> I'd prefer not to support two ipsec solutions in Ubuntu, so if we moved to strongswan, we would want to demote ipsec-tools. What would it take to demote ipsec-tools?
Yes, I would like ipsec-tools demoted as a part of this (and I was actually surprised that it's main).
> Is there a technical reason why ipsec-tools is not good enough?
ipsec-tools hasn't been touched in years. strongSwan upstream on the other hand are actively fixing the bugs I report on a daily basis:
- https:/ /wiki.strongswa n.org/projects/ strongswan/ activity
strongSwan lets us do other cool things, like TNC (see pages 30→44, onwards): http:// strongswan. org/docs/ OSTD_2013. pdf
> I'd prefer not to support two ipsec solutions in Ubuntu, so if we moved to strongswan, we would want to demote ipsec-tools. What would it take to demote ipsec-tools?
Yes, I would like ipsec-tools demoted as a part of this (and I was actually surprised that it's main).