Commit Graph

3406 Commits

Author SHA1 Message Date
Gordon Tetlow
5e6fcb8ccc Correct comment. We use rpcbind now, not portmap
Submitted by:	Mike Makonnen <makonnen@pacbell.net>
2002-08-09 17:34:13 +00:00
Gordon Tetlow
e4bc448975 Correct comment
Submitted by:	Mike Makonnen <makonnen@pacbell.net>
2002-08-09 17:33:07 +00:00
Ruslan Ermilov
4e17db5b58 We no longer have a COPY. 2002-08-07 16:01:06 +00:00
Jake Burkholder
2e55bb64c3 Add example entries for ttya and ttyb (sab). 2002-08-04 19:16:13 +00:00
Gregory Neil Shapiro
b31d4126e3 If all file systems are marked nosuid, the line:
MP=`mount -t ufs | grep -v " nosuid" | awk '{ print $3 }' | sort`

sets ${MP} to an empty string so the next line:

	set ${MP}

actually just dumps all of the shells variables to stdout (and therefore
the security report).  Fixed by surrounding the code which goes through the
mounts with a test for an empty string before using ${MP}.

Reviewed by:	brian
MFC after:	3 days
2002-08-03 22:33:34 +00:00
Robert Watson
844a8917d6 Introduce support for Mandatory Access Control and extensible
kernel access control.

Create directories for per-policy include files.

Obtained from:	TrustedBSD Project
Sponsored by:	DARPA, NAI Labs
2002-08-01 22:37:08 +00:00
Hajimu UMEMOTO
ec2409ba60 FreeBSD has setkey in different location from NetBSD.
Submitted by:	Mike Makonnen <makonnen@pacbell.net>
2002-07-31 16:39:19 +00:00
Marc Fonvieille
5fddf8bfc1 Correct URL to the Handbook
MFC after:	1 week
2002-07-31 10:05:37 +00:00
Ruslan Ermilov
d2893b161b Drop support for COPY, -c has been the default mode of install(1)
for a long time now.

Approved by:	bde
2002-07-29 09:40:17 +00:00
Dima Dorfman
527597b2d9 Stock -current has more than 300 files in /etc, so 255 inodes for the
/etc filesystem isn't enough; consequently, add "-i 4096" to the newfs
command for /etc.  This results in 1022 inodes, which should be enough
for the forseeable future (although I don't know why we would ever
have more than 1000 files in a default /etc).

Silence by:	-current
2002-07-28 03:41:53 +00:00
Dima Dorfman
cfab43190a Add a period to the end of the "starting" message to be consistent
with the rest of the output during a boot.
2002-07-28 03:38:10 +00:00
Warner Losh
1c367fb5b2 Add a generic NANOSPEED wi card.
Submitted by: matt peterson

While I'm here, kill the flags 0x10000 on all the prism based cards.
Both stable and current figure this out on their own and we've had at
least one releases where this is the case.
2002-07-26 06:12:14 +00:00
Hajimu UMEMOTO
dcaecffe69 Change the default setting of an IPv4-mapped IPv6 address to off.
Requested by:	many people
2002-07-25 15:44:01 +00:00
Hajimu UMEMOTO
9067589d53 be able to configure to run an IPv6 routing daemon even on
an end node (sync with rc.network6 1.30).

Approved by:	gordon
2002-07-21 19:12:21 +00:00
Ruslan Ermilov
30b92dec43 sys.mk no longer includes bsd.own.mk. 2002-07-20 10:56:00 +00:00
Ruslan Ermilov
bff0acee63 Install scripts via FILES (purposedly not via SCRIPTS that would
strip the suffixes).
2002-07-18 12:33:01 +00:00
Ruslan Ermilov
0b87f79976 s/${INSTALL} -c/${INSTALL} ${COPY}/ 2002-07-18 12:07:49 +00:00
Warner Losh
285e939e1e The Compaq WL200 is a CL-PD6729 based pci card with a prism 2 pcmcia
card behind it (without the pcmcia form factor).  This entry gets to
the point of attaching, but there's something wrong with the '29
support, so it doesn't quite work yet.
2002-07-18 06:01:35 +00:00
Dima Dorfman
dacf6a1e22 Remove spurious "echo '.'". 2002-07-18 05:00:23 +00:00
Brian S. Dean
9f0af70eb1 Apply same fix as Rev 1.19 of /etc/rc.diskless2: create sendmail
required directories if sendmail_enable is not set to "none".

Suggested by:   gordon
2002-07-18 05:00:22 +00:00
Doug Barton
d45ed36711 Anonymize the "portmap" program to get better compatibility with
rpcbind in -current.

Submitted by:   Alexander Kabaev <ak03@gte.com>
2002-07-18 05:00:21 +00:00
Doug Barton
de66529e70 Make nisdomainname=NO DTRT
Submitted by:   des, via Mike Makonnen <makonnen@pacbell.net>
2002-07-18 05:00:20 +00:00
Doug Barton
4264c30c0d Cleanup some pollution from the NetBSD sync, and add gif setup.
Submitted by:   Mike Makonnen <makonnen@pacbell.net>
2002-07-18 05:00:19 +00:00
Gordon Tetlow
8abdee58c7 Fix a typo that caused dhclient not to work.
Submitted by:   Dennis Kristensen <snicki@snicki.dk>
Reviewed by:    Mike Makonnen <makonnen@pacbell.net>
2002-07-18 05:00:18 +00:00
Gordon Tetlow
242bd45fb4 Merge in all the changes that Mike Makonnen has been maintaining for a
while. This is only the script pieces, the glue for the build comes next.

Submitted by:   Mike Makonnen <makonnen@pacbell.net>
Reviewed by:    silence on -current and -hackers
Prodded by:     rwatson
2002-07-18 05:00:17 +00:00
Hajimu UMEMOTO
8abac11f6e be able to configure to run an IPv6 routing daemon even on
an end node.

Requested by:	Masachika ISHIZUKA <ishizuka@ish.org>
MFC after:	1 week
2002-07-18 05:00:16 +00:00
Ruslan Ermilov
661fc9ee4d Removed no longer used share/examples/diskless/* dirs (forgotten
by luigi@) and never used share/examples/kld/dyn_sysctl/module.
2002-07-11 07:15:36 +00:00
Josef Karthauser
e044f137e0 Rename 'usio' to 'ucom'.
Spotted by:	akiyama
2002-07-10 16:07:33 +00:00
Gordon Tetlow
e321e75ec9 Remove debugging nit
Submitted by:	bmah
2002-07-08 21:04:16 +00:00
Peter Wemm
c00f7bc28b GRRR! rc.* cannot do an "exit 0" or it aborts the entire /etc/rc process.
We do a '. /etc/rc.syscons' - not run it in a seperate shell.
2002-07-08 04:03:21 +00:00
Gordon Tetlow
c1c086d9fe nfsd and mountd now live in /usr/sbin not /sbin. Correct the command args.
This also reduces the diff to NetBSD (very marginally).

Reviewed by:	jake (mentor)
2002-07-07 22:19:08 +00:00
Dag-Erling Smørgrav
cda86084ab Silence pam_lastlog for now. 2002-07-07 10:00:43 +00:00
Doug Barton
01ccaceffd Another update from Mike Makonnen.
Missed by: Me
2002-07-07 08:00:31 +00:00
Doug Barton
77aa299a77 Latest improvements from Mike Makonnen. Better kerberos and apm handling. 2002-07-07 04:16:53 +00:00
Ruslan Ermilov
d2baa8b3b7 There is apparently no reason for the existence of the `etc' target. 2002-07-05 13:47:29 +00:00
Ruslan Ermilov
3982724908 Whitespace and indentation (style) fixes. 2002-07-05 13:39:38 +00:00
Ruslan Ermilov
831568b970 Added DEFAULTS, to denote the contents of etc/defaults/.
Once upon a time (in rev. 1.81), COPYRIGHT and FREEBSD
were multi-value.

Moved installation of /var/log/cron to where it belongs
(this finishes the change in rev. 1.205).

Removed (with extreme prejudice) a bunch of parentheses
that unnecessarily obfuscated this makefile.

Run pwd_mkdb(8) right after master.passwd is installed.

Install nsmb.conf to /usr/share/examples/etc/.
2002-07-05 13:17:24 +00:00
Maxim Konovalov
492fa19f70 Trim EOL spaces.
Reviewed by:	gshapiro
2002-06-30 12:08:36 +00:00
Maxim Konovalov
4872428528 Add an alias for sshd. 2002-06-30 12:04:41 +00:00
Maxim Konovalov
fc193c4365 Include 'sshd' to the lists of forbidden users.
Reviewed by:	cvs-committers
2002-06-28 15:46:29 +00:00
Brian Somers
103efc95e8 Mention that we're checking kernel log messages, even if there's
no output.

PR:		39618
MFC after:	1 week
2002-06-28 10:32:18 +00:00
Sheldon Hearn
d86c700817 Revert previous delta, setting the system immutable flag on /var/empty
instead of the user immutable flag, now that mergemaster handles
schg directories in its /var/tmp/temproot.
2002-06-26 17:05:48 +00:00
Sheldon Hearn
ec8b657bfd Tone down the previous delta: don't set the system immutable flag on
/var/empty, because it makes it difficult for mergemaster(8) to remove
/var/tmp/temproot/var.
2002-06-26 08:58:28 +00:00
Matthew Dillon
ca18873e88 add default vmemoryuse (unlimited), and samples 2002-06-26 04:04:37 +00:00
Kenneth D. Merry
98cb733c67 At long last, commit the zero copy sockets code.
MAKEDEV:	Add MAKEDEV glue for the ti(4) device nodes.

ti.4:		Update the ti(4) man page to include information on the
		TI_JUMBO_HDRSPLIT and TI_PRIVATE_JUMBOS kernel options,
		and also include information about the new character
		device interface and the associated ioctls.

man9/Makefile:	Add jumbo.9 and zero_copy.9 man pages and associated
		links.

jumbo.9:	New man page describing the jumbo buffer allocator
		interface and operation.

zero_copy.9:	New man page describing the general characteristics of
		the zero copy send and receive code, and what an
		application author should do to take advantage of the
		zero copy functionality.

NOTES:		Add entries for ZERO_COPY_SOCKETS, TI_PRIVATE_JUMBOS,
		TI_JUMBO_HDRSPLIT, MSIZE, and MCLSHIFT.

conf/files:	Add uipc_jumbo.c and uipc_cow.c.

conf/options:	Add the 5 options mentioned above.

kern_subr.c:	Receive side zero copy implementation.  This takes
		"disposable" pages attached to an mbuf, gives them to
		a user process, and then recycles the user's page.
		This is only active when ZERO_COPY_SOCKETS is turned on
		and the kern.ipc.zero_copy.receive sysctl variable is
		set to 1.

uipc_cow.c:	Send side zero copy functions.  Takes a page written
		by the user and maps it copy on write and assigns it
		kernel virtual address space.  Removes copy on write
		mapping once the buffer has been freed by the network
		stack.

uipc_jumbo.c:	Jumbo disposable page allocator code.  This allocates
		(optionally) disposable pages for network drivers that
		want to give the user the option of doing zero copy
		receive.

uipc_socket.c:	Add kern.ipc.zero_copy.{send,receive} sysctls that are
		enabled if ZERO_COPY_SOCKETS is turned on.

		Add zero copy send support to sosend() -- pages get
		mapped into the kernel instead of getting copied if
		they meet size and alignment restrictions.

uipc_syscalls.c:Un-staticize some of the sf* functions so that they
		can be used elsewhere.  (uipc_cow.c)

if_media.c:	In the SIOCGIFMEDIA ioctl in ifmedia_ioctl(), avoid
		calling malloc() with M_WAITOK.  Return an error if
		the M_NOWAIT malloc fails.

		The ti(4) driver and the wi(4) driver, at least, call
		this with a mutex held.  This causes witness warnings
		for 'ifconfig -a' with a wi(4) or ti(4) board in the
		system.  (I've only verified for ti(4)).

ip_output.c:	Fragment large datagrams so that each segment contains
		a multiple of PAGE_SIZE amount of data plus headers.
		This allows the receiver to potentially do page
		flipping on receives.

if_ti.c:	Add zero copy receive support to the ti(4) driver.  If
		TI_PRIVATE_JUMBOS is not defined, it now uses the
		jumbo(9) buffer allocator for jumbo receive buffers.

		Add a new character device interface for the ti(4)
		driver for the new debugging interface.  This allows
		(a patched version of) gdb to talk to the Tigon board
		and debug the firmware.  There are also a few additional
		debugging ioctls available through this interface.

		Add header splitting support to the ti(4) driver.

		Tweak some of the default interrupt coalescing
		parameters to more useful defaults.

		Add hooks for supporting transmit flow control, but
		leave it turned off with a comment describing why it
		is turned off.

if_tireg.h:	Change the firmware rev to 12.4.11, since we're really
		at 12.4.11 plus fixes from 12.4.13.

		Add defines needed for debugging.

		Remove the ti_stats structure, it is now defined in
		sys/tiio.h.

ti_fw.h:	12.4.11 firmware.

ti_fw2.h:	12.4.11 firmware, plus selected fixes from 12.4.13,
		and my header splitting patches.  Revision 12.4.13
		doesn't handle 10/100 negotiation properly.  (This
		firmware is the same as what was in the tree previously,
		with the addition of header splitting support.)

sys/jumbo.h:	Jumbo buffer allocator interface.

sys/mbuf.h:	Add a new external mbuf type, EXT_DISPOSABLE, to
		indicate that the payload buffer can be thrown away /
		flipped to a userland process.

socketvar.h:	Add prototype for socow_setup.

tiio.h:		ioctl interface to the character portion of the ti(4)
		driver, plus associated structure/type definitions.

uio.h:		Change prototype for uiomoveco() so that we'll know
		whether the source page is disposable.

ufs_readwrite.c:Update for new prototype of uiomoveco().

vm_fault.c:	In vm_fault(), check to see whether we need to do a page
		based copy on write fault.

vm_object.c:	Add a new function, vm_object_allocate_wait().  This
		does the same thing that vm_object allocate does, except
		that it gives the caller the opportunity to specify whether
		it should wait on the uma_zalloc() of the object structre.

		This allows vm objects to be allocated while holding a
		mutex.  (Without generating WITNESS warnings.)

		vm_object_allocate() is implemented as a call to
		vm_object_allocate_wait() with the malloc flag set to
		M_WAITOK.

vm_object.h:	Add prototype for vm_object_allocate_wait().

vm_page.c:	Add page-based copy on write setup, clear and fault
		routines.

vm_page.h:	Add page based COW function prototypes and variable in
		the vm_page structure.

Many thanks to Drew Gallatin, who wrote the zero copy send and receive
code, and to all the other folks who have tested and reviewed this code
over the years.
2002-06-26 03:37:47 +00:00
John Polstra
c0c9b4e674 Fix the amd invocation to honor the amd_flags setting.
Submitted by:	Mike Makonnen <makonnen@pacbell.net>
2002-06-24 19:50:56 +00:00
Sheldon Hearn
9ec0ab17fd The previous delta introduced /var/empty, for use by openssh-portable,
which needs an empty directory into which to chroot(2).

Hint to the operator that this directory really _should_ be empty
by creating it with mode 0555 and the system immutable flag (schg)
set.

Reviewed by:	des
2002-06-24 18:31:47 +00:00
Dag-Erling Smørgrav
677fccffa4 Previous commit was just a tad too hasty, the sshd peudo-user's home
directory should be /var/empty.
2002-06-23 20:46:44 +00:00
Dag-Erling Smørgrav
9b4e71b270 Add /var/empty for the OpenSSH privsep code. 2002-06-23 20:44:19 +00:00
Dag-Erling Smørgrav
04b681a999 Add an sshd user and group for the OpenSSH privilege separation code. 2002-06-23 20:41:06 +00:00
Brian S. Dean
415c05a038 Create sendmail required directories if sendmail is enabled. 2002-06-22 19:44:25 +00:00
Doug Barton
032c8774fa Hone the rpcbind dependency checking.
Submitted by:	Mike Makonnen <makonnen@pacbell.net>
2002-06-21 19:50:01 +00:00
David E. O'Brien
85283ff45d This commit was generated by cvs2svn to compensate for changes in r98576,
which included commits to RCS files with non-trunk default branches.
2002-06-21 19:07:21 +00:00
David E. O'Brien
be026881b1 Sync with NetBSD's mainline. 2002-06-21 19:07:21 +00:00
Ruslan Ermilov
072f6798f8 Make NO_OPENSSL actually imply NO_OPENSSH, as documented in make.conf(5). 2002-06-21 08:54:03 +00:00
Doug Barton
5271c18857 Anonymize the "portmap" program to get better compatibility with
rpcbind in -current.

Submitted by:	Alexander Kabaev <ak03@gte.com>
2002-06-20 08:49:44 +00:00
Dag-Erling Smørgrav
bc39792308 We don't use this any more.
Sponsored by:	DARPA, NAI Labs
2002-06-19 20:01:25 +00:00
Dag-Erling Smørgrav
bb151ea158 Enable OPIE for sshd and telnetd. I thought I'd done this a long time
ago...

Sponsored by:	DARPA, NAI Labs
2002-06-19 20:00:43 +00:00
Doug Barton
b992dc7565 Another good suggestion from Bruce, only create links if the
file doesn't exist already.
2002-06-19 05:35:16 +00:00
Gordon Tetlow
54f43a77ca Fix a typo in the named startup options
Submitted by:	sheldonh@
2002-06-18 19:42:37 +00:00
Doug Barton
b94048f0ec Do vidcontrol -m on after starting moused for a usb mouse.
PR:		conf/39125
Submitted by:	Mike Makonnen <makonnen@pacbell.net>
Not objected to by: -current and -hackers
2002-06-18 07:50:16 +00:00
Doug Barton
a1aa5c8053 Should have paid more attention to the PR. Update (improve?) the examples
by doing them in /dev/, and provide more than just the one example.

Submitted by:	bde (for the ideas, blame for mistakes is mine)
2002-06-18 07:33:56 +00:00
Doug Barton
02010b74b4 Only create symlink if /dev/ttyv0 exists.
PR:		misc/39381
Submitted by:	Dirk-Willem van Gulik <dirkx@covalent.net>
2002-06-18 07:14:43 +00:00
Doug Barton
e5f35c947b Try handling lack of syscons (for diskless boot, or other) by
testing for the presence of /dev/ttyv0.

PR:		misc/39351
Submitted by:	Dirk-Willem van Gulik <dirkx@covalent.net>
2002-06-16 20:59:16 +00:00
Gordon Tetlow
576ed0de29 Make sendmail really not start when sendmail_enable="NONE"
Submitted by:	Dennis Kristensen <snicki@snicki.dk>
Reviewed by:	Mike Makonnen <makonnen@pacbell.net>
2002-06-15 18:39:05 +00:00
Gordon Tetlow
825bb04125 Add the final bits that allow the use of rc.d. Note that you can toggle
between rc.d and the classic boot scripts based on the rcng variable in
your rc.conf. Defaults to classic boot scripts.

Submitted by:	Mike Makonnen
2002-06-13 22:30:02 +00:00
Gordon Tetlow
2952767837 Add a couple of variables for rc.d
Submitted by:	Mike Makonnen
2002-06-13 22:27:31 +00:00
Gordon Tetlow
dde7cef3d2 Hook rcorder and rc.d into the build.
Submitted by:	Mike Makonnen
2002-06-13 22:26:15 +00:00
Gordon Tetlow
64deb069a9 Bring this up to date with the latest NetBSD bits. Also add some bits of
our own.

Submitted by:	Mike Makonnen
Reviewed by:	silence on -current and -hackers
2002-06-13 22:19:42 +00:00
Gordon Tetlow
27bc1b287e Merge in all the changes that Mike Makonnen has been maintaining for a
while. This is only the script pieces, the glue for the build comes next.

Submitted by:	Mike Makonnen <makonnen@pacbell.net>
Reviewed by:	silence on -current and -hackers
Prodded by:	rwatson
2002-06-13 22:14:37 +00:00
David E. O'Brien
8777223029 Change our default XF86Config location from /etc/ to /etc/X11/,
following the lead of The XFree86 Project's default.

Approved by:	Murray
2002-06-10 04:47:26 +00:00
David E. O'Brien
ac3f21b185 We want to play osterage and stick our heads in the sand and ignore things.
Requested by:	jhb
2002-06-04 22:26:11 +00:00
David E. O'Brien
499cc75ee2 ntpdate(1) is depreciated. 2002-06-04 21:25:41 +00:00
Takeshi Shibagaki
e5f0e62f96 Add new entry PLANEX GW-NS11H(PRISM3.0).
Submitted by [bsd-nomads:16322] Yasufumi Susuki <yasu@triaez.kaisei.org>
2002-05-29 21:16:51 +00:00
Peter Wemm
148c11ac62 Update g++ include subdirs 2002-05-29 00:46:33 +00:00
Warner Losh
51cf186eab Correct US Robotics Wireless Card 2410 entry 2002-05-24 15:28:38 +00:00
Gregory Neil Shapiro
34925ba6f7 Add a new make.conf knob, SENDMAIL_MAP_PERMS, which specifies the
permissions to use for alias and map database files built by
/etc/mail/Makefile.  The default is 0640 to assist users in avoiding
a file locking local denial of service.

MFC after:	1 day
		pending RE approval
2002-05-24 01:46:39 +00:00
Gregory Neil Shapiro
519c4f1816 Change the default permissions for the sendmail statistics file to 0640
instead of 0644 to help protect users against a file locking local
denial of service.

MFC after:	1 day
		pending RE approval
2002-05-24 01:44:53 +00:00
Gregory Neil Shapiro
b9888709dd Add a warning regarding localhost-only listening daemons inside jails.
Apparently binding only to 127.0.0.1 inside of a jail actually binds
to the jail IP address as well (in effect, bind to all available
interfaces in the jail).

Submitted by:	Helge Oldach <test-smtp@oldach.net>
MFC after:	1 day
		pending RE approval
2002-05-22 16:37:32 +00:00
Ruslan Ermilov
37d1dbf01d Build sccs(1) docs. 2002-05-22 11:55:47 +00:00
Ruslan Ermilov
0c2fe74da8 Added share/doc/[pu]sd entries.
Reviewed by:	grog
2002-05-22 10:38:25 +00:00
Gregory Neil Shapiro
b943c00ef4 There are still many broken nameservers out there in the wild. Even
though I would personally prefer to see the broken nameservers fixed
instead of standards compliant applications work around them, I can't
force FreeBSD users to help fight that battle.

Submitted by:	Damon Anton Permezel <dap@damon.com>
MFC after:	2 days
		pending RE approval
2002-05-21 02:02:23 +00:00
Gordon Tetlow
e21fb30dce Explictly set kerberos_stash to NO instead of blank. While we are at it,
fix a comment that suggested setting ipv6_ipv4mapping to blank. This
will aid in merging with rcng which requires all veriables to be
explicitly set.

Submitted by:	Mike Makonnen
MFC after:	1 week
2002-05-20 05:26:44 +00:00
Mark Murray
ccde38c38d Remove Perl and TCL/TK bits, neither of which are in the base system
(anymore).
2002-05-18 14:27:17 +00:00
Ruslan Ermilov
7662944182 Sigh, this README is not a shell script. 2002-05-18 12:37:19 +00:00
Ruslan Ermilov
0db47a7c6c Remind developers to update hier(7) if they make changes to these files. 2002-05-18 12:35:10 +00:00
David E. O'Brien
2582d4d13f We haven't needed libg++ since 1999-04-04 (pre 4.0). 2002-05-18 05:38:31 +00:00
Gordon Tetlow
6395b411cb Fix the order of shutdown scripts so it not only reverses the order of the
files in each ${local_startup} directory, it also reverses the order of the
directories.

Suggested by:	jhb
Reviewed by:	jake
Approved by:	dougb
MFC after:	1 week
2002-05-18 00:26:10 +00:00
Brian Somers
9e280368ad Temporarily change our umask to 066 so that the potential creation
of wtmp.0 is done as mode 600.

This ensures that tight permissions set in /etc/newsyslog.conf for
wtmp logging aren't ``betrayed''.

Suggested by:	lumpy <lumpy@the.whole.net>
MFC after:	3 days
2002-05-17 14:05:08 +00:00
Brian Somers
740b91b560 Change `dmesg -a'' to `dmesg''.
The change was introduced in src/etc/security 1.53 almost a year ago
in an attempt to see ipfw deny message logs.

However, ipfw deny/reject logs have been displayed since version 1.13
of the same file as a separate ``job'' and have since moved to
src/etc/periodic/security/500.ipfwdenied.

MFC after:	3 days
2002-05-17 13:38:36 +00:00
Brian Somers
db1d04d6d9 Tighten up temporary file permissions and move them to ${TMPDIR:-/tmp}
Problem reported by:	lumpy <lumpy@the.whole.net>
MFC after:		3 days
2002-05-17 11:34:12 +00:00
Brian Somers
afa3985979 Return 3 unless $daily_status_security_enable != YES.
Returning $? masks security output when ``periodic security'' is successful !

MFC after:	3 days
2002-05-17 11:31:45 +00:00
Mark Murray
f365887c6c No need to build perl dirs anymore. 2002-05-16 09:29:40 +00:00
Ruslan Ermilov
f82979375c MF4: sync with RELENG_4 version as much as possible. 2002-05-16 08:06:07 +00:00
Tom Rhodes
db4f576472 Consistancy, file system > filesystem 2002-05-16 02:10:03 +00:00
David E. O'Brien
567924ccb9 Time to enter modern age and default to NFS version 3. 2002-05-15 22:24:29 +00:00
Jacques Vidrine
dfc4c48df7 It is dangerous to use globbing like so in startup scripts:
rm -f /tmp/.X11-unix/*

If /tmp/.X11-unix didn't already exist, a user could symlink it to a directory
with files that he wants to wipe out, and wait for next reboot.

Reported by:	lumpy <lumpy@the.whole.net>
2002-05-08 14:47:44 +00:00
Gregory Neil Shapiro
8b637659da Fix typo.
Submitted by:	Marius Strom <marius@marius.org>
MFC after:	1 day
		and RE approval
2002-05-08 05:17:46 +00:00
Dag-Erling Smørgrav
a87cdc1598 Use pam_lastlog(8)'s new no_fail option.
Sponsored by:	DARPA, NAI Labs
2002-05-08 00:33:02 +00:00
Michael C . Wu
b9d862a225 This is two new entries for Taiwanese 16bit PCMCIA cards.
The Blue Concentric CF 802.11b card is a compactflash form-factored card
that does 802.11b, including 128bit encryption.
The Zonet modem pccard is a simple FAX/Modem card.

Both are sold in Guang-Hua Market in Taipei, and functions perfectly
with -current and -stable.
2002-05-07 16:50:15 +00:00