Maxime Henrion
b4089f6417
Mention that securelevel 1 also blocks access to /dev/io if it
...
exists (not all platforms have it).
2004-02-20 21:38:23 +00:00
Ken Smith
280b191c3a
- Add some information about how init, securelevel, and jails
...
interact with each other.
- Minor markup fix (.Dq -> .Va for a variable)
Reviewed by: rwatson
Approved by: blackend (mentor)
2003-11-11 18:37:50 +00:00
Philippe Charnier
9680d7b695
Add section number to .Xr
2003-06-08 12:51:28 +00:00
Giorgos Keramidas
09003f98d8
There are 5 securelevels, not 4.
...
PR: docs/50049
Submitted by: Colin Percival <cperciva@sfu.ca>
2003-03-26 01:30:34 +00:00
Ruslan Ermilov
522ccf3f35
mdoc(7) police: markup laundry.
2003-02-23 01:47:49 +00:00
Tom Rhodes
ce66ddb763
s/filesystem/file system/g as discussed on -developers
2002-08-21 18:11:48 +00:00
Ruslan Ermilov
e091d0c2ac
can not -> cannot.
2002-08-13 14:10:36 +00:00
Philippe Charnier
e1205e80e5
The .Nm utility
2002-07-06 19:34:18 +00:00
Ruslan Ermilov
57e4378bf6
mdoc(7) police: protect trailing full stops of abbreviations
...
with a trailing zero-width space: `e.g.\&'.
2001-08-10 13:45:36 +00:00
Ruslan Ermilov
c4d9468ea0
mdoc(7) police:
...
Avoid using parenthesis enclosure macros (.Pq and .Po/.Pc) with plain text.
Not only this slows down the mdoc(7) processing significantly, but it also
has an undesired (in this case) effect of disabling hyphenation within the
entire enclosed block.
2001-08-07 15:48:51 +00:00
Dima Dorfman
7ebcc426ef
Remove whitespace at EOL.
2001-07-15 07:53:42 +00:00
Ruslan Ermilov
9fe48c6e8d
mdoc(7) police: removed HISTORY info from the .Os call.
2001-07-10 11:04:34 +00:00
Dima Dorfman
2306a12f75
Back out most of revision 1.28: lists of diagnostics must use -diag,
...
not -tag. Instead, put a period after the error messages to aide
those using dumb terminals not capable of properly displaying markup.
Requested by: ru
2001-04-13 06:54:05 +00:00
Dima Dorfman
f643366677
Make the list in the DIAGNOSTICS section "-tag" instead of "-diag":
...
the former makes it more obvious as to there the error message starts
and the explanation begins.
PR: 26431
2001-04-10 01:03:29 +00:00
Ruslan Ermilov
d8aa002e9c
Prepare for mdoc(7)NG.
2000-12-19 15:36:48 +00:00
Ben Smithurst
8afbbd41f4
Explicitly document the fact that securelevel > 0 means that kernel modules
...
may not be (un)loaded.
PR: 23350
Submitted by: Gordon Tetlow <gordont@bluemtn.net>
2000-12-07 21:09:22 +00:00
Ruslan Ermilov
7c7fb079b9
mdoc(7) police: use the new features of the Nm macro.
2000-11-20 16:52:27 +00:00
Sheldon Hearn
01de01168f
Improve the clarification of the handling of the securelevel.
...
Submitted by: bde
2000-09-13 08:39:41 +00:00
Sheldon Hearn
67b661fd0a
Clarify the handling of the securelevel.
...
PR: 20974
2000-09-12 12:30:13 +00:00
Sheldon Hearn
ef8f7ac935
Remove single-space hard sentence breaks. These degrade the quality
...
of the typeset output, tend to make diffs harder to read and provide
bad examples for new-comers to mdoc.
2000-03-01 11:27:47 +00:00
Nik Clayton
ae11003873
Document that securelevel >= 2 clamps time changes to at most one second.
...
PR: docs/14449
Submitted by: James FitzGibbon <james@targetnet.com>
1999-12-16 02:15:53 +00:00
Sheldon Hearn
f0f4f75620
Correct the ttys.5 and init.8 manpages with respect to the incorrect
...
assumption that only getty processes can be managed. Describe the
SysV-like ability to keep arbitrary long-running processes alive
using a non-device first field in /etc/ttys.
PR: 12767
Submitted by: Peter Jeremy <peter.jeremy@alcatel.com.au>
1999-12-06 09:07:14 +00:00
KATO Takenori
a4edcf8989
FreeBSD kernel doesn't allow any process to decrease securelevel. So,
...
init(8) cannot decrease securelevel. The manual page explains this
and single_user() doesn't try to downgrade kernel to insecure mode.
Reviewed by: bde (manual page)
1999-09-06 08:41:32 +00:00
Peter Wemm
7f3dea244c
$Id$ -> $FreeBSD$
1999-08-28 00:22:10 +00:00
Matthew Hunt
ec32ddd693
"Cannot" is one word. "Can not" has a different meaning if taken
...
literally.
1999-07-05 18:12:13 +00:00
Ruslan Ermilov
5d94d8b6a2
Turn System V command line syntax ``on'' by default.
...
Requested by: peter
Reviewed by: des, billf
1999-07-01 13:33:56 +00:00
Ruslan Ermilov
1681d65976
Bring in System V run-level patches (turned off by default).
...
While I'm here, fix some typos in the manpage.
Requested by: des
1999-06-18 09:08:09 +00:00
Ruslan Ermilov
a0a549c7fd
Init(8) will halt the system if sent USR1 signal,
...
or halt and turn the power off if sent SIGUSR2.
PR: 5451
Submitted by: Leif Neland <leifn@image.dk>
Reworked by: ru
Reviewed by: -hackers
1999-06-16 20:01:19 +00:00
Guy Helmer
04b2ac6e73
Mention securelevel 3 as affecting ipfw and dummynet. Generalize comment
...
about fdisk and securelevel 2.
PR: docs/7785
1998-12-16 16:50:12 +00:00
Philippe Charnier
5df42cf4ae
Correct .Nm use. Add rcsid. Use min for minutes instead of mn.
1998-07-06 06:56:08 +00:00
Joseph Koshy
6ebaa024df
Fixes per PR 2850:
...
(a) Note that the default securelevel value is -1, in -current and -stable.
(b) Mention kernel sysctl variable that controls securelevel.
(c) Add warning the `fsck' will fail if securelevel >= 2.
(d) Suggest end of /etc/rc as the right place to raise securelevel.
and one spelling fix.
PR: 2850
1998-06-19 08:34:52 +00:00
David Nugent
8889c700f3
Add /etc/rc.shutdown capability to init.
...
Add sample /etc/rc.shutdown (which is just a shell for now).
Submitted by: Ollivier Robert <roberto@keltia.freenix.fr>
1997-08-02 00:22:52 +00:00
Mike Pritchard
7966553397
Be more specific as to which flags may not be turned off when the
...
system is running in secure mode.
Obtained from: NetBSD PR# 3299
1997-04-01 20:41:04 +00:00
Peter Wemm
c0ec1f37ef
Revert $FreeBSD$ to $Id$
1997-02-22 14:40:44 +00:00
Adam David
4f3cac8f23
typo
1997-01-22 12:38:40 +00:00
Jordan K. Hubbard
1130b656e5
Make the long-awaited change from $Id$ to $FreeBSD$
...
This will make a number of things easier in the future, as well as (finally!)
avoiding the Id-smashing problem which has plagued developers for so long.
Boy, I'm glad we're not using sup anymore. This update would have been
insane otherwise.
1997-01-14 07:20:47 +00:00
Wolfram Schneider
af20215665
Sort cross references.
1997-01-13 00:25:51 +00:00
Bruce Evans
38058917d5
Rewrote the section about the "normal" setting of the security level to
...
match reality.
Say that secured devices `may not be opened for writing' instead of
`are read-only'.
1996-10-12 15:37:23 +00:00
Mike Pritchard
edf0e5b3f8
Correct some man page xrefs, and some other minor changes to bring some
...
man pages up to mdoc guidelines and fix some minor formatting glitches.
Also fixed a number of man pages to not abuse the .Xr macro to
display functions and path names and a lot of other junk.
1996-04-08 04:18:31 +00:00
Nate Williams
e460cfd33f
Bring in my changes from the 1.1 init.bsdi which causes a reboot (was a
...
halt before) if init is sent an interrupt signal. This is necessary
for <CTL><ALT><DEL> to do the right thing if enabled.
1994-08-27 21:32:01 +00:00
Rodney W. Grimes
8fae3551ec
BSD 4.4 Lite sbin Sources
...
Note: XNSrouted and routed NOT imported here, they shall be imported with
usr.sbin.
1994-05-26 06:35:07 +00:00