d/freebsd-skq
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
91,503 Commits 4 Branches 49 Tags 2 GiB
4b12c0fdf3
Commit Graph

3681 Commits

Author SHA1 Message Date
markm
409ee51dc2 Make the defaults for Kerberos 5 a little more up-to-date. 2003-04-30 20:58:49 +00:00
markm
2f3d8ec29f Change the name of the kadmind binary to match reality, now that 
KerberosIV is no longer an issue.
 2003-04-30 20:42:41 +00:00
mtm
9431d3c988 This script should require mountcritremote, since that is the last 
script at which a filesystem will be mounted in FreeBSD. Without this
the script was being inserted later in the boot than necessary.

Approved by:	markm (mentor) (implicit)
Reviewed by:	dougb
Noticed by:	Andrzej ToboÅa <san@wilk.2a.pl>
 2003-04-30 07:12:09 +00:00
mtm
3dc6471c3a This particular debugging statement is very verbose, making the rest 
of the debug output hard to follow. Comment it out. It's commented out
in NetBSD's version as well.

Approved by:	markm (mentor)(implicit)
 2003-04-30 03:03:47 +00:00
mtm
396cb07a9a o Make the 'Ip-filter module loaded' messages informational 
o Make 'No ipnat rules' a warning
o Remove unecessary ' ..'

Approved by:	markm (implicit)
 2003-04-30 02:54:17 +00:00
mtm
07b151e512 Running the script with restart or manually stopping and starting 
it doesn't work because the start_cmd doesn't enable ipfilter if
it is currently disabled.

Approved by:	markm (mentor) (implicit)
Submitted by:	Michael Lyngbøl <lyngbol@bifrost.lyngbol.dk>
PR:		conf/46103
 2003-04-30 02:19:38 +00:00
imp
6df3f156bf We need pccard start too. 2003-04-29 15:32:02 +00:00
jwd
28e298a192 new netstart 
atm should be correct but is commented out pending appropriate testing.

Submitted by:	mtm
 2003-04-29 12:26:37 +00:00
jwd
2df227a9c1 Add rc.subr (found during new /etc/netstart testing) 2003-04-29 12:08:43 +00:00
mdodd
6cf4fd65a1 Add entries for Multicast DNS. 2003-04-29 09:54:06 +00:00
dougb
2d9baa1ee8 Move the mktemp invocation inside motd_start to avoid creating temp 
files when uptdate_motd and clear_tmp_enable are both NO.

Submitted by:	Alex Deiter <tiamat@komi.mts.ru>
 2003-04-29 06:56:40 +00:00
dougb
804dea9906 Add a dire warning about the impending demise of the old rc system. 
Suggested by:	scottl
 2003-04-27 07:08:07 +00:00
imp
1bf91a17ef xten isn't needed after tw is gone. 
Approved by: re@ (scottl)
 2003-04-27 05:49:53 +00:00
imp
ce6ed33017 xten user no longer needed. 2003-04-27 05:45:29 +00:00
mtm
b41f46abfe Use $ipnat_program instead of the hardcoded path, which was wron 
anyways.

Approved by:	markm (mentor) (implicit)
Submitted by:	leafy <leafy@leafy.idv.tw>
 2003-04-24 18:14:52 +00:00
des
85e31bc1f4 Add nullok to the pam_unix line. 2003-04-24 12:22:42 +00:00
mtm
e4ea8b6549 o Add support for running /etc/rc.early 
o Re-run through /etc/sysctl.conf a second time just before we set
  the securelevel.

Approved by:	markm (mentor) (implicit)
Reviewed by:	dougb
 2003-04-24 08:27:29 +00:00
mtm
a6c5ee3cc4 Make ipfilter, ipnat, ipmon, and ipfs behave more like the old rc. 
o group them together so they run one right after another
	o use the NetBSD supplied ipfs script instead of tacking
	  it on to the end of ipnat
	o Load the ipl module in ipnat and ipfilter, if it's not already
	  loaded
	o In ipmon and ipnat show a warning if neither ipfilter nor
	  ipnat is enabled or the ipl module is not loaded, and exit

Approved by:	markm (mentor) (implicit)
Tested by:	leafy <leafy@leafy.idv.tw>
 2003-04-24 08:20:47 +00:00
matusita
b9c860330d Set appropriate tag "fsck" to logger(1) for background fsck messages. 
PR:		51174
Submitted by:	Alex Popa <razor@ldc.ro>
 2003-04-23 15:38:02 +00:00
des
1e06682f7e Make sure debug.log only gets debugging messages. 2003-04-23 13:08:31 +00:00
mtm
ac7a615c70 Run interface specific scripts for dhcp interfaces too. 
This is how it has always been done (before and after rc.d) but
I somehow failed to include it when I broke up network1.

Submitted by:	bmah
Approved by:	markm (mentor)(implicit)
 2003-04-20 19:14:16 +00:00
rwatson
594a41d213 Remove the 'te' label elements from the default configuration, since we 
no longer plan on shipping a TE MAC module independent from SEBSD.

Obtained from:	TrustedBSD Project
Sponsored by:	DARPA, Network Associates Laboratories
 2003-04-20 03:09:35 +00:00
mtm
f6cc6047c7 Spell ${_jail} correctly 
Submitted by: Shizuka Kudo <shizukakudo_99@yahoo.com>
Approved by:	markm (mentor) (implicit)
 2003-04-19 07:50:32 +00:00
mtm
f01ceae333 The changes to rc.d/network1 will not get merged in by 
mergemaster if it does not appear in the list of files to install.
 2003-04-19 01:56:44 +00:00
mtm
65d4bf1aff o Hook the new files up to the build. 
o Make sure all the scripts reference rc.d/netif and not rc.d/network1

Approved by:	markm (mentor)
 2003-04-18 17:55:05 +00:00
mtm
0c05e74326 Make use of the dhclient script. This will bring up/down dhcp 
interfaces.

Approved by:	markm (mentor)
 2003-04-18 17:53:02 +00:00
mtm
70cccaca83 Break out and rewrite the network setup scripts. 
o /etc/network.subr contains common subroutines used for seting
	  up network interfaces
	o rc.d/hostname sets the hostname if not already set
	o rc.d/nisdomain sets the nis domain *after* rpcbind but
	  before the yp* daemons. This fixes issues with temporary
	  hangs when looking up informaion in nis before it's ready.
	o rc.d/netif brings network interfaces (minus dhcp)  up.
	o rc.d/network1 has been disabled and will be retired before
	  RELENG_5. It will be replaced by rc.d/netif

Approved by:	markm (mentor)
 2003-04-18 17:51:54 +00:00
gshapiro
2c5f033673 The sendmail binary now has a reasonable default for MaxMimeHeaderLength 
built in.  No need to set it here.

MFC after:	1 week
 2003-04-18 01:25:41 +00:00
mtm
cdd9ff99e3 Fix typo (and make it more explicit/self-documenting). 
Noticed by:	gshapiro
 2003-04-16 16:44:00 +00:00
mtm
875fc4643f Add new knobs for controlling jails in rc.d and document them. 
Approved by:	makrm (mentor)
 2003-04-16 16:29:51 +00:00
mtm
21aff7c292 o Add a script to start jails on boot. 
o Hook it up to the build

Approved by:	markm (mentor)
Submitted by:	Clement Laforet <sheepkiller@cultdeadsheep.org> (modified)
Prodded by:	mike
 2003-04-16 16:27:23 +00:00
shiba
b1aaabebc1 Add NTT-ME SS-LAN CARD MN128. This card entry has been 
committed into NEWCARD.
 2003-04-10 17:16:01 +00:00
des
03a987e08d Introduce debug.log which gets debug.* (most of this would otherwise go 
to the great bit-bucket in the sky)
 2003-04-08 16:14:02 +00:00
yar
6dd591ce7c Stop logging ``authpriv'' messages to the world-readable file 
/var/log/messages.  Such messages are for the eyes of authorized
personnel only.

PR:		conf/48170
Discussed in:	freebsd-security
MFC after:	2 weeks
 2003-04-03 18:37:49 +00:00
ru
7d92e4785f Drop the silly notion that fd* entries have both a' and b' 
partitions; this does nothing except upsetting disklabel(8).
 2003-04-02 20:16:02 +00:00
ru
b6e2a1dccd Make disktab(5) MI (repo-copied from etc.i386/disktab). 2003-04-02 20:13:59 +00:00
jhb
699d82d7fc Remove 220.backup-distfile since it has been deleted. 
Reported by:	mdodd
Pointy hat to:	jhb
 2003-04-01 20:32:01 +00:00
jhb
4f51bb11c1 Complete removal of 320.rdist by removing its entry from periodic.conf and 
removing the related 220.backup-distfile script and associatd periodic.conf
entry.

Discussed with:	obrien
 2003-04-01 17:45:27 +00:00
mtm
c5a4cda504 Make the 'restart' command work. Otherwise, it would successfully 
stop ipfw, but not enable it again.

Aesthetic changes
	o Use positve logic (instead of negative)
	o create a 'stop' function, rather than putting the
	  commands in the stop_cmd variable.

Submitted by:	des
Approved by:	markm (mentor) (implicit)
 2003-03-30 15:52:18 +00:00
obrien
0c8ca48d87 320.rdist is OBE as we don't have rdist in the base system any more. 2003-03-29 03:28:28 +00:00
obrien
1a1209f873 This is OBE as we don't have rdist in the base system any longer. 2003-03-29 03:27:49 +00:00
sobomax
09dfc903cd Add pc-card from ARCHOS CD-224E cdrom. 
MFC after:	1 week
 2003-03-28 11:12:52 +00:00
trhodes
5ef2a20ee5 Update the handbook printing section URL so that it points to the 
correct location.
 2003-03-25 18:03:11 +00:00
gshapiro
a1a4db3471 Fix formatting (spaces -> tab) 
MFC after:	1 week
 2003-03-25 00:54:05 +00:00
ru
97be9a96e6 Directories for Russian manpages. 2003-03-24 09:39:09 +00:00
ume
7928fbf09d add missing `ipf -s'. 
Submitted by:	Mark Huizer <xaa+freebsd@timewasters.nl>
 2003-03-22 14:53:23 +00:00
cjc
95811eed28 Attach the kldxref script to the build/install. 2003-03-17 23:20:48 +00:00
cjc
c5ea907b7e A new rc-ng script to build linker.hints files with kldxref(8) 
automatically at boot time. Associated rc.conf(5) knobs and
documentation are included.
 2003-03-17 23:15:53 +00:00
dougb
ec4ba6b3ab Make it more clear how to disable keybell, and where its options are found. 
PR:		conf/41772
 2003-03-15 08:14:42 +00:00
ru
183c65a97c Use the canonical form of installing links. 
Also, make "ftp" and "ftpd" hard links.

Not objected to by:	des
 2003-03-14 09:01:22 +00:00
mux
6a7b9a7c64 Rework the wording of the comment for the security.bsd.see_other_uids 
sysctl a bit.

Approved by:	jmallett
 2003-03-13 18:43:50 +00:00
ru
bfe7fb29c7 Record the BOG death here too. 2003-03-12 14:29:15 +00:00
ru
26502dd8d8 No tabs here. 2003-03-11 11:14:34 +00:00
markm
ecc5f917a3 Initiate KerberosIV de-orbit burn. Disconnect the /etc configs. 2003-03-08 09:50:11 +00:00
sam
87f8be3c6a add ath to the list of Ethernet devices 2003-03-07 23:43:09 +00:00
peter
f9806b1803 Stop creating /usr/include/netns 2003-03-05 19:21:23 +00:00
ume
afad0cd7d1 Latest IPFilter requires flushing rules for IPv6 separately 
from IPv4.
 2003-03-05 17:16:22 +00:00
ru
b6a38ff592 Make sure the default install comes with /etc/login.conf hashed. 2003-03-03 11:19:18 +00:00
dougb
bd43cb6292 Don't try to deal with vi.recover if the directory doesn't exist 
PR:		conf/24515
Submitted by:	Jeroen C. van Gelderen <jeroen@systemics.com>
 2003-02-21 09:37:20 +00:00
mtm
ca2c24db40 We stopped reloading rc.conf for each script a long time ago. Things 
shouldn't depend on that any more.

PR:		conf/48332
Approved by:	markm (mentor)(implicit)
 2003-02-16 20:46:08 +00:00
des
2753d4cfa6 Alphabetize. 2003-02-16 13:07:20 +00:00
des
a9bd5d5fb8 Back out previous commit now that pam_opieaccess(8) has an allow_local 
option.
 2003-02-16 13:04:27 +00:00
des
a9b8975387 Add the allow_local option to all pam_opieaccess entries. 2003-02-16 13:02:39 +00:00
des
8c8f33d988 Add the want_agent option to the commented-out "session" pam_ssh entry. 2003-02-16 13:02:03 +00:00
des
cc216413fb Allow password logins from localhost (including the console). 2003-02-15 23:17:40 +00:00
keramida
6b0752c491 Remove {man,cat}n from /usr/share/man. They had been added for TCL, 
but it's no longer a part of the base-system and buildworld works fine
here after deleting them both on disk and from the mtree spec files.

Not objected to by:	kris, silence on -audit
 2003-02-15 23:05:48 +00:00
jhay
0333c90edc kenv moved from /usr/bin/ to /bin/. 2003-02-15 16:34:14 +00:00
jhay
b671096f55 Add another backslash ('\'). 2003-02-15 16:29:20 +00:00
shiba
058ff5e0df Add YIS YWL-11B. 2003-02-15 14:04:05 +00:00
mtm
4d9a4192f7 When cleaning /var/run make sure the control files are not removed 
unconditionally when the script is being rerun (when it is called
with the reload argument).

PR:		conf/47517
Approved by:	markm (mentor)
 2003-02-15 06:00:11 +00:00
imp
b735f32b59 Back out 1.143 and 1.144. They are no longer needed now that we start 
devd later in the boot process.  This should fix all the problems
people have had with those commits.  Diskless should be working again,
and those that mount /usr with nfs should be able to do that again too.
 2003-02-12 04:26:10 +00:00
imp
65ef87b1e1 Start devd after the networking stuff, but before we mount the 
critical remote systems.  This lets us run commands from devd that
aren't on the / partition.  This also means we can remove some kludges
from the networking startup that I added a while ago that caused other
problems.

There's still a race in starting devd that needs to be fixed in devd
so that things present at boot will be configured by the time devd
does daemon().  That race will be fixed later.
 2003-02-12 04:22:40 +00:00
imp
8412e60e53 Now that we don't have the NODEVFS case, we can just check to see if a 
device node exists directly to see if OLDCARD is compiled into the
kernel.  This eliminates the scary warning that people using NEWCARD
are seeing when they have pccard_enable=YES in their /etc/rc.conf
files.
 2003-02-12 04:12:23 +00:00
ache
652b5cc7e3 Apply man.alias to /usr/share/openssl/man too 2003-02-11 01:08:51 +00:00
nectar
b36647ffe0 Install the OpenSSL man pages in /usr/share/openssl/man 
and remove the WANT_OPENSSL_MANPAGES knob.
 2003-02-10 19:57:56 +00:00
des
d4d4a833ae Major cleanup & homogenization. 2003-02-10 00:50:03 +00:00
des
439e079c7b No idea what this is for, and it doesn't make much sense. If a port needs 
it, it can install its own copy in /usr/local/etc/pam.d/.
 2003-02-10 00:49:44 +00:00
des
ca9add3762 There's no reason to have two identical policies for FTP servers, so 
make ftp a symlink to ftpd.
 2003-02-10 00:47:46 +00:00
joerg
5428aebe8f Set the expected permissions of /dev to 0555 since this is what devfs 
is using anyway.  Otherwise, "make installworld" insists on resetting
them to 0755.
 2003-02-09 19:33:53 +00:00
gshapiro
da275a07b3 Allow multiple aliases files to be rebuilt 
PR:		bin/40540
Submitted by:	Cyrille Lefevre <cyrille.lefevre@laposte.net>
MFC after:	3 days
 2003-02-08 21:55:31 +00:00
gshapiro
d908e50a42 /etc/rc.network isn't built to handle a value of "DEFAULT" (nor should it 
be).  Using that string leads rc.network to execute:

# sysctl -w vfs.nfs.bufpackets=DEFAULT
vfs.nfs.bufpackets: 4 -> 0

Which isn't what was intended.

PR:		conf/31280
MFC after:	3 days
 2003-02-08 20:55:56 +00:00
gshapiro
0cb596bf64 Add a comment regarding the use of the msgs alias with sendmail to help 
users who want to enable it.

PR:		misc/39951
 2003-02-08 19:00:12 +00:00
phk
5f06b24786 Install geom include files. 2003-02-08 13:25:48 +00:00
keramida
be3ac9dc01 Misc grammar, typo and wording fixes of comments. 
PR:		docs/41034
Submitted by:	Chris Pepper <pepper@rockefeller.edu>
 2003-02-07 20:58:38 +00:00
trhodes
2791241073 Add a header: #!/bin/sh. 
PR:	44363
 2003-02-06 22:00:38 +00:00
des
3a6d7496df Use pam_group(8) instead of pam_wheel(8). 2003-02-06 14:33:23 +00:00
ru
58b4ceca92 NODEVFS cleanup. 2003-02-05 15:31:43 +00:00
maxim
6e5764ed08 ep(4) does not have link0 and link1 options. 
PR:		conf/46651
Submitted by:	Eugene Grosbein <eugen@grosbein.pp.ru>
Reviewed by:	imp, mdodd
MFC after:	1 week
 2003-02-04 14:10:55 +00:00
des
1b6009d788 Don't enable pam_krb5 by default - most people don't have it since most 
people don't build with MAKE_KERBEROS5 defined.  Provide commented-out
usage examples instead, like we do everywhere else.

Pointy hat to:	des
 2003-02-03 14:45:02 +00:00
des
13a23e2886 Enable pam_krb5 for sshd. I've had this in my tree for ages. 2003-02-02 18:41:26 +00:00
phk
785fe397cc NODEVFS cleanup: Goodbye, and good riddance! 2003-02-01 22:22:50 +00:00
phk
f4dd60325f NODEVFS cleanup: Don't ever install MAKEDEV anymore. 2003-02-01 22:22:06 +00:00
dbaker
c659131c45 Re-add information for applying for IP space from a registry since that 
hasn't been included since the ancient rs.internic.net address was
removed.

Offer the option of the five regional registries.

MFC after:	3 days
 2003-01-28 21:29:23 +00:00
jake
a658a1d508 Change ofwcons to use the output-device property from the firmware for the 
name of the device that it creates.  Update /etc/ttys accordingly.

An alias is created for the old name so that old /etc/ttys will continue to
work, but due to aliases being implemented as symlinks in devfs you cannot
login as root when using the alias device.

Discussed with:	grehan
 2003-01-27 04:42:17 +00:00
mtm
4185214610 NETWORKING should also mean routing daemons are up. 
Approved by:	markm (mentor)
 2003-01-25 23:14:08 +00:00
mtm
df94d591fe Start isdnd before ppp for those folks who use ppp-over-isdn. 
Approved by: markm (mentor)
 2003-01-25 23:03:48 +00:00
mtm
30ac5984d1 Read /etc/rc.subr. 
Approved by: markm (mentor)(implicit)
Noticed by: kris
 2003-01-25 20:02:35 +00:00
mtm
8a55a31618 Cleanup as many instances of rc.conf variable use before 
calling load_rc_config().

Approved by:	markm (mentor) dougb
 2003-01-24 00:37:52 +00:00
mtm
c4b9ff8c51 Missing '$' 
Approved by: markm (mentor)(implicit)
 2003-01-23 04:31:55 +00:00
mtm
83c819b8ca Write out the debug messages (from the previous commit) only if 
the evaluated command exists.

Approved by: markm (mentor)(implicit)
 2003-01-20 19:30:15 +00:00