The zoneinfo makefile doesn't follow the rules. It builds everything
at install time. It dpends on zic to create the directories. zic
doesn't know about the weird 555 permissions specified in BSD.usr.dist,
so it creates the directories with nonstandard permissions.
if kerberos is installed. So far as I'm aware, kerberos aware clients
detect ECONNREFUSED and (if allowed) fall back to the non-kerberos
servers. They do not know how to interpret messages such as
"rlogind: unknown option -k".
I believe Garrett also mentioned this.
Unfortunately, this adds an extra step to bringing up kerberos.
It also stops /var/log/messages getting quite so many useless (and
confusing) error messages when somebody does a port scan on you.
news.notice info should not be sent to /var/log/messages, as news has
its own set of logs and notice is overused by inn
added entries for newsservers (but they're commented out)
This is a lot more robust and handles errors a lot better. It also cleans
up stray, hopeless, or unmodified files rather than leaving them there
forever.
. crate the symlink for /dev/log if required, then
. remove the old socket (savecore might have already created it
accidentally), then
. start syslogd.
(Btw., our test(1) misses an option to test for a socket.)
Fixed some style bugs for cua* and tty*.
Removed superfluous chmod for consolectl.
FIxed a tiny security bug for perfmon and changed the style for
perfmon to match the style of the non-std devices.
>Description:
The sed script in /etc/rc.local that builds the host/kernel ID line
for the message of the day relies on the year not going past 1999.
When the year passes 1999, the ID line is malformed.
Submitted by: Wolfram Schneider <wosch@cs.tu-berlin.de>
>Description:
Applications that rely on getttyent and related calls will
not find entries that are not listed in /etc/ttys. Screen
and xterm (rxvt, color_xterm) will not be able to obtain
unique utmp slots as a result. This isn't a critical problem
but it will keep utilities such as 'finger', 'who' and 'w'
from displaying the correct information.
Closes PR#conf/1270
Submitted by: winter@jurai.net
shipped with freebsd can be changed without modifying the Makefiles directly.
Creates: BOOT_FORCE_COMCONSOLE
BOOT_PROBE_KEYBOARD
BOOT_PROBE_KEYBOARD_LOCK
BOOT_COMCONSOLE (port value for console)
default, so there's no use in running it without any printer
definition in printcap. Also added a bunch of hints about the printer
setup, to guide the admin about the printer setup (handbook,
"apsfilter"), and a commented-out sample setup for a remote printer.
In the same line, add /var/spool/lpd/output to BSD.var.dist since it
is referred to by the "lp" entry in printcap.
- split the "starting network daemons" in half.
- The first half starts things necessary to get full name service up.
- The quota check etc moved from "before network" to after the name
services are running. quotacheck does a while(p=getpwent()) which
isn't real good without YP running...
- moved rwhod a little later to put it with the other network stuff.
- deferred inetd a tad so that it's after ldconfig and dev_mkdb,
otherwise you get logins before you're ready.
Unresolved: named is started before ypserv/ypbind still, but named does
a while(s = getservent()) and while (p=getprotoent()) to suck in the
entire database into memory. This means you cannot have a "+" in the
/etc/services or /etc/protocols files or you get a long hang at boot.
Turn OFF the "small servers" by default. FreeBSD systems should only
serve actively used programs. Jewels like chargen and echo are too
useful in attack scenarios.