if kerberos is installed. So far as I'm aware, kerberos aware clients
detect ECONNREFUSED and (if allowed) fall back to the non-kerberos
servers. They do not know how to interpret messages such as
"rlogind: unknown option -k".
I believe Garrett also mentioned this.
Unfortunately, this adds an extra step to bringing up kerberos.
It also stops /var/log/messages getting quite so many useless (and
confusing) error messages when somebody does a port scan on you.
news.notice info should not be sent to /var/log/messages, as news has
its own set of logs and notice is overused by inn
added entries for newsservers (but they're commented out)
This is a lot more robust and handles errors a lot better. It also cleans
up stray, hopeless, or unmodified files rather than leaving them there
forever.
. crate the symlink for /dev/log if required, then
. remove the old socket (savecore might have already created it
accidentally), then
. start syslogd.
(Btw., our test(1) misses an option to test for a socket.)
Fixed some style bugs for cua* and tty*.
Removed superfluous chmod for consolectl.
FIxed a tiny security bug for perfmon and changed the style for
perfmon to match the style of the non-std devices.
>Description:
The sed script in /etc/rc.local that builds the host/kernel ID line
for the message of the day relies on the year not going past 1999.
When the year passes 1999, the ID line is malformed.
Submitted by: Wolfram Schneider <wosch@cs.tu-berlin.de>
>Description:
Applications that rely on getttyent and related calls will
not find entries that are not listed in /etc/ttys. Screen
and xterm (rxvt, color_xterm) will not be able to obtain
unique utmp slots as a result. This isn't a critical problem
but it will keep utilities such as 'finger', 'who' and 'w'
from displaying the correct information.
Closes PR#conf/1270
Submitted by: winter@jurai.net
shipped with freebsd can be changed without modifying the Makefiles directly.
Creates: BOOT_FORCE_COMCONSOLE
BOOT_PROBE_KEYBOARD
BOOT_PROBE_KEYBOARD_LOCK
BOOT_COMCONSOLE (port value for console)
default, so there's no use in running it without any printer
definition in printcap. Also added a bunch of hints about the printer
setup, to guide the admin about the printer setup (handbook,
"apsfilter"), and a commented-out sample setup for a remote printer.
In the same line, add /var/spool/lpd/output to BSD.var.dist since it
is referred to by the "lp" entry in printcap.
- split the "starting network daemons" in half.
- The first half starts things necessary to get full name service up.
- The quota check etc moved from "before network" to after the name
services are running. quotacheck does a while(p=getpwent()) which
isn't real good without YP running...
- moved rwhod a little later to put it with the other network stuff.
- deferred inetd a tad so that it's after ldconfig and dev_mkdb,
otherwise you get logins before you're ready.
Unresolved: named is started before ypserv/ypbind still, but named does
a while(s = getservent()) and while (p=getprotoent()) to suck in the
entire database into memory. This means you cannot have a "+" in the
/etc/services or /etc/protocols files or you get a long hang at boot.
Turn OFF the "small servers" by default. FreeBSD systems should only
serve actively used programs. Jewels like chargen and echo are too
useful in attack scenarios.
