Commit Graph

3695 Commits

Author SHA1 Message Date
Dag-Erling Smørgrav
87e55d0799 No idea what this is for, and it doesn't make much sense. If a port needs
it, it can install its own copy in /usr/local/etc/pam.d/.
2003-02-10 00:49:44 +00:00
Dag-Erling Smørgrav
5eb3150c28 There's no reason to have two identical policies for FTP servers, so
make ftp a symlink to ftpd.
2003-02-10 00:47:46 +00:00
Joerg Wunsch
a7a02d1917 Set the expected permissions of /dev to 0555 since this is what devfs
is using anyway.  Otherwise, "make installworld" insists on resetting
them to 0755.
2003-02-09 19:33:53 +00:00
Gregory Neil Shapiro
a4d1b9a3c6 Allow multiple aliases files to be rebuilt
PR:		bin/40540
Submitted by:	Cyrille Lefevre <cyrille.lefevre@laposte.net>
MFC after:	3 days
2003-02-08 21:55:31 +00:00
Gregory Neil Shapiro
5a8562abaf /etc/rc.network isn't built to handle a value of "DEFAULT" (nor should it
be).  Using that string leads rc.network to execute:

# sysctl -w vfs.nfs.bufpackets=DEFAULT
vfs.nfs.bufpackets: 4 -> 0

Which isn't what was intended.

PR:		conf/31280
MFC after:	3 days
2003-02-08 20:55:56 +00:00
Gregory Neil Shapiro
5f2e780d36 Add a comment regarding the use of the msgs alias with sendmail to help
users who want to enable it.

PR:		misc/39951
2003-02-08 19:00:12 +00:00
Poul-Henning Kamp
48becfddca Install geom include files. 2003-02-08 13:25:48 +00:00
Giorgos Keramidas
d38c8c5622 Misc grammar, typo and wording fixes of comments.
PR:		docs/41034
Submitted by:	Chris Pepper <pepper@rockefeller.edu>
2003-02-07 20:58:38 +00:00
Tom Rhodes
133c1315d5 Add a header: #!/bin/sh.
PR:	44363
2003-02-06 22:00:38 +00:00
Dag-Erling Smørgrav
e7744a70b3 Use pam_group(8) instead of pam_wheel(8). 2003-02-06 14:33:23 +00:00
Ruslan Ermilov
a9263b6214 NODEVFS cleanup. 2003-02-05 15:31:43 +00:00
Maxim Konovalov
5e024dbb52 ep(4) does not have link0 and link1 options.
PR:		conf/46651
Submitted by:	Eugene Grosbein <eugen@grosbein.pp.ru>
Reviewed by:	imp, mdodd
MFC after:	1 week
2003-02-04 14:10:55 +00:00
Dag-Erling Smørgrav
487fffcbf2 Don't enable pam_krb5 by default - most people don't have it since most
people don't build with MAKE_KERBEROS5 defined.  Provide commented-out
usage examples instead, like we do everywhere else.

Pointy hat to:	des
2003-02-03 14:45:02 +00:00
Dag-Erling Smørgrav
f1c2c0a87e Enable pam_krb5 for sshd. I've had this in my tree for ages. 2003-02-02 18:41:26 +00:00
Poul-Henning Kamp
232849fa1f NODEVFS cleanup: Goodbye, and good riddance! 2003-02-01 22:22:50 +00:00
Poul-Henning Kamp
3347cc5e11 NODEVFS cleanup: Don't ever install MAKEDEV anymore. 2003-02-01 22:22:06 +00:00
Daniel Baker
b86cf90b7a Re-add information for applying for IP space from a registry since that
hasn't been included since the ancient rs.internic.net address was
removed.

Offer the option of the five regional registries.

MFC after:	3 days
2003-01-28 21:29:23 +00:00
Jake Burkholder
984e265523 Change ofwcons to use the output-device property from the firmware for the
name of the device that it creates.  Update /etc/ttys accordingly.

An alias is created for the old name so that old /etc/ttys will continue to
work, but due to aliases being implemented as symlinks in devfs you cannot
login as root when using the alias device.

Discussed with:	grehan
2003-01-27 04:42:17 +00:00
Mike Makonnen
c20168e432 NETWORKING should also mean routing daemons are up.
Approved by:	markm (mentor)
2003-01-25 23:14:08 +00:00
Mike Makonnen
4d1483b4fe Start isdnd before ppp for those folks who use ppp-over-isdn.
Approved by: markm (mentor)
2003-01-25 23:03:48 +00:00
Mike Makonnen
77c1940282 Read /etc/rc.subr.
Approved by: markm (mentor)(implicit)
Noticed by: kris
2003-01-25 20:02:35 +00:00
Mike Makonnen
9a03c49d6c Cleanup as many instances of rc.conf variable use before
calling load_rc_config().

Approved by:	markm (mentor) dougb
2003-01-24 00:37:52 +00:00
Mike Makonnen
eeefb22eb0 Missing '$'
Approved by: markm (mentor)(implicit)
2003-01-23 04:31:55 +00:00
Mike Makonnen
03891d9007 Write out the debug messages (from the previous commit) only if
the evaluated command exists.

Approved by: markm (mentor)(implicit)
2003-01-20 19:30:15 +00:00
Mike Makonnen
fff6d6f312 Add a missing OR.
Approved by: markm (mentor)(implicit)
2003-01-20 18:57:16 +00:00
Mike Makonnen
276ae160e6 Make the debug messages, for when a script rolls its own start routine,
more usefull. Currently it just says 'xxx_cmd'; whereas with this
change it will name the routine that's being run.

Approved by: markm (mentor)
2003-01-18 05:25:59 +00:00
Takeshi Shibagaki
5770575cfc Add BUFFALO LPC-CF-CLT(10Base-T Compact Flash Ether Card). 2003-01-18 02:14:23 +00:00
Takeshi Shibagaki
03874c20cf Add Allied Telesis WR211PCM. 2003-01-17 18:50:00 +00:00
Andrey A. Chernov
ad3c832cf7 Add missing ca_ES, lt_LT, sr_YU aliases 2003-01-17 00:56:34 +00:00
Mike Makonnen
5a28517db0 Purely cosmetic change.
The # PROVIDE line should precede the # REQUIRE line.

Approved by: markm (mentor)
2003-01-16 02:27:52 +00:00
Eric Anholt
5e002f9351 Add missing lib/X11/xedit/lisp directory. 2003-01-16 02:17:28 +00:00
Mike Makonnen
69808e534d Add rc_debug knob to rc.conf. The code for it has been in rc.subr for
some time now.
Document all knobs introduced by rc.d

Approved by: markm (mentor)
Reviewd by: gordon (earlier revision)
2003-01-14 15:50:17 +00:00
Mike Makonnen
dbc8124671 Finish merging in rev. 1.124 of rc.network, so that natd can be used
withough the $natd_interface having to be explicitly specified on the
command line.

Approved by: markm (mentor)
Submitted by: Aaron D. Gifford <agifford@infowest.com>
PR: conf/47024

MFC: upon re approval
2003-01-14 15:43:02 +00:00
Tom Rhodes
7ee7d3e359 Add an entry for the Dlink Air 660 Wireless PC Card.
PR:		46977
Submitted by:	gioria
Approved by:	imp
2003-01-14 00:50:30 +00:00
Mike Makonnen
48055d8c9d Fix the named script to find the correct pid file for the
named(8) daemon by providing a new rc.conf knob: named_pidfile
that defaults to the path specified in the system-installed named.conf(5).

Approved by: markm (mentor)
Reviewed by: dougb
Noticed by : Galen Sampson <galen_sampson@yahoo.com>
	     Dan Pelleg <daniel+bsd@pelleg.org>
PR: conf/46402
MFC:	2 weeks (with re@ approval)
2003-01-12 04:53:54 +00:00
Warner Losh
a13340a8e4 Either compaq has two variants of the WL200, or the old entry is
wrong.  Go ahead and include a second entry for the WL200 until I can
sort this out.

Submitted by: Matt Pearce
2003-01-10 18:35:20 +00:00
Warner Losh
99127de584 Move devd.conf here and install it by default (didn't do a repo copy
because there's so little history to save).

MFC After: 10 millifortnights
2003-01-09 04:05:06 +00:00
Garrett Wollman
ce54c9279d Tighten wording of comment.
Suggested by:	gshapiro
2003-01-08 18:52:32 +00:00
Garrett Wollman
de1d122868 Do not do manually what sendmail(8) can do better automatically.
Tell sendmail to clean up its own host status cache.
The error condition handling could probably be done better.
2003-01-08 18:51:45 +00:00
Stefan Eßer
2068678af4 Add support for bzip2ed log files. 2003-01-05 21:32:50 +00:00
Jens Schweikhardt
161113b6ad Comment out imap3@220 and imap4-ssl@585 which are not used.
PR:		conf/46294
Submitted by:	Larry Rosenman <ler@lerctr.org>
MFC after:	2 weeks
2003-01-04 16:03:56 +00:00
Jens Schweikhardt
ad82110dcd Add 1701/l2tp, layer 2 tunnelling protocol, as per IANA services.
PR:		conf/35240
Submitted by:	Annihilator <annihilator.c@usa.net>
MFC after:	2 weeks
2003-01-04 15:46:22 +00:00
Jens Schweikhardt
9d5abbddbf Correct typos, mostly s/ a / an / where appropriate. Some whitespace cleanup,
especially in troff files.
2003-01-01 18:49:04 +00:00
Robert Watson
8ab14aaa2d Further sync to kernel make_dev(): since we don't provide group access
to /dev/raidctl, don't set the group to operator.  (This isn't a
storage device, it's a control device).

Also, since umask here is already restrictive, we don't need to
explicitly set the mode.

Submitted by:	bde
2002-12-31 16:45:47 +00:00
Hidetoshi Shimokawa
4dadad5ee1 add fwmem* and fw*. 2002-12-31 06:38:35 +00:00
Robert Watson
6b8eb4cb35 Set the mode on the raidctl device to 0600.
Reviewed by:	scottl
2002-12-31 06:14:59 +00:00
Hidetoshi Shimokawa
8993821383 Install /sys/dev/firewire/*.h under /usr/include/dev/firewire
for userland utilities.
2002-12-30 09:45:03 +00:00
Andrey A. Chernov
c6f442e743 Add directories for upcoming ca_ES locale 2002-12-30 08:52:05 +00:00
Matthew Dillon
c8029eccc0 Synchronize old rc.diskless scripts from new rc.d/ scripts 2002-12-28 18:47:53 +00:00
Matthew Dillon
cc1dfa653e Redo the initial rc_ng check to avoid rc.conf pollution occuring too early,
initdiskless may retarget /etc and various rc.conf files.  The initial check
is now done in a subshell.
Reviewed by:	Mike Makonnen <mtm@identd.net>
2002-12-23 07:09:44 +00:00
Matthew Dillon
a6d86686ee Forgot to add rcconf.sh to the Makefile, and forgot to rename rcconf to
rcconf.sh in the last commit.
2002-12-22 22:25:53 +00:00
Matthew Dillon
eb7bf00306 Do not unconditionally load the configuration files for the RCNG case.
Instead, load them as part of the rc.d system.  This allows us to prioritize
the initidiskless script so it runs before the configuration files are loaded
and allows us to get rid of the exit 2 hack in /etc/rc.  The exit 2 never
worked anyway since it did not unset the prior configuration, causing the
diskless code to not operate properly.

Do a major cleanup and revamping of the diskless code for RCNG.  This will
be backported to the non-RCNG scripts as well as -stable.

With suggestions from: Mike Makonnen <mtm@identd.net>
MFC after:	7 days
2002-12-22 22:18:41 +00:00
Matthew Dillon
10e6b321d0 Revamp the way rc.diskless1 creates and populates memory filesystems. Make
the whole thing generic.  That is, /conf/base, /conf/default,
/conf/${ipba}, and /conf/${ip} are all handled the same way.

Introduce an NFS remounting feature via the /conf/base/<dir>/diskless_remount
so you can avoid dup'ing system directories in /conf (described in rc file).

Introduce a memory filesystem sizing feature via the /conf/base/<dir>/md_size
file that allows you to override the default memory filesystem size.

Introduce a file containing relative paths to remove for each memory filesystem
directory as /conf/base/<dirname>.remove.

Make the cpio feature more generic (applies to any filesystem) (aka
/conf/base/<dirname>.cpio.gz).

Allow any root directories to be created as a memory filesystem via the
/conf/*/* mechanism.

Replace the copyright notice with a reference to the COPYRIGHT file and
do other cleanups.

(documentation and man page updates to follow).

MFC after:	3 days
2002-12-21 00:30:08 +00:00
Kirk McKusick
123a5dff98 Delay an optional amount of time after booting before starting a
background fsck. The delay defaults to sixty seconds to allow
large applications such as the X server to start before disk I/O
bandwidth is monopolized by fsck.

Submitted by:	Brooks Davis <brooks@one-eyed-alien.net>
Sponsored by:   DARPA & NAI Labs.
2002-12-18 07:21:31 +00:00
Eric Melville
27b76d3083 Add Web Objects.
Obtained from:	IANA
Sponsored by:	Apple
2002-12-17 23:59:10 +00:00
Brian Feldman
f45a1cab59 Back out the previous commit, since there could be dire consequences if
/etc/rc were accidentally executed (as requested by other committeers).
2002-12-17 21:23:36 +00:00
Brian Feldman
1ad1ab1434 /home/green/tmp/cvsSFosXg 2002-12-17 20:39:38 +00:00
Eric Melville
77b653d95d Add IPP (Internet Printing Protocol) and remove blank lines.
Obtained from:	IANA
Sponsored by:	Apple
2002-12-17 19:42:07 +00:00
Martin Blapp
fb4c80619a Change the name for the local unix-socket based protocol
from "unix" back to "local".  Add some compat stuff so both
ways work for some time.

Reviewed by:    phk
Approved by:    imp (UPDATING)
Requested by:   iedowse, lukem@netbsd.org
2002-12-16 22:24:26 +00:00
Doug Barton
7020c7759b Bring in the settings from /etc/rc.devfs, which include the vga symlink
that's being replaced here. This is what /etc/rc does now.

There is no NetBSD devfs, so there is no compatibility issue.

Not objected to by:	FreeBSD-rc@yahoogroups.com
Approved by:		re (murray)
2002-12-15 21:56:53 +00:00
Warner Losh
96ac3c4b16 o Don't consider LOOPBACK devices as configured... 2002-12-13 23:36:31 +00:00
Bill Fenner
ed334c502f Renumber divert.
Forgotten by:	fenner
Approved by:	re (murray)
2002-12-13 09:18:09 +00:00
Warner Losh
c9e1bbfb91 o redirect the grep to /dev/null
o use ifn rather than interface in rc.network
o merge into rc.d/network1

Approved by: (re blanket)
2002-12-12 09:31:10 +00:00
Eric Melville
5d8574bf95 Add Remote AppleEvents/PPC Toolbox.
Approved by:	rwatson
Obtained from:	IANA
Sponsored by:	Apple
2002-12-12 03:05:56 +00:00
Warner Losh
39a61a1fda o Don't do anything if the interface is already up.
o Only delay in pccard_ether when we're doing dhcp and starting the interface.

Approved: (re blanket for devd)
2002-12-11 23:30:34 +00:00
Giorgos Keramidas
0333ea509d Avoid using perl in the periodic & security scripts. This brings the
base system one step closer to being totally perl-free.

Approved by:	re (jhb)
2002-12-07 23:37:44 +00:00
Warner Losh
c1b4ec662a Make pccardd have -z by default. This fixes a few startup problems
where people want to have the cards configured.  Lack of -z is a speed
optimization.

Submitted by: many voices on mobile@
Approved by: re@ (rwatson)
MFC after: 3 days
2002-12-06 05:23:37 +00:00
Dag-Erling Smørgrav
5d93b6af54 Since OpenSSH drops privileges before calling pam_open_session(3),
pam_lastlog(8) can't possibly work, so let OpenSSH handle lastlog.

Approved by:	re (rwatson)
2002-12-03 15:48:11 +00:00
Robert Watson
dbd8d5b2dd Don't install old LOMAC include files; do install new mac_lomac
include files.

Approved by:	re (jhb)
Obtained from:	TrustedBSD Project
Sponsored by:	DARPA, Network Associates Laboratories
2002-12-03 15:05:32 +00:00
Warner Losh
406259c133 Two fixes for devd:
1) Move devd to the start of the head of the boot process rather than the end.
2) Disable devctl if devd is disabled.
2002-11-30 00:40:53 +00:00
Ruslan Ermilov
cd96609654 Removed the vestiges of modems(5).
Approved by:	re
2002-11-27 16:45:10 +00:00
Robert Watson
881a0ee9b5 Update rc scripts to load mac_lomac instead of lomac.
Approved by:	re
Obtained from:	TrustedBSD Project
Sponsored by:	DARPA, Network Associates Laboratories
2002-11-26 17:51:03 +00:00
Hajimu UMEMOTO
3cea219898 compliance with RFC3152.
PR:		standards/45557
Submitted by:	Matthew Seaman <m.seaman@infracaninophile.co.uk>
Approved by:	re
2002-11-26 07:55:44 +00:00
Tom Hukins
44e7a90898 Clarify adjkerntz(8) note and use complete sentences in comments.
PR:		misc/45493
Approved by:	re (rwatson)
2002-11-22 16:13:39 +00:00
Julian Elischer
aa0382fd00 Make directory for bluetooth include files. 2002-11-21 00:36:19 +00:00
Thomas Quinot
da509dd293 Do not emit a message on stderr when one of the compared files
is shorter than the other.

Reviewed by:	roberto
MFC after:	3 days
2002-11-16 14:58:39 +00:00
Thomas Quinot
68c2bacd8d Remove incorrect output redirection.
Reviewed by:	roberto
Committed from:	EuroBSDCon Amsterdam
MFC after:	3 days
2002-11-16 14:57:12 +00:00
Ruslan Ermilov
1696b51df2 Backout rev. 1.263.
Approved by:	jmallett
2002-11-15 18:44:09 +00:00
Ruslan Ermilov
11aa179923 Fixed two typos in comments. 2002-11-15 08:26:36 +00:00
David E. O'Brien
a6f8d995f3 [DAIVD O'BRIEN's OPINION]
Head off what I think is an abuse of the TRB, and disable lukemftpd.
2002-11-12 17:31:12 +00:00
Warner Losh
91618540a1 Turn off devd until I have a devd.conf file that I can install one
that does no harm.
2002-11-12 07:10:45 +00:00
Warner Losh
4cb1a7dfa3 Add devd_enable
Submitted by: dougb
2002-11-10 09:13:31 +00:00
Gordon Tetlow
59de601c12 By popular demand, make the debug log to syslog.
Remove an extraneous return too.
2002-11-09 17:34:21 +00:00
Warner Losh
7b13078b41 Add devd to the mix. It should run basically last at this point.
# I've tested this, but only lightly, so please email me with problems.
2002-11-09 07:45:53 +00:00
Gordon Tetlow
fd750dbd4c Diff reduction to NetBSD:
Fix a minor grammer nit.
Get rid of _echo that uses logger and just call logger in the 3 routines
that need it.
Add a comment referencing rc.conf(5) in the case of an incorrectly set
variable.

This pulls rc.subr up to 1.51 of rc.subr. I skipped 1.49 (systrace support)
since I don't have systrace.

Obtained from:	NetBSD
2002-11-08 17:06:15 +00:00
Doug Barton
a0c161c4e4 Import the latest hints file from Internic. The most important change
is that J has moved, however I'm sure you'll all be very disappointed
to hear that you can no longer retrieve this file via gopher.
2002-11-06 09:21:39 +00:00
Bill Fenner
04b3b6443c Force rpcbind to start even if it wasn't enabled. This solves the ypbind
problems people were having at startup.

Approved by:    re
2002-11-04 20:51:20 +00:00
Mark Murray
44b308453a Restore /var/games; lots of ports' games use it. 2002-11-04 07:50:48 +00:00
Hajimu UMEMOTO
7b988fe73c Add IPv6 setup for ipfilter. `ipv6_ipfilter_rules' was added
to specify rules definition file for ipfilter.  The default is
/etc/ipf6.rules.  If there is a file which is specified by
'ipv6_ipfilter_rules', IPv6 rule is installed.

Reviewed by:	Ronald van der Pol <Ronald.vanderPol@rvdp.org>
MFC after:	1 week
2002-11-02 08:21:26 +00:00
Gordon Tetlow
cbde04a9b7 Wrap test case in an if statement to avoid crunching a return value. 2002-10-31 02:06:05 +00:00
Anton Berezin
d8011e5791 Remove Perl bits still lurking in BSD.local.dist. It is a
responsibility of lang/perl5 to deal with those nowadays.

Requested by:	kkenn
2002-10-29 16:48:03 +00:00
David E. O'Brien
a029577b46 Tweak the warning language. 2002-10-29 08:41:12 +00:00
Bill Fenner
be9faa3290 Fix "err" usage.
PR:		44284
Submitted by:	Sergey Mokryshev <mokr@mokr.net>
2002-10-26 00:18:06 +00:00
Bill Fenner
dab1b45261 Fix two typos. Using "-eq" instead of "=" in a [ caused an error when
an entry in /etc/sysctl.conf didn't exist.  Fixing this exposed a minor
typo "exits" vs. "exist".

However, there doesn't appear to be any provision to run this with
the "lastload" argument, meaning that the error will never appear.
2002-10-25 23:02:54 +00:00
Andrey A. Chernov
8f47eb5b3a Add lt_LT.ISO8859-13 2002-10-25 22:00:34 +00:00
Mark Murray
0dfb60ca82 No need for this config file; games are gone. 2002-10-25 19:11:19 +00:00
Thomas Quinot
77ee1b9798 Add newly-added sripts to FILES.
Reviewed by:	roberto
2002-10-25 15:23:26 +00:00
Thomas Quinot
7644e396f3 Add a new /etc/periodic/security script to check for packets
rejected by ipfilter (510.ipfdenied), and a corresponding periodic.conf
knob (daily_status_security_ipfdenied_enable).

Reviewed by:	roberto
Approved by:	re@
2002-10-25 15:16:54 +00:00
Thomas Quinot
cb9eff8a9e Factor out code across various /etc/periodic/security scripts into a
separate file, /etc/periodic/security/security.functions.

Reviewed by:	roberto (mentor)
Approved by:	re@
2002-10-25 15:14:16 +00:00
Luigi Rizzo
65b8577640 Fix a bug in MAKEDEV -- when creating /dev/usb, the code was using
whatever random value was already in $unit. It happened to work
because the variable is often unset, but this is not always the
case e.g. when you call "MAKEDEV sio2 usb ..."

This affects -stable as well.

Reviewed by: n_hibma
Silence from: re
MFC after: 3 days
2002-10-24 17:59:58 +00:00
Robert Watson
93af0c0187 # WARNING: lukemftpd does not support PAM, MAC, per-class nologin files,
# or any login.conf resource limits or features; use it only if this is
# appropriate for your environment.  If you require these features, use
# the regular FreeBSD ftpd below.

Discourage users from using lukemftpd if they rely any of these standard
FreeBSD features that are fully supported by our native ftpd.  There
may be other features that are not yet supported that I have not yet
discovered.
2002-10-24 15:46:10 +00:00
Robert Watson
bac8e8742b Install mac_partition include files.
Obtained from:	TrustedBSD Project
Sponsored by:	DARPA, Network Associates Laboratories
2002-10-24 15:25:37 +00:00
Poul-Henning Kamp
4d1ad8751d Invert the logic of the NO_MAKEDEV options to match the 5.0-R default install. 2002-10-22 15:01:50 +00:00
Robert Watson
26c0d98697 Hook up a sample mac.conf to the install. The sample basically
tells applications to print labels for all of the TrustedBSD-
generated policies, if they are present.

Obtained from:	TrustedBSD Project
Sponsored by:	DARPA, Network Associates Laboratories
2002-10-22 14:38:49 +00:00
Mark Murray
dc2f663b39 Do not build the majority of the games. Remaining are the
"utility-like" games and everyone's favourite, fortune(6).
2002-10-20 11:18:56 +00:00
Scott Long
f9d186edc8 After much delay and anticipation, welcome RAIDFrame into the FreeBSD
world.  This should be considered highly experimental.

Approved-by:	re
2002-10-20 08:17:39 +00:00
Andrey A. Chernov
cb599ce2c1 Add sr_YU locale directories
Submitted by: Toni Andjelkovic <toni@soth.at>
2002-10-19 12:56:56 +00:00
Thomas Moestl
9f29ec17e0 Install the include files in sys/dev/ofw. 2002-10-18 15:30:50 +00:00
Sam Leffler
4b70617d04 install "fast ipsec" include files 2002-10-18 04:21:29 +00:00
Robert Watson
64ac587b8a Exempt the "wheel group requirement" by default when su'ing to root if
the wheel group has no explicit members listed in /etc/group.  This adds
the "exempt_if_empty" flag to pam_wheel in the default configuration;
in some environments, it may be appropriate to remove this flag, however,
this default is the same as pre-pam_wheel.

Reviewed by:	markm
Sponsored by:	DARPA, Network Associates Laboratories
2002-10-18 02:39:21 +00:00
Maxim Sobolev
119b9f09e9 Fix silly typo: loacal --> local. 2002-10-17 23:46:32 +00:00
Giorgos Keramidas
cc5ce63097 Replace old, not-working URL for an online index of DNS blacklist
servers with a reference to the Google directory.

Reviewed by:	gshapiro
MFC after:	1 week
2002-10-16 22:52:56 +00:00
Robert Watson
190a0059cf Remove root from the 'guest' group: missed in a previous pass.
Spotted by:	jhb
2002-10-14 20:55:49 +00:00
Robert Watson
975819b705 Remove root from the kmem, sys, tty, and staff groups in the default
configuration.  Root privileges override DAC on local file systems and
therefore root does not generally need to be a member of a group to
access files owned by that group.  In the NFS case, require explicit
authorization for root to have these privileges.

Leave root in operator for dump/restore broadcast reasons; leave root
in wheel until discrepencies in the "no users in wheel means any user
can su" policy are resolved (possibly indefinitely).
2002-10-13 17:00:37 +00:00
Robert Watson
7b2c73b73d For consistency with other entries in group, don't put the daemon or
xten users in their groups explicitly--we pick that up from the gid
field in master.passwd.
2002-10-13 16:26:26 +00:00
Jens Schweikhardt
0de35d0351 s/dependancy/dependency/ 2002-10-12 13:49:21 +00:00
Jens Schweikhardt
143085107b Fix style bugs:
* Space -> tabs conversion.
* Removed blanks before semicolon in "if ... ; then".
* Proper indentation of misindented lines.
* Put a full stop after some comments.
* Removed whitespace at end of line.

Approved by:	silence from gordon
2002-10-12 10:31:31 +00:00
Dima Dorfman
2dbe6947fa Aesthetics: Output a prefix before sourcing rc.local as the old rc
script did.  Stuff in rc.local frequently has lines like
"echo -n ' service_name'" which look ugly without a prefix and a
trailing period.  Likewise for rc.shutdown.local for consistency.
2002-10-12 07:23:43 +00:00
Dima Dorfman
605cf4c8a3 Aesthetics: Most (all?) other messages output at boot time have
trailing periods, so why shouldn't this one?
2002-10-12 07:21:18 +00:00
Joerg Wunsch
6e84ba78c1 When considering temporary files for deletion, don't examine the mtime
and atime only, but also the ctime.  Otherwise, files extracted from
tar or zip archives will immediately be declared stale since they've
got their mtime reset to the original mtime.

Reviewed by:	brian
MFC after:	1 week
2002-10-06 18:48:20 +00:00
Scott Long
e8890ccc51 Remove matcd from MAKEDEV.
X-MFC after:	ASAP
2002-10-05 18:28:48 +00:00
Sam Leffler
b18fda4edd add support for /dev/crypto 2002-10-04 20:44:46 +00:00
Sam Leffler
3feb456215 install sys/opencrypto include files in /usr/include/crypto 2002-10-04 20:44:28 +00:00
Jens Schweikhardt
d539c53b01 Fix all whitespace style bugs where spaces have been used
where tabs should have been. Cut & paste disease?

Spotted by:	vi(1) tabstop=4
MFC after:	2 weeks
2002-10-03 20:39:29 +00:00
Dima Dorfman
2ca85e3d5e In a diskless setup, rc.d/initdiskless may overwrite parts of /etc on
a per-machine or per-cluster (with different ways of expressing what's
part of a cluster) basis.  In order for this to be effective, rc.conf
has to be reread after initdiskless is finished.  Implement this by
adding a hook to etc/rc which rereads rc.conf by request.  This can
also be implemented by renaming initdiskless to initdiskless.sh and
sourcing rc.conf there manually, but it was decided that, that would
be uglier than a hook in etc/rc.

Developed in concert with:	gordon
2002-10-02 00:59:14 +00:00
Ruslan Ermilov
7206028152 test -h is deprecated; use -L instead.
PR:             bin/40846
2002-10-01 13:29:45 +00:00
Matthew N. Dodd
e2540a6d46 - Recognize 'idt' interfaces.
- The start command is 'atm_start' not 'start_cmd'.
2002-09-30 08:01:43 +00:00
Matthew N. Dodd
955f5ec383 Recognize 'idt' interfaces. 2002-09-30 08:01:16 +00:00
Warner Losh
e98304b93f SAMSUNG SWL-2000P PCI Card
Submitted by: Robert Dezorzo
2002-09-30 01:19:52 +00:00
Warner Losh
124524158d Psion Dacom Gold Card Ethernet
Submitted by: Rick Hoppe
2002-09-30 01:07:28 +00:00
Warner Losh
8144adea99 Generic Prism2.5 card
Submitted by: Matt Peterson
2002-09-30 00:59:05 +00:00
Warner Losh
af7d66fcb6 Belkin F5D5020 pccard.
Submitted by: Philip Pereira
2002-09-30 00:51:49 +00:00
Warner Losh
3902407590 Entry for I-O Data PCET/100-CL
Submitted by: MATSUO Masahiko-san
2002-09-30 00:40:23 +00:00
Warner Losh
3792e753d3 oops, last second botch: fix extra 'i' 2002-09-29 23:16:08 +00:00
Warner Losh
6e252ced31 o Belkin wireless card
PR: 38919
Submitted by: Tommy Johnson

o IBM IDE CDROM

PR: 39537
Submitted by: Kevin Van Maren

o T-Sunus 130 card

PR: 41802
Submitted by: Oliver Schneider
2002-09-29 23:13:08 +00:00
Warner Losh
0acab084ce o FreeSPirit ISDN/56K modem card
o No-name OEM Prism card
o ActionTec Prism card
o ZoomAir 11Mbps High Rate wireless networking

PR: 41929, 41928
Submitted by: Bruce M Simpson

o Dynalink L100C16

PR: 41938
Submitted by: Marco van de Voort
2002-09-29 22:51:31 +00:00
Warner Losh
a2398beeed Newer Netgear MA401RA entry.
Submitted by: Michael Ranner
2002-09-28 17:36:52 +00:00
Gordon Tetlow
38441fbf04 Fix moused so you can use the stop command
Reported by:	wa1ter@myrealbox.com
2002-09-27 16:54:21 +00:00
Warner Losh
760769737a Two fixes:
1) Add new card entry for nortel eMobility wi card (from email
	   that I've lost the sender on :-(
	2) put ata devices at config 0x1 rather than auto.  This should be
	   better for nearly all cases.

MFC after: 3 days
2002-09-27 06:14:29 +00:00
Juli Mallett
54f61a9394 Document at least one meaningful RELENG_5 feature, the ability to hide from
a user processes which run with an inequivalent class of UID credentials.

Sponsored by:	Rachel Hestilow <rachel@jerkcity.com>
2002-09-25 22:17:18 +00:00
Brian Somers
df93d794dc Add a pkg_version variable so that it's possible to run portsversion instead
of pkg_version in periodic/weekly/400.status-pkg.
2002-09-25 03:01:42 +00:00
Andrey A. Chernov
15897030c6 Make it work with POSIX sort (POS arg).
All old sorts understand -k too.
2002-09-24 18:53:46 +00:00
Poul-Henning Kamp
320d99c058 Use mdmfs(8) rather than rolling our own RAM-disks.
Sponsored by:	DARPA & NAI Labs.
2002-09-22 09:48:02 +00:00
Mark Murray
a5dd613ce6 Rename the ftp log filename for compatability with OpenBSD and NetBSD.
Requested by:	ru
2002-09-21 12:07:35 +00:00
Mark Murray
d595e25a82 Install empty ftp.log file to start off ftp logging. 2002-09-20 22:12:27 +00:00
Mark Murray
bbd0e6a78d Log ftpd stuff in the same way that we log lpd stuff. Too many ftpd's
are attacked for us to throw away this sort of evidence.
2002-09-20 22:10:01 +00:00
Hajimu UMEMOTO
a75d520e1f up gif during setup. 2002-09-20 18:31:55 +00:00
Gordon Tetlow
2c7db4fbc2 Quiet warnings on shutdown. 2002-09-19 20:14:50 +00:00
Don Lewis
08bb4399fa Unbreak installworld.
Apparently /usr/include/dev grew a couple of subdirectories, but nobody
informed mtree.
2002-09-19 08:35:12 +00:00
Kris Kennaway
64e11ced68 Add some extra directories created by recent versions of XFree86-4
Reviewed by:    anholt (XFree86-4 maintainer)
MFC after:      1 day
2002-09-19 02:05:41 +00:00
Ralf S. Engelschall
25ade111dc Fix implementation of rc variables $amd_flags and $amd_map_program in
rcNG. The $amd_flags variable was already taken over into $rc_flags
by run_rc_command() when amd_precmd() is executed, so changing
$amd_flags there no longer effects the actual execution of amd.
Hence in amd_precmd() the $rc_flags have to be adjusted instead.
2002-09-18 08:49:50 +00:00
Sam Leffler
c57aba5686 MFC: Elan support;
o Recognize AMD Elan SC520 hostbridge.
o Add initialization code for the AMD Elan sc520 which maps the MMCR
  into KVM and sets the i8254 frequency to the correct value.
o MAKEDEV entry for elan-mmcr device

Reviewed by:	phk, jhb
Approved by:	re(jhb)
2002-09-17 22:39:57 +00:00
Peter Wemm
66422f5b7a Initiate deorbit burn for the i386-only a.out related support. Moves are
under way to move the remnants of the a.out toolchain to ports.  As the
comment in src/Makefile said, this stuff is deprecated and one should not
expect this to remain beyond 4.0-REL.  It has already lasted WAY beyond
that.

Notable exceptions:
gcc - I have not touched the a.out generation stuff there.
ldd/ldconfig - still have some code to interface with a.out rtld.
old as/ld/etc - I have not removed these yet, pending their move to ports.
some includes - necessary for ldd/ldconfig for now.

Tested on: i386 (extensively), alpha
2002-09-17 01:49:00 +00:00
Gordon Tetlow
42f10b3fe0 Fix sendmail to use checkyesno since rc.conf is no longer re'sourced from the
debug statement.
2002-09-12 17:31:09 +00:00
David E. O'Brien
8e00cef74d Use bzip2 instead of gzip for those logs we compress.
Basic idea agreed to by:	rwatson
2002-09-12 17:28:07 +00:00
Gordon Tetlow
0d8441a9fe Remove the sourceing of rc.conf from the debug subroutine. This caused
problems when you try to override variables locally.
2002-09-12 17:27:36 +00:00
John Baldwin
2cb1c3a5c5 Cosmetic cleanup to a message. 2002-09-11 19:49:43 +00:00
Gordon Tetlow
8e05457085 Quiet warnings about non-existent scripts. My own fault for not testing my
own patches as well as I should.
2002-09-11 01:00:57 +00:00
Gordon Tetlow
e022d3b1aa Fix syscons so it actually does start.
Reported by:	keramida, ume
Submitted by:	keramida
2002-09-09 22:40:34 +00:00
Mitsuru IWASAKI
5ea0b02d5a Add an entry for corega WL PCCL-11.
PR:		conf/42481
Submitted by:	NINOMIYA Hideyuki <nin@jp.FreeBSD.org>
Approved by:	imp
MFC after:	1 week
2002-09-06 17:45:36 +00:00
Gordon Tetlow
77e55efba0 Convert from ${CMD_OSTYPE} to ${OSTYPE}. This saves a shell invocation on
OS-dependent case switches.
2002-09-06 16:18:05 +00:00
Gordon Tetlow
550f8fc46b Add a support for a ${OSTYPE} which is set once in /etc/rc.subr. Also convert
all instances of `${CMD_OSTYPE}` to just using ${OSTYPE}. This saves us a
shell invocation on anything that is OS-dependent. I seriously doubt that we
will be spontaneously changing OS types during bootup.
2002-09-06 16:15:29 +00:00
Peter Wemm
f915be3bad rev 1.6 claimed to add 'bootparams', but in fact added 'bootparamd' which
does not exist.
2002-09-06 01:23:31 +00:00
Bill Fenner
4716fa4ee9 Only try to initialize syscons if /dev/ttyv0 exists and it's not a pcvt. 2002-09-05 23:51:28 +00:00
Bill Fenner
57dedf04ca Only try to run /usr/sbin/ispcvt if it exists and is executable. 2002-09-05 23:50:34 +00:00
Gordon Tetlow
adac8f8551 Add an archdep script and hook it up to the build.
Submitted by:	Mike Makonnen <makonnen@pacbell.net>
2002-09-05 20:29:18 +00:00
Gordon Tetlow
7ea5622b15 Hook bootparams up to the world 2002-09-05 20:15:08 +00:00
Gordon Tetlow
b0e6d55b9e Introduce bootparamd into the boot scripts. Add a bootparamd_enable and
_flags to rc.conf

Submitted by:	John Hay <jhay@zibbi.icomtek.csir.co.za>
2002-09-05 20:14:46 +00:00
Gregory Neil Shapiro
d87e0e8e23 Deprecate the use of sendmail_enable="NONE" as it adversely affects the
new rcNG effort.

Submitted by:	Mike Makonnen <makonnen@pacbell.net>
2002-09-03 22:15:57 +00:00
Gordon Tetlow
f048183067 nfsd doesn't die on SIGTERM but on SIGUSR1, correct script to kill nfsd with
the right signal.
2002-09-03 16:02:57 +00:00
Gordon Tetlow
b168ce8b63 We don't use single_mountd_enable anymore. It's just mountd_enable. I must
have missed this in my earlier sweep.
2002-09-02 21:20:58 +00:00
Gordon Tetlow
da5e455e1a Only install the scripts that actually used on FreeBSD. 2002-09-02 20:49:26 +00:00
Gordon Tetlow
4376ad7708 Commit a revised sendmail script that works the same way as rc.sendmail.
This should also quell warnings when sendmail_enable="NONE"
2002-09-02 20:37:03 +00:00
Gordon Tetlow
67a399fda8 Turn rc_ng on by default now, it's time has come. While we are at it, I'd
like to thank Mike Makonnen for all his work on rcNG. Without him, none
of this would have been possible.
2002-09-02 16:35:01 +00:00
Hellmuth Michaelis
949f39b532 establish default values for /etc/rc.d/pcvt script 2002-08-30 13:01:42 +00:00
Hellmuth Michaelis
6b6c162a88 integrate pcvt configuration into the new /etc/rc.d startup system
PR:           i386/7100
Reviewed by:  Gordon Tetlow <gordon@FreeBSD.org>
2002-08-30 12:43:23 +00:00
Crist J. Clark
10f23b4ad0 Only create a temporary file if we are actually going to do something
in the script. Eliminates a bug where we create a temp file, but don't
delete it since the rm(1) is only done if the check is enabled.

PR:		bin/40960
Submitted by:	frf <frf@xocolatl.com>
MFC after:	3 days
2002-08-25 04:09:17 +00:00
Gordon Tetlow
4642178fcc Print out a carriage return to make the screen output make more sense
Submitted by:	mike@
2002-08-20 00:14:11 +00:00
Gordon Tetlow
eabdfedb1e I missed the single_mountd_enable in rc.network.
Submitted by:	Mike Makonnen <makonnen@pacbell.net>
2002-08-15 03:29:19 +00:00
Gordon Tetlow
5b572aec21 Remove an accidental double chkdepend that snuck in during the last commit.
Submitted by:	Mike Makonnen <makonnen@pacbell.net>
2002-08-15 03:24:47 +00:00
Gordon Tetlow
8987faac82 Don't export variables from /etc/rc when doing rc_ng because the scripts
are sourced in a subshell.

Submitted by:	Mike Makonnen <makonnen@pacbell.net>
2002-08-14 05:58:44 +00:00
Gordon Tetlow
88f7d3e22b Clean up the scripts to use the new variables:
xntpd_* -> ntpd_*
portmap_* -> rpcbind_*

Also change single_mountd_enable -> mountd_enable
Changing the mountd flags brings us closer to NetBSD.

All of the old variable names are shimmed so you can continue to use the
old variable name.

Finally make /etc/rc.d/mountd no longer dependent on nfs as there are
(apparently) other consumers of mountd.

Submitted by:	Mike Makonnen <makonnen@pacbell.net>
2002-08-14 05:44:32 +00:00
Gordon Tetlow
2ee93c5780 Clean up some variables that should have been done before:
xntpd_* -> ntpd_*
portmap_* -> rpcbind_*

Also change single_mountd_enable to mountd_enable.

We also include shims for all the old variable names.

Submitted by:	Mike Makonnen <makonnen@pacbell.net>
2002-08-14 05:37:15 +00:00
Jens Schweikhardt
f017edb1bf o Test and change to the correct directory, /var/spool/.hoststat
o Bring if/then style in sync with /etc/rc scripts

PR:		conf/41570
Submitted by:	Konstantin M Volevatch <cox@rosnet.ru>
MFC after:	1 week
2002-08-12 11:09:01 +00:00
Jens Schweikhardt
84bd1082cb Fix typos (s/seperat/separat/ et al); add FreeBSD ID.
Suggested by:	bde
MFC after:	3 days
2002-08-12 10:04:32 +00:00
Ian Dowse
d64915d6e3 Remove some unnecessary sanity checks that break "sh MAKEDEV cd"
and others, because test(1) does not do shortcut evaluation.

Fix the same off-by-one error for acd*t* that revision 1.326 fixed
for other *cd devices.

Suggested by:	bde
Reviewed by:	bde
2002-08-10 22:03:58 +00:00
Ian Dowse
539354bed3 Permit the creation of just cd0 if desired. Previously it always
created cd1 as well due to an off-by-one error left over from
revision 1.249.

PR:		conf/20436
Submitted by:	Andre Albsmeier <andre.albsmeier@mchp.siemens.de>
MFC after:	1 week
2002-08-10 00:20:32 +00:00
Tony Finch
a7c397167e Remove trailing whitespace. 2002-08-09 20:58:54 +00:00
Gordon Tetlow
897102c745 Make the othermta script DTRT when an mta startup script is not specified.
Submitted by:	Mike Makonnen <makonnen@pacbell.net>
2002-08-09 17:45:04 +00:00
Gordon Tetlow
5e6fcb8ccc Correct comment. We use rpcbind now, not portmap
Submitted by:	Mike Makonnen <makonnen@pacbell.net>
2002-08-09 17:34:13 +00:00
Gordon Tetlow
e4bc448975 Correct comment
Submitted by:	Mike Makonnen <makonnen@pacbell.net>
2002-08-09 17:33:07 +00:00
Ruslan Ermilov
4e17db5b58 We no longer have a COPY. 2002-08-07 16:01:06 +00:00
Jake Burkholder
2e55bb64c3 Add example entries for ttya and ttyb (sab). 2002-08-04 19:16:13 +00:00
Gregory Neil Shapiro
b31d4126e3 If all file systems are marked nosuid, the line:
MP=`mount -t ufs | grep -v " nosuid" | awk '{ print $3 }' | sort`

sets ${MP} to an empty string so the next line:

	set ${MP}

actually just dumps all of the shells variables to stdout (and therefore
the security report).  Fixed by surrounding the code which goes through the
mounts with a test for an empty string before using ${MP}.

Reviewed by:	brian
MFC after:	3 days
2002-08-03 22:33:34 +00:00
Robert Watson
844a8917d6 Introduce support for Mandatory Access Control and extensible
kernel access control.

Create directories for per-policy include files.

Obtained from:	TrustedBSD Project
Sponsored by:	DARPA, NAI Labs
2002-08-01 22:37:08 +00:00
Hajimu UMEMOTO
ec2409ba60 FreeBSD has setkey in different location from NetBSD.
Submitted by:	Mike Makonnen <makonnen@pacbell.net>
2002-07-31 16:39:19 +00:00
Marc Fonvieille
5fddf8bfc1 Correct URL to the Handbook
MFC after:	1 week
2002-07-31 10:05:37 +00:00
Ruslan Ermilov
d2893b161b Drop support for COPY, -c has been the default mode of install(1)
for a long time now.

Approved by:	bde
2002-07-29 09:40:17 +00:00
Dima Dorfman
527597b2d9 Stock -current has more than 300 files in /etc, so 255 inodes for the
/etc filesystem isn't enough; consequently, add "-i 4096" to the newfs
command for /etc.  This results in 1022 inodes, which should be enough
for the forseeable future (although I don't know why we would ever
have more than 1000 files in a default /etc).

Silence by:	-current
2002-07-28 03:41:53 +00:00
Dima Dorfman
cfab43190a Add a period to the end of the "starting" message to be consistent
with the rest of the output during a boot.
2002-07-28 03:38:10 +00:00