plugins_led"> - Enable support for the led plugin. - </flag> - <flag name="strongswan_plugins_lookip"> - Enable support for the lookip plugin. - </flag> - <flag name="strongswan_plugins_systime-fix"> - Enable support for the systime-fix plugin. - </flag> - <flag name="strongswan_plugins_unity"> - Enable support for the unity plugin. - </flag> - <flag name="strongswan_plugins_vici"> - Enable support for the vici plugin. - </flag> - <flag name="strongswan_plugins_blowfish"> - Enable support for the blowfish plugin. - </flag> - <flag name="strongswan_plugins_ccm"> - Enable support for the ccm plugin. - </flag> - <flag name="strongswan_plugins_ctr"> - Enable support for the ctr plugin. - </flag> - <flag name="strongswan_plugins_gcm"> - Enable support for the gcm plugin. - </flag> - <flag name="strongswan_plugins_ha"> - Enable support for the ha plugin. - </flag> - <flag name="strongswan_plugins_ipseckey"> - Enable support for the ipseckey plugin. - </flag> - <flag name="strongswan_plugins_ntru"> - Enable support for the ntru plugin. - </flag> - <flag name="strongswan_plugins_padlock"> - Enable support for the padlock plugin. - </flag> - <flag name="strongswan_plugins_rdrand"> - Enable support for the rdrand plugin. - </flag> - <flag name="strongswan_plugins_unbound"> - Enable support for the unbound plugin. - </flag> - <flag name="strongswan_plugins_whitelist"> - Enable support for the whitelist plugin. - </flag> - </use> - <upstream> - <remote-id type="cpe">cpe:/a:strongswan:strongswan</remote-id> - </upstream> + <maintainer type="person"> + <email>patrick@gentoo.org</email> + <name>Patrick Lauer</name> + </maintainer> + <maintainer type="person"> + <email>gurligebis@gentoo.org</email> + <name>Bjarke Istrup Pedersen</name> + </maintainer> + <longdescription lang="en"> + StrongSwan is direct descendant of the discontinued FreeS/WAN project. + As an IPsec based VPN solution which is focused on security and ease of + use, it fully implements the IKEv1/IKEv2 protocols, MOBIKE, NAT-Traversal + via UDP encapsulation (incl. port floating) and Dead Peer Detection. It + also fully supports the Linux 2.6 IPsec stack, IPv6, certificates/keys on + Smartcards and virtual IP address pools. + </longdescription> + <use> + <flag name="constraints">Enable advanced X.509 constraint checking plugin</flag> + <flag name="dhcp">Enable server support for querying virtual IP addresses for clients from a DHCP server. (IKEv2 only)</flag> + <flag name="eap">Enable support for the different EAP modules that are supported</flag> + <flag name="farp">Enable faking of ARP responses for virtual IP addresses assigned to clients (IKEv2 only)</flag> + <flag name="gcrypt">Enable <pkg>dev-libs/libgcrypt</pkg> plugin which provides 3DES, AES, Blowfish, Camellia, CAST, DES, Serpent and Twofish ciphers along with MD4, MD5 and SHA1/2 hash algorithms, RSA and DH groups 1,2,5,14-18 and 22-24(4.4+). Also includes a software random number generator.</flag> + <flag name="non-root">Force IKEv1/IKEv2 daemons to normal user privileges. This might impose some restrictions mainly to the IKEv1 daemon. Disable only if you really require superuser privileges.</flag> + <flag name="openssl">Enable <pkg>dev-libs/openssl</pkg> plugin which is required for Elliptic Curve Cryptography (DH groups 19-21,25,26) and ECDSA. Also provides 3DES, AES, Blowfish, Camellia, CAST, DES, IDEA and RC5 ciphers along with MD2, MD4, MD5 and SHA1/2 hash algorithms, RSA and DH groups 1,2,5,14-18 and 22-24(4.4+) <pkg>dev-libs/openssl</pkg> has to be compiled with USE="-bindist".</flag> + <flag name="pkcs11">Enable pkcs11 support</flag> + <flag name="strongswan_plugins_led">Enable support for the led plugin</flag> + <flag name="strongswan_plugins_lookip">Enable support for the lookip plugin</flag> + <flag name="strongswan_plugins_systime-fix">Enable support for the systime-fix plugin</flag> + <flag name="strongswan_plugins_unity">Enable support for the unity plugin</flag> + <flag name="strongswan_plugins_vici">Enable support for the vici plugin</flag> + <flag name="strongswan_plugins_blowfish">Enable support for the blowfish plugin</flag> + <flag name="strongswan_plugins_ccm">Enable support for the ccm plugin</flag> + <flag name="strongswan_plugins_ctr">Enable support for the ctr plugin</flag> + <flag name="strongswan_plugins_gcm">Enable support for the gcm plugin</flag> + <flag name="strongswan_plugins_ha">Enable support for the ha plugin</flag> + <flag name="strongswan_plugins_ipseckey">Enable support for the ipseckey plugin</flag> + <flag name="strongswan_plugins_ntru">Enable support for the ntru plugin</flag> + <flag name="strongswan_plugins_padlock">Enable support for the padlock plugin</flag> + <flag name="strongswan_plugins_rdrand">Enable support for the rdrand plugin</flag> + <flag name="strongswan_plugins_unbound">Enable support for the unbound plugin</flag> + <flag name="strongswan_plugins_whitelist">Enable support for the whitelist plugin</flag> + </use> + <upstream> + <remote-id type="cpe">cpe:/a:strongswan:strongswan</remote-id> + </upstream> </pkgmetadata> |