This reverts commit 4df19f1b1e84c07836f1da2ab5a27c92c6a96f63.
It's time to enable the verification. the packagaes are being
signed since the original commit went in and all tests have
shown that this works as expected. Staying safe, you know...
Fixes spurious overwrite of a standard config, but also doesn't
update the standards anymore in a running installation. Install
media is unaffected from this change. Users that have had their
standard config overwritten need to rewrite the file accordingly:
/usr/local/etc/config.xml
It also enables users to use their own sample configs on a running
installation from now on. Might add a knob in the GUI to do e.g.
`use this config as the factory reset configuration'. :)
While there, move the pkg-related Makefile glue into its own
file in the subdirectory for clarity.
Signing is going on in the background, syncing the fingerprint
into the system, but the actual verification will wait until
the next major release. This is pretty neat in any case...
We now use /usr/local/opnsense/version/xxx as our version database.
Apart from the core package, opnsense-update(8) also puts its own
version information in there. To stay somewhat consistent, the
version file should resemble the package name, even though that
looks strange in our case: /usr/local/opnsense/version/opnsense.
It's just that /usr/local/etc is too open and might clash with
other things in the future.
