Commit Graph

771 Commits

Author SHA1 Message Date
Yaroslav Tykhiy
c8a0dfab83 Add an rc.d script to start pfsync at the right moment of the
system boot, and hook it up in the system.

The separate script is needed because in the presence of various
interface lists in rc.conf ($network_interfaces, $cloned_interfaces,
$sppp_interfaces, $gif_interfaces, more to come) it is hard to start
them orderly, so that pfsync is brought up after its syncdev, which
is required for the proper startup of pfsync.

Discussed with:	mlaier on -pf
MFC after:	5 days
2005-10-02 18:59:02 +00:00
Yaroslav Tykhiy
d11122e73a Add firewall-related xrefs to SEE ALSO. 2005-10-02 08:39:41 +00:00
Yaroslav Tykhiy
f0fdbb10ea Minor clarifications and fixes to wording, grammar, and markup
around ${network_interfaces}.
2005-09-28 13:07:43 +00:00
Ruslan Ermilov
e64bbde9b4 Sort MAN. 2005-09-28 07:31:18 +00:00
Robert Watson
1a51e01115 Add a new rc.conf entry, kerberos5_server_flags, which allows the
administrator to specify additional start-up flags to the Kerberos
5 Authentication Server.

MFC after:	3 days
2005-09-20 11:13:28 +00:00
Giorgos Keramidas
a56e23da23 A single `*' character doesn't disable *ANY* form of authentication.
Make sure that this is clearly stated.

Prodded by:	simon, Gavin Atkinson <gavin.atkinson@ury.york.ac.uk>
2005-09-19 16:32:27 +00:00
Giorgos Keramidas
36cc06ff31 Explain the use of `*' in master.passwd and that it's slightly
different from the use of `*' in /etc/passwd.

PR:		docs/86234
Submitted by:	Paul Hoffman <phoffman@above.proper.com>
MFC after:	1 week
2005-09-18 15:40:02 +00:00
Ralf S. Engelschall
724447ac41 Fix system shutdown timeout handling by again supporting longer running
shutdown procedures (which have a duration of more than 120 seconds).

We have two user-space affecting shutdown timeouts: a "soft" one in
/etc/rc.shutdown and a "hard" one in init(8). The first one can be
configured via /etc/rc.conf variable "rcshutdown_timeout" and defaults
to 30 seconds. The second one was originally (in 1998) intended to be
configured via sysctl(8) variable "kern.shutdown_timeout" and defaults
to 120 seconds.

Unfortunately, the "kern.shutdown_timeout" was declared "unused" in 1999
(as it obviously is actually not used within the kernel itself) and
hence was intentionally but misleadingly removed in revision 1.107 from
init_main.c. Kernel sysctl(8) variables are certainly a wrong way to
control user-space processes in general, but in this particular case the
sysctl(8) variable should have remained as it supports init(8), which
isn't passed command line flags (which in turn could have been set via
/etc/rc.conf), etc.

As there is already a similar "kern.init_path" sysctl(8) variable which
directly affects init(8), resurrect the init(8) shutdown timeout under
sysctl(8) variable "kern.init_shutdown_timeout". But this time document
it as being intentionally unused within the kernel and used by init(8).
Also document it in the manpages init(8) and rc.conf(5).

Reviewed by: phk
MFC after: 2 weeks
2005-09-15 13:16:07 +00:00
Joel Dahl
9e40ae709f Remove superfluous reference to the FreeBSD handbook.
Approved by:	brueffer (mentor)
2005-09-14 16:32:21 +00:00
Yaroslav Tykhiy
e5b3a11677 Reflect a recent change in /etc/rc.subr that made ``-M''
appear in tmpmfs and varmfs default flags explicitly.
Explain why -M is good for these file systems (it maximizes
performance and makes the system more stable at low memory
conditions by reducing the chance of thrashing.)

Bump .Dd accordingly.

MFC after:	3 days
2005-09-08 09:22:21 +00:00
Colin Percival
ff69e5b71e Teach portsnap how to ignore unwanted parts of the ports tree. A line
of the form "REFUSE foo" in portsnap.conf will result in parts of the
tree matching "^foo" being (a) not extracted by "portsnap extract", (b)
not updated by "portsnap update", and (c) not having any patches or new
ports downloaded by "portsnap fetch" or "portsnap cron". The example
shown in portsnap.conf demonstrates ignoring all the language categories.

As mentioned in portsnap.conf.5, the use of an imcomplete ports tree is
not officially supported; but this is something which many users have
requested, so I'm adding it anyway.

PR:		bin/85619 (but not the patch provided therein)
MFC after:	1 month
2005-09-06 19:28:37 +00:00
Scott Long
78b6525e1e Remove a stale manpage. 2005-08-30 16:14:25 +00:00
Brooks Davis
41f7ee42ae - Remove the removable_interfaces variable. /etc/pccard_ether will
now run on any interface.
- Add a new ifconfig_<ifn> keyword, NOAUTO which prevents configuration
  of an interface at boot or via /etc/pccard_ether.  This allows
  /etc/rc.d/netif to be used to start and stop an interface on a purely
  manual basis.  The decision to affect pccard_ether may be revisited at
  a later date.

Requested by:	imp, gallatin (removable_interfaces)
Discussed with:	sam, Randy Bush (NOAUTO)
2005-08-24 01:23:49 +00:00
Brooks Davis
069dfe8315 Refer to the OpenBSD dhclient instead of the ISC dhclient.
Reported by:	Bob Johnson <bob89 at eng dot ufl dot edu>
PR:		84963
2005-08-18 19:39:27 +00:00
Pawel Jakub Dawidek
b12cfed25c Add scripts for GELI device configuration on boot.
rc.d/geli - configures encryption (ask for passphrases, etc.);
rc.d/geli2 - is called after file systems are mounted and mark devices for
             detach on last close.

Sponsored by:	Wheel Sp. z o.o.
		http://www.wheel.pl
MFC after:	3 days
2005-08-14 18:02:22 +00:00
Ceri Davies
2273bbfd7a Correct some grammar. 2005-08-11 10:32:05 +00:00
Warner Losh
3756fc3aaa Document methods people use to load linux shared libraries in FreeBSD
binaries.  A very neat trick.
2005-08-10 21:44:26 +00:00
Colin Percival
6fb01948ee Add portsnap to the base system. This is a secure, easy to use,
fast, lightweight, and generally good way for users to keep their
ports trees up to date.

This is version 0.9.4 from the ports tree (sysutils/portsnap) with
the following changes:
1. The experimental pipelined http code is enabled.  No seatbelts
in -CURRENT. (^_^)
2. The working directory has moved from /usr/local/portsnap to
/var/db/portsnap (as discussed on -arch two days ago).
3. Portsnap now fetches a list of mirrors (distributed as DNS SRV
records) and selects one randomly.  This should help to avoid the
uneven loading which plagues the cvsup mirror network.
4. The license is now 2-clause BSD instead of 3-clause BSD.
5. Various incidental changes to make portsnap fit into the base
system's build mechanics.

X-MFC-After:    6.0-RELEASE
X-MFC-Before:   5.5-RELEASE
X-MFC-To:       RELENG_6, RELENG_5, ports
discussed on:   -arch and several other places
"yes please" from:      simon, remko, flz, Diane Bruce
thinks this is a great idea:    bsdimp
Hopes he didn't forget any files:       cperciva
2005-08-08 20:10:06 +00:00
Poul-Henning Kamp
9a24dfc72e Put hesiod.conf(5) under build option YES_HESIOD 2005-08-06 06:57:25 +00:00
Pawel Jakub Dawidek
49ad116fcc Teach rc.d/encswap script how to use geli(8) for swap encryption.
MFC after:	3 days
2005-08-05 23:38:51 +00:00
Pawel Jakub Dawidek
6e6ecc0e56 rc.conf(5) update - gbde_swap_enable variable has been removed.
Reminded by:	dougb
2005-08-05 07:09:53 +00:00
Brooks Davis
fe6f40dd76 - Document network_interfaces=auto (the default!).
- Remove documentation of pccard_ifconfig as it is now gone.
 - Document pccard_ifconfig's replacement ifconfig_DEFAULT.
2005-08-02 02:24:47 +00:00
Giorgos Keramidas
6fb9b618f5 Fix all the spelling mistakes I could find in the man pages for words
that have at least 3 characters.

MFC after:	1 week
Thanks to:	Music band ``Chingon''
		for keeping me company while searching for these.
2005-07-31 03:30:48 +00:00
Giorgos Keramidas
4c8df2df29 Update SEE ALSO section.
PR:		docs/84273
Submitted by:	Gary W. Swearingen
2005-07-29 11:31:16 +00:00
Sam Leffler
e7af1f56e9 document ENABLE_WPA_SUPPLICANT_EAPOL
Approved by:	re (scottl)
2005-07-08 19:26:55 +00:00
Hiten Pandya
a1601503f5 Use 'manual page' instead of 'man page' for consistency.
Approved by:	re (hrs)
2005-06-30 13:18:15 +00:00
Ruslan Ermilov
a4be0b3cc1 (Mostly) markup fixes.
Approved by:	re (blanket)
2005-06-16 18:46:17 +00:00
Ruslan Ermilov
4f06896130 Assorted markup fixes and minor wordsmithing.
Approved by:	re
2005-06-15 13:31:23 +00:00
Ruslan Ermilov
03550c9c25 Add missing .Ed call that was fatal for the rest of manpage.
Bump document date.

Approved by:	re
2005-06-14 14:43:36 +00:00
Brooks Davis
7bc4ff02b7 Update to the new world of network configuration. The documenation is
slightly ahead of reality as rc support for WPA is only partialy in
place.

Submitted by:	Jeremie Le Hen <jeremie at le-hen dot org>
2005-06-08 00:15:36 +00:00
Brooks Davis
1e03bb0312 Remove default and documenation for pccard_ether_delay since I removed
it from /etc/pccard_ether.

Submitted by:	Jeremie Le Hen <jeremie at le-hen dot org>
2005-06-08 00:05:58 +00:00
Giorgos Keramidas
d854ee0742 Add manpages for devfs.conf and devfs.rules. These have been
initially written by Roland, but hacked for a while by me.  Any
good parts are the results of Roland's hard work.  Any typos or
style mistakes are mine.

Submitted by:	Roland Smith <rsmith@xs4all.nl>
PR:		docs/63808, docs/75433, docs/80458, docs/80459
MFC after:	2 weeks
2005-05-17 17:52:27 +00:00
Alexander Leidinger
540fac8974 - document powerd_flags too
- add a reference to powerd(8)

Approved by:	mentor (joerg)
2005-05-01 08:34:01 +00:00
Max Laier
1b301a7fa5 Typeo.
Submitted by:	Emil Mikulic
2005-04-25 10:14:26 +00:00
Bjoern A. Zeeb
313d027725 Add note to remove nis entries when compiling with NO_NIS.
Reviewed by:	ru (initial version), simon (updated version)
Approved by:	pjd (mentor)
2005-04-24 20:24:59 +00:00
Gleb Smirnoff
4f802d7eeb Document bsnmpd related options.
Reminded by:	maxim
2005-04-18 07:39:53 +00:00
Poul-Henning Kamp
d668f22a0c Add NO_DICT handle. Saves almost 3.5 MB installed. 2005-04-13 10:02:58 +00:00
Nate Lawson
ffa6cde40d Add note about powerd(8)
Submitted by:	netchild
2005-03-31 06:02:44 +00:00
John Baldwin
9c3d0cb656 Belatedly remove the drivers.conf(5) man page. The actual files and
supporting scripts were removed as part of the splitfs floppy rework.
2005-03-23 15:34:45 +00:00
Tom Rhodes
bc8f83f849 Remove mention of mac_lomac(4) policy from here too. 2005-03-12 21:10:42 +00:00
Brooks Davis
b2d18dad81 Document the newsyslog_* and chkprintcap_* variables I added yesterday. 2005-03-02 18:44:56 +00:00
Tom Rhodes
32b56c9d75 Document NO_RCMDS, bump doc date. 2005-03-02 05:22:27 +00:00
David E. O'Brien
40f3723da6 Fix a grammar nit of mine. 2005-02-28 18:32:25 +00:00
David E. O'Brien
db9eea4d0e -mandoc style tweak rev 1.13.
Submitted by:	ru
2005-02-28 18:28:58 +00:00
David E. O'Brien
9146ea4e43 Catch up with the latest policies on knobs. 2005-02-28 09:42:08 +00:00
Ruslan Ermilov
36a142c455 Expand contractions. 2005-02-13 23:45:54 +00:00
Ruslan Ermilov
0227791b40 Expand *n't contractions. 2005-02-13 22:25:33 +00:00
David E. O'Brien
afdeb6a183 Expand BSS. 2005-02-11 07:37:25 +00:00
Dag-Erling Smørgrav
b83d741b1c Fully document (no)?(device|option)s?.
This page should probably be repocopied to src/usr.sbin/config/.
2005-02-10 14:26:21 +00:00
Ruslan Ermilov
6b806d21d1 Fixed the misplaced $FreeBSD$. 2005-02-09 18:07:17 +00:00