Commit Graph

2515 Commits

Author SHA1 Message Date
MIHIRA Sanpei Yoshiro
cf673267d3 use ``config auto'' for NCR WaveLAN/IEEE 2000-10-17 06:20:21 +00:00
Josef Karthauser
69d1f468bf Add an optional start/stop argument to pccard_ether, and migrate
the 'ifconfig ifN delete' into pccard_ether under the 'stop'
function.

In addition start dhclient with a pid file based on the interface
name, e.g. /var/run/dhclient.ep0.pid, and kill the correct dhclient
(or dhcpc) process when the card is removed.
2000-10-16 19:11:11 +00:00
Josef Karthauser
3b7c548b4b Avoid passing the optional ifconfig arguments to dhcpc as well as ifconfig.
This bug has been here since revision 1.8.
2000-10-16 19:03:48 +00:00
Nick Hibma
8df2823bfe Merge from stable: Update of comments 2000-10-16 16:38:04 +00:00
John W. De Boskey
991c4ad814 Style fix only.
init 6 vs. /sbin/reboot problem still exists (pr 14829)

Submitted by:	Doug Barton <DougB@gorean.org>
2000-10-16 06:16:44 +00:00
John W. De Boskey
3fc79ca179 Set new default: entropy_file="/entropy"
with /var/db/entropy being a hardcoded backup.

Submitted by:	Doug Barton <DougB@gorean.org>
Approved by:	markm
2000-10-16 04:45:47 +00:00
John W. De Boskey
bfb80de42d Having played with this commit request for a few hours, I've
convinced myself that it's better then what we have, but still
not perfect.

/etc/rc  : Attempt to seed /dev/random with multiple backoffs.

/etc/rc.shutdown : Attempt to write the entropy_file.

In debugging the above changes, I've run into some
inconsistancies... rc.shutdown is run via 'init 6', but
does not appear to be run via '/sbin/reboot'. Thus, this
set of changes improves life depending on the mechanism
used to shut the system down.

Submitted by:	Doug Barton <DougB@gorean.org>
Approved by:	markm
2000-10-16 04:44:35 +00:00
Brian Somers
dd903d321f Add /usr/include/netnatm/ 2000-10-15 00:43:06 +00:00
Mark Murray
318cc4ad59 Reseed the random device as early as possible to prevent hangs,
and provide some form of entropy in case there is no seed file
to prevent a reboot from hanging unnecessarily.
2000-10-14 12:56:08 +00:00
Andrey A. Chernov
88820203d4 "fix" savecore by moving dev_mkdb before it to allow device name sensing 2000-10-12 21:40:04 +00:00
Ruslan Ermilov
35c8e6411c Fixed the reporting of ip_portrange_{first|last}. 2000-10-12 11:25:57 +00:00
Ruslan Ermilov
9667076c85 Turn the verbose mode on for dumpon(8). 2000-10-12 10:34:59 +00:00
Ruslan Ermilov
6f1214d918 Removed broken PAM support from rshd(8) and rlogind(8). rshd does
not allocate a pty(4) so it is not suitable at all for interactive
PAM modules.  rlogind calls login(1) which is already PAM enabled.

Approved by:	markm
2000-10-12 07:18:20 +00:00
Gregory Neil Shapiro
9d64dea9fa Disable the SMTP EXPN and VRFY commands by default to prevent information
leakage.

Submitted by:	Maxime Henrion <mux@qualys.com>
2000-10-10 18:10:38 +00:00
Gregory Neil Shapiro
31923af7ce Install the sendmail cf building tools (contrib/sendmail/cf) in
/usr/share/sendmail/cf.

PR:		19790
2000-10-10 18:08:19 +00:00
MIHIRA Sanpei Yoshiro
f7a26d1939 add new version of ELECOM Air@Hawk/LD-WL11/PCC
(Yasuhiro Magara <gama@rose.zero.ad.jp> in [bsd-nomads:14588])

add "wi" cards into HARDWARE.TXT and RELNOTES.TXT
2000-10-10 14:27:30 +00:00
David E. O'Brien
a1c43e3fbb Add copyright notices. Other systems have been barrowing our /etc files
w/o giving any credit.
2000-10-08 19:20:36 +00:00
MIHIRA Sanpei Yoshiro
7300b57eb3 add COREGA FEther PCC-TXF
(MITA Yoshio <mita@ee.t.u-tokyo.ac.jp> in [bsd-nomads:14572])
2000-10-08 07:42:52 +00:00
Gregory Neil Shapiro
e16befd944 Forgot to remove the directory from mtree for the obsolete sendmail
documentation.
2000-10-07 22:46:42 +00:00
Alexander Langer
6f39ae3b66 Fix typo: kereros -> kerberos
PR:		21468
Submitted by:	"Giorgos Keramidas" <keramida@westgate.gr>
2000-10-06 17:36:05 +00:00
Darren Reed
7a76642f3c This brings support for IP Filter into rc.network and rc.conf with
the appropriate documentation added to rc.conf(5).  If all goes well
with this over the next few weeks, the PR will be closed with the
pullup of patches back to 4-STABLE.

PR:		20202
Submitted by:	Gerhard Sittig <Gerhard.Sittig@gmx.net>
Reviewed by:	Darren Reed <darrenr@freebsd.org>
Approved by:	Darren Reed <darrenr@freebsd.org>
Obtained from:	Gerhard Sittig <Gerhard.Sittig@gmx.net>
2000-10-06 12:24:45 +00:00
Toshihiko ARAI
13a4d01290 Fix typo and change from ifconfig ...' to /sbin/ifconfig ...' 2000-10-05 19:37:00 +00:00
Toshihiko ARAI
a16ec435c6 Fix some remove method. 2000-10-05 19:28:00 +00:00
Toshihiko ARAI
58ab6a5d30 Add TDK LAK-CD031.
Submitted by:	Tsuyoshi Hatakenaka <tsuyoshi@wni.co.jp>
2000-10-05 19:20:35 +00:00
Sheldon Hearn
cf86636803 Add James Housley's official IANA assigned numbers for healthd.
Requested by:	jeh
2000-10-05 07:36:59 +00:00
Brian Somers
944fae23f3 Add a unaligned_print option (alpha only)
Document osf1_enable

Submitted by:	Eric D. Futch <efutch@nyct.net>
PR:		21649
2000-10-04 18:58:46 +00:00
Kris Kennaway
fecb6ab363 Disable rsh and rlogin by default. ssh and telnet are still available for
remote access on default installations.
2000-10-04 07:56:16 +00:00
Jordan K. Hubbard
da701298c0 Turn fingerd OFF by default. Comparative essentials like telnetd
are bad enough, but finger is hardly a critical system service and
it's traditionally been vulnerable to a variety of attacks; anybody
remember RTFM and his worm?
2000-10-03 00:08:15 +00:00
Brian Somers
0655ee8d72 Case is irrelevant when sorting mail redirects
PR:		21600
Submitted by:	David Wolfskill <dhw@whistle.com>
2000-10-02 21:54:38 +00:00
MIHIRA Sanpei Yoshiro
8072a67c79 use ``config auto''
- Melco LPC-T (PIO mode)
	- AR-P500 ethernet card
	- Accton EN2226/Fast EtherCard (16-bit verison)
2000-10-02 14:41:09 +00:00
MIHIRA Sanpei Yoshiro
7ee33f7a53 use ``config auto'' for COREGA EtherII PCC-T. 2000-10-01 05:50:18 +00:00
Brian Somers
cd63d8618f Use su -m instead of just su to avoid reading the users login profile 2000-09-28 05:43:44 +00:00
MIHIRA Sanpei Yoshiro
397afc3dfb add Cisco Systems Aironet 342 Series 11Mbps 802.11 wireless NIC
same cis as Aironet 340

PR:		21447
2000-09-26 06:39:47 +00:00
MIHIRA Sanpei Yoshiro
3af9501ad5 add Cisco Systems Aironet 340 Series 11Mbps 802.11 wireless NIC
PR:		20777
2000-09-26 06:29:40 +00:00
Jeroen Ruigrok van der Werven
0698add9a5 Do IANA update maintenance: list synched up to the latest version.
Document that 254 (divert) is not IANA assigned.
2000-09-24 11:20:27 +00:00
Alexander Langer
a237895d7e Print "Enable PC-card." before anything else is done with
PC-card stuff.  Also print a NEWLINE (!!) after that.

I'm driving mad each time when I see messages related to pccard before
"Enable PC-card." and particulary when I see
"Doing initial network setup". on the same line w/o a break.
2000-09-23 17:09:04 +00:00
Brian Somers
ca60fa1ad6 Remove a forgotten line
Submitted by:	Philipp Mergenthaler <un1i@rz.uni-karlsruhe.de>
2000-09-22 06:54:28 +00:00
Ruslan Ermilov
8df6e02eef The final entry should be required', not sufficient'. 2000-09-21 07:47:36 +00:00
Brian Somers
48a7635f95 Sort the output of mount
Requested by: des

Remove a redundant sed
2000-09-18 18:35:07 +00:00
Gregory Neil Shapiro
cf1fec423a Give users a way to alter the sendmail (and related utilities) build
environment so they can enable functionality such as SASL, LDAP, Hesiod.
2000-09-17 00:41:33 +00:00
Andrey A. Chernov
14a9c12153 Add tr_TR.ISO_8859-9 to nls 2000-09-16 22:25:37 +00:00
Andrey A. Chernov
d50a91535f Add tr_TR.ISO_8859-9 2000-09-16 22:17:35 +00:00
Andrey A. Chernov
5901f438f4 Comment out MTREE_FOLLOWS_SYMLINKS by default, since it picked before mtree is
builded (on the clean machine without /etc/make.conf)

Submitted by:	imp
2000-09-16 22:08:24 +00:00
Poul-Henning Kamp
6d6b1b8f4d Add missing tr_TR.ISO_8859-9 directory. 2000-09-16 21:53:06 +00:00
Andrey A. Chernov
a938a1fcf8 Add/use MTREE_FOLLOWS_SYMLINKS make.conf option
This is part of whole subsystem fixing

Reviewed by:	imp
2000-09-15 08:07:05 +00:00
Mark Murray
fb90f7b3aa Make the [u]random device's permissions match those in the matching
make_dev() call.

At the moment, it is an error for anyone but root to write to this
device (EPERM), and the permissions don't suggest that. Soon, however,
anyone will be able to write here, but only root will cause an implicit
reseed.
2000-09-14 17:48:47 +00:00
Brian Somers
9ed55d1192 Another overhaul of the periodic stuff.
All periodic sub-scripts <larf> now have their return codes interpreted
by periodic(8).  Output may be masked based on variable values in
periodic.conf.

It's also now possible to email periodic output to arbitrary addresses,
or to send it to a log file, examples of which can be found in
newsyslog.conf.

The upshot of it all should be no discernable changes to the default
behaviour of periodic(8).

PR:	21250
2000-09-14 17:19:15 +00:00
MIHIRA Sanpei Yoshiro
2e9cc0ee8f "fe" driver was newbus'ify and bus_space'ify by nyan.
comment-in "XXX NOT SUPPORTED YET" cards
which was supported by "fe" driver.
2000-09-14 16:20:52 +00:00
Mike Smith
170871defe Teach MAKEDEV about 'aac'. 2000-09-13 05:03:02 +00:00
Hajimu UMEMOTO
31a054d673 Make default interface work.
Obtained from:	KAME
2000-09-10 18:18:10 +00:00
Kris Kennaway
690a362571 Nuke RSAREF support from orbit.
It's the only way to be sure.
2000-09-10 00:09:37 +00:00
Hajimu UMEMOTO
025ada8856 Make sure to accept RA. Some laptops run /etc/pccard_ether before
/etc/rc.network6.

PR:		bin/21062
2000-09-07 03:06:06 +00:00
Kris Kennaway
e1f99b045c ``Anyone is now free to rub two primes together for their own gratification''
-- Unknown

Now that the RSA algorithm is released into the public domain, build
librsaintl by default unless NO_RSAINTL is set in make.conf.

The native OpenSSL implementation of RSA is much faster, doesn't have
an artificial keysize limitation, has 30% fewer calories and tastes great!
2000-09-06 23:46:50 +00:00
Jacques Vidrine
248aee623c Add nsswitch support. By creating an /etc/nsswitch.conf file, you can
configure FreeBSD so that various databases such as passwd and group can be
looked up using flat files, NIS, or Hesiod.

= Hesiod has been added to libc (see hesiod(3)).

= A library routine for parsing nsswitch.conf and invoking callback
  functions as specified has been added to libc (see nsdispatch(3)).

= The following C library functions have been modified to use nsdispatch:
    . getgrent, getgrnam, getgrgid
    . getpwent, getpwnam, getpwuid
    . getusershell
    . getaddrinfo
    . gethostbyname, gethostbyname2, gethostbyaddr
    . getnetbyname, getnetbyaddr
    . getipnodebyname, getipnodebyaddr, getnodebyname, getnodebyaddr

= host.conf has been removed from src/etc.  rc.network has been modified
  to warn that host.conf is no longer used at boot time.  In addition, if
  there is a host.conf but no nsswitch.conf, the latter is created at boot
  time from the former.

Obtained from:	NetBSD
2000-09-06 18:16:48 +00:00
Andrey A. Chernov
d9102f5b2a Add /boot/kernel/ 2000-09-06 15:34:58 +00:00
David E. O'Brien
aada671ef0 The default is for 3rd party kernel modules to live in /boot/modules
rather than /modules.
2000-09-06 10:27:26 +00:00
Hajimu UMEMOTO
dce3f9e7cd Avoid doing rtsol to psuedo interface.
PR:		bin/21062
2000-09-06 07:39:55 +00:00
Sheldon Hearn
82f257b197 Add acap, as per IANA.
PR:		20990
Submitted by:	Lyndon Nerenberg <lyndon@orthanc.ab.ca>
2000-09-05 08:24:01 +00:00
David E. O'Brien
5bd200c177 Move NOPROFILE' and NOPERL' to be with the reset of their "NO" brethren. 2000-09-02 22:46:04 +00:00
David E. O'Brien
3a77147b94 Move the kernel's "cflags" to be next to the world ones. 2000-09-02 22:43:18 +00:00
David E. O'Brien
7d2e5717e7 Remove our override on the default time that a looked up name remains
cached when not in use.  This changes the FreeBSD default from 30 minutes
to 5 minutes.  JKH was the one that added the override to amd_flags, but
there was no reason given other to serve as an example of what could be
done.
2000-09-01 01:08:52 +00:00
Ruslan Ermilov
890fc9495b Only install `divert natd' rule for predefined firewall types,
not when ${firewall_type} is set to a filename, as we know
nothing about user's script specifics.

Reported by:	Bernhard Valenti <bernhard.valenti@gmx.net>
2000-08-30 13:14:32 +00:00
Mitsuru IWASAKI
e4a4123b1d Add /dev/acpi for ACPI. 2000-08-29 20:20:54 +00:00
John Baldwin
02e07fcda7 - Break the acd track devices out into a seperate target acdXt[Y]. The
X field is treated the same as the unit number for acdX.  The optional
  Y parameter specifies the number of track devices to create starting at
  track 1.  If Y is not specified, it defaults to 100.
- Add the acd0t target to the all target to preserve previous behavior.
- Don't add the acd0t target to the fixit target, thus keeping the fixit
  floppy from running out of i-nodes.
2000-08-28 23:14:44 +00:00
Satoshi Asami
b7823d1fde Add BSD.x11-4.dist to list of mtree files to install (d'oh!).
Submitted by:	Nathan Ahlstrom <nrahlstr@winternet.com>
2000-08-28 20:22:25 +00:00
MIHIRA Sanpei Yoshiro
6a8fb6a382 add ELECOM Air@Hark/LD-WL11/PCC card
add NEC Wireless Card CMZ-RT-WP card

Obtained from:	[bsd-nomads:13988] by YAMAMOTO Shigeru <shigeru@iij.ad.jp>

sort Farallon Skyline 11Mbps Wireless entory
2000-08-28 14:15:24 +00:00
Brian Somers
bf9263a3e2 Correct variable spelling
PR: 20841
2000-08-25 18:50:54 +00:00
Satoshi Asami
fce618cca3 Update BSD.x11-4.dist to XFree86-4 after repo copy. I believe this is
correct but I won't know for sure until bento's cluster comes back up.
2000-08-25 10:07:21 +00:00
Andrey A. Chernov
c4bf9c2485 Sync with main 2000-08-25 08:56:28 +00:00
Bill Paul
ded4eea9d2 Add entry for the Farallon Skyline 11Mbps wireless NIC (WaveLAN/IEEE
compatible)
2000-08-23 20:10:44 +00:00
Sheldon Hearn
c5fd1a4192 Only whack pseudo-terminals into shape if they exist. They might
not yet exist in the DEVFS case.
2000-08-21 14:37:52 +00:00
Sheldon Hearn
cbc43d2db3 After some discussion with markm, back out most of rev 1.221,
which really wasn't such a hot idea in retrospect.

If the random device isn't available, it probably isn't wanted.
If it's wanted, it should be enabled in loader.conf.
2000-08-21 14:33:20 +00:00
Mark Murray
c8e1436029 Move $PERL/IO/Socket to the right place.
Reported by:	ache
2000-08-21 06:30:45 +00:00
Mark Murray
091d5c90db Add missing perl directories. 2000-08-20 10:06:24 +00:00
Sheldon Hearn
af6e10cfa6 Remove an unwanted space from the "Shutting down daemon processes"
message.

PR:		20692
Submitted by:	Andre Albsmeier <andre.albsmeier@mchp.siemens.de>
2000-08-18 10:34:11 +00:00
Sheldon Hearn
81703d7fac Fix bug in rev 1.54; the terminating `;;' for the ibcs2_enable=YES
case got lost.
2000-08-18 09:43:18 +00:00
Sheldon Hearn
26007eb801 Document ibcs2_loaders and provide a default for it in
etc/defaults/rc.conf .
2000-08-18 09:37:50 +00:00
Sheldon Hearn
0d077fc6b2 The output of this script got a little broken in rev 1.225, with
the output for the linux_enable and svr4_enable stuff "floating
in the middle of nowhere".

Give them their own section, called "additional ABI support".
2000-08-18 08:11:23 +00:00
Sheldon Hearn
b53cf64a81 Don't rely on a shell scripts to do the simple job of loading
kernel modules for ibcs2_enable and svr4_enable.

Don't rely on a shell script to do the neglibly less simple
job of loading a kernel module and running one command for
linux_enable.

These shell scripts are going away.
2000-08-18 08:07:02 +00:00
Brian Somers
fb8ee6537c Fix the urio and ugen devices (I meant unit2minor, not minor2unit)
Problem pointed out by: markm
2000-08-18 07:01:19 +00:00
Brian Somers
f8853f21dc Add a PPP_NOSUID hook 2000-08-18 00:09:46 +00:00
John Baldwin
70726c89b3 Mention that basic network options now include firewall/security options as
well.
2000-08-17 06:04:13 +00:00
John Baldwin
bc19d0871a Fix a whitespace bogon. 2000-08-16 23:08:28 +00:00
Brian Somers
2bc268486d Add unit2minor() and use it where appropriate so that we handle
units > 255 properly.

Fix usio while I'm there
2000-08-16 16:42:50 +00:00
David E. O'Brien
3f6c47f3ec Move the running of the Linux and SVR4 compat bits to the arch independent
location.

Sponsored by:   LinuxWorld frustration
2000-08-15 18:02:49 +00:00
Sheldon Hearn
e0dd773443 Add a sample ifconfig entry for an IPX address family address, to give
IPX folks a fighting chance of figuring this out themselves.  I can't
work out how to document this carefully in rc.conf(5), but this ought
to close the PR.

PR:		17904
Reported by:	John Gelnaw <jeg@hawk.circa.ufl.edu>
2000-08-15 15:09:34 +00:00
Kris Kennaway
11447e2ce6 Install /var/crash/minfree mode 644 instead of 664 - group wheel shouldn't
have special write permissions to things.
2000-08-15 09:42:12 +00:00
Jun-ichiro itojun Hagino
791132f4a0 reorder "localhost" entry, to prefer ::1 than 127.0.0.1. 2000-08-15 09:38:19 +00:00
Gregory Neil Shapiro
4bcefa9655 Upon installation, create a symbolic link for /etc/aliases pointing to
/etc/mail/aliases.  This should both help users as well as other MTAs which
still use a default aliases path of /etc/aliases.
2000-08-14 02:49:39 +00:00
Gregory Neil Shapiro
c577eab2f9 Do not require a local-host-names file as this configuration file is the
default /etc/mail/sendmail.cf installed on a fresh install.
Problem noted by: Hajimu UMEMOTO <ume@mahoroba.org>
2000-08-13 18:53:58 +00:00
Gregory Neil Shapiro
2216e2a2cd Complete migration of aliases file to /etc/mail/aliases.
The maintainers of share/examples/diskless/README.TEMPLATING and mergemaster
have been contacted so those may be updated as well.
2000-08-13 18:38:58 +00:00
Josef Karthauser
6fd0f27267 Define SUPHOST. If this is set a '-h ${SUPHOST}' is added to the
SUPFLAGS when a 'make update' is run.  This means that the supfile
doesn't need to be edited because the -h will override the
CHANGE_THIS.FreeBSD.org host.
2000-08-13 12:36:40 +00:00
Gregory Neil Shapiro
85aeb700f5 Add alaises as another file to install into /etc/mail/.
Rename the variable from NOSPAM to ETCMAIL as the list of files actually
only contains one antispam related file.
2000-08-13 09:01:12 +00:00
Warner Losh
3ae2dea296 Change BUILD_SUIDPERL to ENABLE_SUIDPERL, with changed note as to what
it does.
2000-08-13 01:41:35 +00:00
Gregory Neil Shapiro
88c75941e6 The rest of the changes needed to support the new version of sendmail (8.11.0).
Beyond changes to the build system, this includes fixing up the sample
freebsd.mc configuration for changes in defaults and syntax, removing
outdated documentation, and updating the release notes.
2000-08-12 22:39:25 +00:00
Søren Schmidt
ea5cb0b3c0 Add the acdNt# devices to the acd entry, for individual track access. 2000-08-11 09:22:34 +00:00
John Polstra
e9edb38551 Add an rc.conf knob "ldconfig_insecure" to disable ldconfig's
security checks.  Set the default to NO, i.e., secure.

Submitted by:	Maxime Henrion <mhenrion@cybercable.fr>
2000-08-11 03:26:30 +00:00
Warner Losh
dd8cf673d9 Change NOSUIDPERL to BUILD_SUIDPERL. One must now explicitly enable
building suidperl.
2000-08-10 22:55:58 +00:00
Bill Fumerola
70d25dfbce make sshd follow the pattern of enable, program, flags like every
other entry does.
2000-08-10 19:52:06 +00:00
MIHIRA Sanpei Yoshiro
1c19d8a700 add Nokia Card Phone 2.0 (gsm900/dcs1800 HSCSD terminal)
PR:		conf/20037
2000-08-10 13:43:17 +00:00
MIHIRA Sanpei Yoshiro
bee9bd2a7a I tested Toshiba Modem/LAN card IPC5001B (as Modem) and enable it.
This card has `Network/LAN adapter' function ID(06 00),
not Serial port/modem.
2000-08-10 13:24:12 +00:00
Brian Somers
3a5cb44818 Correct dodgy wild card expansion
PR:	20514
2000-08-10 10:58:44 +00:00
Brian Somers
e2323071e6 Allow a ppp_user specification to run ppp at startup
PR:		20258
2000-08-10 00:13:02 +00:00
Brian Somers
3ebdf3366d Improve purgedir():
Fix leading & trailing space handling

  Suggested by: ben

  Handle files beginning with - correctly
  Don't follow symlinks (cd /var/spool/lock; ln -s /. horror)
2000-08-09 09:23:30 +00:00
Chris Costello
9d182321ce Use shell matching instead of sed(1) to strip comments and blank lines.
Since it doesn't depend on anything in /usr, it should work with a NFS-mounted
/usr partition.

Thanks to Bruce Evans to bringing this to my attention.
2000-08-09 02:03:30 +00:00
Brian Somers
440972bd2b Don't use find(1) before nfs filesystems have been mounted as
it lives in /usr/bin.  Instead, locate files manually.

Note, only *files* under /var/spool/lock are now deleted rather
than everything that's not a directory.  I think this is more
correct, but if anyone disagrees please feel free to change it.

Problem pointed out by: bde
2000-08-08 13:30:27 +00:00
Brian Somers
bc8617937e Use ``diff -w'' for setuid.{to,yester}day comparisons
rather than ``diff -b''.
2000-08-07 09:08:35 +00:00
Ruslan Ermilov
13fa4c5e31 Make natd(8) "compatible" with firewall_type="simple".
PR:		conf/13769, conf/20197
2000-08-04 14:02:11 +00:00
David E. O'Brien
d8e52ef8e0 Update rev 1.29 -- 'draft-manning-dsua' is now in its 3rd version. 2000-07-30 19:28:05 +00:00
Brian Feldman
c32527f202 Keep urandom as a link to random (but a hard link). 2000-07-30 16:18:48 +00:00
Brian Feldman
ae7ccf4237 Since the driver supports both (and may have different semantics for
both soon...), create urandom instead of the link to random.  It's
also what makes sense according to the make_dev(9)'s in random(4).
2000-07-30 03:15:11 +00:00
Eivind Eklund
8e4a14a9fa Change the defaults for portmap, sendmail and inetd to be not running them.
Make sysinstall override this on install, so the effective behavioural
change for a newly installed system is null.  Overall, this makes a system
with an empty /etc/rc.conf not run any network services, and makes the
FreeBSD-provided network services that are running visible in /etc/rc.conf
(instead of making people look through /etc/defaults/rc.conf to find the
things they need to disable to secure the system.)

Reviewed by:	jhb
Discussed with:	The usual cabal
2000-07-28 22:45:36 +00:00
David E. O'Brien
cc29b3af28 Add this empty version of this file to make it easier for pre-4.0 users
to find.
2000-07-27 22:53:42 +00:00
Jeroen Ruigrok van der Werven
6c992c4b00 Remove all mention of LANG and MM_CHARSET.
Add hints towards login.conf(5), which should be the preferred way
to set this systemwide without having to worry about the shell used.

PR:		9245
Submitted by:	martin Kammerhofer <dada@sbox.tu-graz.ac.at>
2000-07-27 11:39:33 +00:00
Sheldon Hearn
0e2c115b95 Close a window of readability when creating the entropy seed file,
which must not be world-readable.
2000-07-24 15:14:47 +00:00
Sheldon Hearn
ae193fb45b If the initial attempt to write ${entropy_file} to /dev/random fails
and the randomdev.ko module is not resident, try to load the module and
perform the write again.

Reviewed by:	markm
2000-07-24 13:40:41 +00:00
Marcel Moolenaar
11017a687b Backout addition of -L switch to mtree. Using -L breaks the
build process in too many cases. Adding mtree to bootstrap-tools
to solve this breaks the upgrade path because mtree needs a
libc that has strtofflags and fflagstostr.
2000-07-23 16:33:00 +00:00
Jeroen Ruigrok van der Werven
4c27efd514 Add weak_mountd_authentication, which is examined in /etc/rc.network.
Setting this to YES instead of its default NO, causes mountd to be
passed the -n flag, which allow non-root users mount requests to be served.
2000-07-23 11:31:09 +00:00
Andrey A. Chernov
0ce76c7dd0 Sync 2000-07-21 15:14:05 +00:00
Andrey A. Chernov
e3b66023f2 dd is too verbose writting entropy, redirect its output to /dev/null
Add period at the end of sentence
2000-07-20 19:25:12 +00:00
Andrey A. Chernov
29ce1dd302 Sync with main termcap, SGR 24,27 2000-07-20 18:55:07 +00:00
Nick Sayer
a5213f145a Add the tap driver.
The tap driver is used to present a virtual Ethernet interface to the
system. Packets presented by the network stack to the interface are
made available to a character device in /dev. With tap and the bridge
code, you can make remote bridge configurations where both sides of
the bridge are separated by userland daemons.

This driver also has a special naming hack to allow it to serve a similar
purpose to the vmware port.

Submitted by:	myevmenkin@att.com, vsilyaev@mindspring.com
2000-07-20 17:01:10 +00:00
Andrey A. Chernov
c03054e957 Sync with main termcap (AX, latin2 mono) 2000-07-20 14:08:21 +00:00
Hajimu UMEMOTO
be8302343e Add some examples for IPv6 addresses.
PR:		conf/18614
Submitted by:	James Housley <jim@thehousleys.net>
2000-07-19 13:05:58 +00:00
Brian Somers
a964c82566 Add a default ident string and do some minor whitespace adjustments 2000-07-19 10:16:29 +00:00
Ruslan Ermilov
572c5e2af7 Add /dev/agpgart for AGP.
Reviewed by:	dfr
2000-07-19 09:21:14 +00:00
Warner Losh
034aee24de Apm device is now safe to be world readable, so make it so. 2000-07-19 06:35:58 +00:00
Hajimu UMEMOTO
6941031461 Fix an unmatched opening quote.
PR:		conf/20000
Submitted by:	Alex Kapranoff <alex@kapran.bitmcnit.bryansk.su>
2000-07-18 08:44:17 +00:00
Sheldon Hearn
7a414e32d7 Improve on previous commit:
Don't inhibit the trailing newline for entropy-related messages.
Try harder to save the seed file on shutdown.

Reviewed by:	markm
2000-07-17 13:39:48 +00:00
Hajimu UMEMOTO
feeff03591 If ipv6_enable is set to yes, do IPv6 setup for PCCARD ethernet
card.  This is still at staring point and end node case only.
2000-07-17 12:33:57 +00:00
Mark Murray
b74aa5644c Add entropy caching. With this, some entropy is cached at shutdown
time, and this is used to reseed the random number generator at
boot time.

NOTE - this has no hope of working if you halt(); you need to
execute rc.shutdown to get the entropy stash.
2000-07-17 12:28:58 +00:00
Mitsuru IWASAKI
575c57687f PCCard entry cleanup:
- Remove unit numbers in config lines.
 - Remove all of logger lines and add logstr lines for some cards.  This
   changes reduced file size from 84k to 45k.
 - Use '/sbin/ifconfig $device delete' instead of /etc/pccard_ether_remove
   which haven't merge from PAO yet.
 - Cosmetic changes.
2000-07-16 17:33:54 +00:00
MIHIRA Sanpei Yoshiro
f20f83ab5f [Merge from PAO]
add about 67 entry and rewrite 18 entry
	change Xircom CompactCard Ethernet 10 entry
		config 0x20 -> auto

Reviewed by:	iwasaki
Obtained from:	PAO3
2000-07-16 14:33:47 +00:00
Andrey A. Chernov
106beffea3 Add -L to mtree calls since defaults changed back 2000-07-16 07:58:25 +00:00
Andrzej Bialecki
65594d9e65 *** empty log message *** 2000-07-15 10:18:46 +00:00
Robert Watson
a85978584c o Display only a short fortune at the root login prompt, as large ones
scroll of our pretty /etc/motd that helps the user know what to do.
o Change reflects similar setting in /share/skel
2000-07-15 03:25:14 +00:00
Neil Blakey-Milner
e3186dd555 Add to, don't overwrite, user-settable mountd_flags.
PR:		conf/15745
Submitted by:	Vivek Khera <khera@kciLink.com>
2000-07-14 13:03:36 +00:00
Peter Wemm
97e8e70bd1 Be consistant about WITH_ vs MAKE_ flags. We have a precedent of using
MAKE_foo for things like MAKE_KERBEROS etc.  Use that.  I managed to
confuse myself last time and made make.conf different to the code. ;-(

Reported by:  Jun Kuriyama <kuriyama@FreeBSD.org>
2000-07-14 09:18:21 +00:00
Peter Wemm
4944b91311 Change various log file modes from mode 664 to 644. Allowing group
wheel to trash logfiles is not exactly good security policy.  There have
been several gid wheel holes in ports.  Various other files were changed
as well (eg: the locate database were set to more restrictive modes (444)
by their generation scripts) so this should be safe for them.  utmp and
wtmp are mode 644 already on all the systems we checked.

Submitted by:  jkb
Reviewed by:   kris
2000-07-14 01:12:50 +00:00
Warner Losh
53318022a2 Add Xircom CompactCard Ethernet CFE-10 1.00.
Seems to work great in the type II cf<->pccard adapter that came with
the card.  Others have reported with different chipsets for the pccard
bridge that additional support is needed to make this card work with
the 3.3 volts it needs.
2000-07-12 01:20:55 +00:00
Warner Losh
33d70f97bf Remove irq 13 from the list of valid IRQs. It is used by the math co and
is therefore unavailable.  Also, IRQ13 isn't connected to the pcic chip
on most laptops.
2000-07-11 17:57:01 +00:00
Warner Losh
aae7f33e58 Merge latest cards from my laptop:
o The Shining PMIDE-ASC card is also used in Road Warrior's Bullet Drive, so
  add that to the comments.
o Eiger Lab's fujitsu based ethernet card: EPX-10BT (thanks to Ryan Losh for
  donating the card to the cause).
o Add place holder entry for the 3Com Megahertz 3CXEM556.  It doesn't work
  yet, but that will change in time.
2000-07-11 17:52:41 +00:00
David Malone
7c76474a64 Get the security script to list the indoe numbers of the suid files.
I've seen some script kiddie tools out there that fake the timestamps
but don't preserve the inode number.

Note - this will cause a lot of output the first time it is run!

PR:		18947
Reviewed by:	Sheldon Hearn <sheldonh@uunet.co.za>
2000-07-11 14:24:53 +00:00
MIHIRA Sanpei Yoshiro
c18552ea87 add Planex FNW-3600-TX 16bit FastEthernet DirectDock
Obtained from:	[bsd-nomads:13991] reported by Akihiro IIJIMA <aki@jp.FreeBSD.org>
2000-07-11 14:22:19 +00:00
Seigo Tanimura
fb0ef52838 Finally merge newmidi.
(I had been busy for my own research activity until the last weekend)

Supported devices:

SB Midi Port			(sbc + midi)
SB OPL3				(sbc + midi)
16550 UART			(midi, needs a trick in your hint)
CS461x Midi Port		(csa + midi)

OSS-compatible sequencer	(seq)

Supported playing software:

playmidi			(We definitely need more)

Notes:

/dev/midistat now reports installed midi drivers. /dev/sndstat reports
only pcm drivers. We need the new name(pcmstat?).

EMU8000(SB AWE) does not sound yet but does get probed so that the OPL3
synth on an AWE card works.

TODO:

MSS/PCI bridge drivers
Midi-tty interface to support general serial devices
Modules
2000-07-11 11:49:33 +00:00
MIHIRA Sanpei Yoshiro
3ce4a84317 add Billionton 56Kbps Fax Modem
PR:		18866
2000-07-10 08:31:14 +00:00
MIHIRA Sanpei Yoshiro
0074080b44 add Ericsson DC23 GSM modem card
PR:		18962
2000-07-10 08:21:54 +00:00
MIHIRA Sanpei Yoshiro
982fa16bd2 add Compaq Netelligent 10/100 PC Card
PR:		19007
2000-07-10 08:05:47 +00:00
Hajimu UMEMOTO
b0f768ec1d - Remove use of programs in /usr like sed as possible. In this
time, I have no idea if there is equivalence of printf.  So, stf
setup still depends on /usr.  In addition, prefix(8) and gifconfig(8)
are in /usr/sbin.  Should we move these into /sbin?

- Sync with latest stf behavior.  Latest stf doesn't have link-local
address.  And, latest stf is not gif but stf.
2000-07-09 20:12:50 +00:00
MIHIRA Sanpei Yoshiro
e63b255aa6 add Shining PMIDE-ASC CDROM
PR:	19236
2000-07-09 12:51:05 +00:00