Hi,
In the 2.6 kernel configuration, the help texts for all the
IPsec-related options say "Say Y unless you know what you are doing.".
Looks fine for people who applied the IPsec patch to a kernel which
comes without it, but now that it's in stock, it's probably not very
useful to force all users to use IPsec.
Just FYI,
Wilmer van der Gaast.
--
+-------- .''`. - -- ---+ + - -- --- ---- ----- ------+
| lintux : :' : lintux.cx | | OSS Programmer http://www.bitlbee.org |
| at `. `~' debian.org | | http://www.algoritme.nl http://www.lintux.cx |
+--- -- - ` ---------------+ +------ ----- ---- --- -- - +
On Sat, 15 Nov 2003, Wilmer van der Gaast wrote:
> IPsec-related options say "Say Y unless you know what you are doing.".
> Looks fine for people who applied the IPsec patch to a kernel which
> comes without it, but now that it's in stock, it's probably not very
> useful to force all users to use IPsec.
Nobody is being forced to use it: the advice is provided to help people
get IPsec working properly.
- James
--
James Morris
<[email protected]>
James Morris ([email protected]) wrote:
> > IPsec-related options say "Say Y unless you know what you are doing.".
> > Looks fine for people who applied the IPsec patch to a kernel which
> > comes without it, but now that it's in stock, it's probably not very
> > useful to force all users to use IPsec.
> Nobody is being forced to use it: the advice is provided to help people
> get IPsec working properly.
>
Yes, very true. But now that the patch is in 2.6 by default, I think the
situation changes.
Just imagine a person who doesn't even know what IPsec is, trying to
configure a 2.6 kernel. "IP: AH tranformation.. What's that? Let's check
the help page. Oh, it says I should just say Yes. Okay, let's do that."
Shouldn't the text "If unsure, say Y." be more like "If you want to use
IPsec, you need this."? Possibly with an addition like "If you don't
know what IPsec is, you don't need it."?
Greetings,
Wilmer v/d Gaast.
--
+-------- .''`. - -- ---+ + - -- --- ---- ----- ------+
| lintux : :' : lintux.cx | | OSS Programmer http://www.bitlbee.org |
| at `. `~' debian.org | | http://www.algoritme.nl http://www.lintux.cx |
+--- -- - ` ---------------+ +------ ----- ---- --- -- - +
On Mon, 17 Nov 2003 15:57:23 +0100, Wilmer van der Gaast said:
> Shouldn't the text "If unsure, say Y." be more like "If you want to use
> IPsec, you need this."? Possibly with an addition like "If you don't
> know what IPsec is, you don't need it."?
A lot of people don't have the foggiest idea what IPsec is, but do
know they're trying to use a VPN. Probably need to include that in there,
if you're trying to do anything with the help text.
Quoting [email protected]:
> On Mon, 17 Nov 2003 15:57:23 +0100, Wilmer van der Gaast said:
>
> > Shouldn't the text "If unsure, say Y." be more like "If you want to use
> > IPsec, you need this."? Possibly with an addition like "If you don't
> > know what IPsec is, you don't need it."?
>
> A lot of people don't have the foggiest idea what IPsec is, but do
> know they're trying to use a VPN. Probably need to include that in there,
> if you're trying to do anything with the help text.
Agreed with both of the above, as many people don't need IPsec, so why should
they be incouraged (or rather, told to use) IPsec (note that the knowledgable
ones will probably know that they /don't/ need it, and so remove it, but that's
my point ;)).
-sandalle
--
PGP Key Fingerprint: FCFF 26A1 BE21 08F4 BB91 FAED 1D7B 7D74 A8EF DD61
http://search.keyserver.net:11371/pks/lookup?op=get&search=0xA8EFDD61
-----BEGIN GEEK CODE BLOCK-----
Version: 3.12
GCS/E/IT$ d-- s++:+>: a-- C++(+++) BL++++VIS>$ P+(++) L+++ E-(---) W++ N+@ o?
K? w++++>-- O M-@ V-- PS+(+++) PE(-) Y++(+) PGP++(+) t+() 5++ X(+) R+(++)
tv(--)b++(+++) DI+@ D++(+++) G>+++ e>+++ h---(++) r++ y+
------END GEEK CODE BLOCK------
Eric Sandall | Source Mage GNU/Linux Developer
[email protected] | http://www.sourcemage.org/
http://eric.sandall.us/ | SysAdmin @ Inst. Shock Physics @ WSU
http://counter.li.org/ #196285 | http://www.shock.wsu.edu/
----------------------------------------------------------------
This message was sent using IMP, the Internet Messaging Program.