Comment 4 for bug 1266066

> Is there a technical reason why ipsec-tools is not good enough?

ipsec-tools hasn't been touched in years. strongSwan upstream on the other hand are actively fixing the bugs I report on a daily basis:

- https://wiki.strongswan.org/projects/strongswan/activity

strongSwan lets us do other cool things, like TNC (see pages 30→44, onwards): http://strongswan.org/docs/OSTD_2013.pdf

> I'd prefer not to support two ipsec solutions in Ubuntu, so if we moved to strongswan, we would want to demote ipsec-tools. What would it take to demote ipsec-tools?

Yes, I would like ipsec-tools demoted as a part of this (and I was actually surprised that it's main).