Commit Graph

249 Commits

Author SHA1 Message Date
Robert Watson
71e8420535 o No longer mount /proc by default on newly installed systems. Almost
all facilities that previously relied on /proc have been rewritten
  to use ptrace().  procfs has presented a substantial security
  hazard for years, with several user->root compromises in the last
  few years.  Procfs will continue to be available but will require
  administrator intervention to use.

Reviewed by:	scottl, jedgar, mike, tmm
2002-02-10 01:34:04 +00:00
Maxim Sobolev
ef9cff0bec Safwish package built on bento is called `sawfish-gnome', so adjust sysinstall
and print-cdrom-packages.sh accordingly.

Revealed by:	re
MFC after:	1 day
2002-01-09 20:10:02 +00:00
Robert Watson
4d0032bde9 o Expand the text describing the Security options menu.
o Move nfs_reserved_port_only out of security profiles (where it was
  set somewhat improperly) to the Security options menu directly.
  Previously, the variable was set to true for Moderate, but not for
  Extreme, which is at best inconsistent.
o Update the Security Profiles help file to remove reference to the
  NFS reserved port.

o Note that the kernel currently defaults the sysctl to '0', but
  sysinstall has changed it to '1' as a default as of late; however,
  rc.conf sets the value to NO as the default.  This change brings
  them relatively into sync.

Sponsored by:	DARPA, NAI Labs
2001-12-21 19:51:44 +00:00
Robert Watson
86f2d72fd8 o Add a configSecurity menu to generally configure security settings,
and pull configSecurityProfile under that menu.  Add a menu option
  to determine whether LOMAC is enabled at boot.  Probably, eventually,
  many of the 'Security Profile' menu choices should be pulled out
  independently into the Security Menu, so as to make them individually
  selectable.

Sponsored by:	DARPA, NAI Labs
2001-12-21 18:30:50 +00:00
Murray Stokely
d47aa91c6a Silence warnings on alpha :
Use '%p' when printing out the address of a function.
  sizeof(int) != sizeof(long)
2001-09-22 22:34:14 +00:00
Robert Watson
dd5360b44c Spell SSHd as sshd to improve readability and consistency. 2001-09-04 20:22:14 +00:00
Robert Watson
0d0f76632d Add an additional \n before the "cautionary note" on the topic of
admins needing to pay attention when configuring the system.  This
improves readability of this message.
2001-09-04 20:21:12 +00:00
Ruslan Ermilov
1c86a7d9c7 Removed the (possible) ambiguity in /etc/rc.conf comment.
PR:		bin/29736
2001-08-17 16:05:54 +00:00
Josef Karthauser
67923e665b Sysinstall inserts a comment between changes to /etc/rc.conf.
Add a timestamp to the comment so that it's possible to see when
changes were made.

e.g.:
# -- sysinstall generated deltas -- # Wed Aug 15 18:10:20 2001
2001-08-15 17:10:49 +00:00
Robert Watson
86a02c1326 Somewhere along the way, configSecurityModerate() lost it's "int"
return value.

Spotted by:	gratuitous use of diff during MFC process
2001-08-11 03:26:52 +00:00
Robert Watson
614af3941d o Reduce the number of offered security profiles, as we now have a more
conservative default, and actually prompt specifically for inetd rather
  than handling it as a side effect of the security profile.  Update the
  help file to reflect this change.
o Rename "Fascist" to "Extreme" in the source code, to match the names
  presented to the user.
o Remove portmap and inetd from profile management.  Portmap is now
  disabled by default, but automatically turned on if a feature requires
  it (such as NFS, etc).

This is an MFC candidate for 4.4-RELEASE.

Reviewed by:	freebsd-arch@FreeBSD.org
Approved by:	re@FreeBSD.org
MFC after:	2 days
2001-08-10 23:57:43 +00:00
Robert Watson
f5ad562c54 Return DITEM_SUCCESS from configInetd(), as apparently a success or
failure value is expected.

Spotted by:     gcc
2001-08-10 02:23:10 +00:00
Andrey A. Chernov
cf9da17cbb Apply pending /etc/ttys changes before calling editor on it
Approved by:	rwatson
2001-08-07 15:13:42 +00:00
Robert Watson
f3ea28cb07 In preparation for MFC of sysinstall changes to edit /etc/ttys in
post-install config, reduce the potential confusion from the existence
of both configTTYs and configTtys by renaming configTTYs to
configEtcTtys.  While this is not a C naming conflict, it was probably
a poor choice of names on my part.
2001-08-07 12:48:17 +00:00
Robert Watson
c17d6a73f2 Add the ability to modify /etc/ttys before first reboot during the
system installation process.  This allows users installing via serial
console to enable serial console login during the installation
process using an un-customized install.  The user is not prompted to
modify /etc/ttys during a normal install, but is offered the
opportunity during post-install configuration.

- Introduce configTTYs(), which describes the benefits of editing
  /etc/ttys, and asks for confirmation before spawning the editor.
- add configTTYs to the post-install configuration, as well as to
  the global configuration index.
2001-08-02 03:53:36 +00:00
Robert Watson
0c09bcb0e8 Compensate for default disabling of network services in inetd.conf(5)
by providing the opportunity to edit inetd.conf during the system
installation process.  The following modifications were made:

(1) Expand the Anonymous FTP description dialog to indicate that inetd
    and ftpd must be enabled before it can be used.

(2) Introduce a new configInetd() pair of dialogs, the first describing
    inetd, giving a couple of examples of services that require it, and
    hinting at potential risk, then asking the user if they wish to
    enable it.  The second indicates that inetd.conf must be configured
    to enabled specific services, and asks if the user would like to
    load inetd.conf into the editor to modify it.  Add this
    configuration action to the index.

There are some further improvements that might be considered:

(1) Provide a more inetd.conf-specific configuration tool that speaks
    inetd.conf(5).  However, this is made difficult by the "yet another
    configuration format" nature of inetd.conf, as well as its use of
    commenting to disable services, rather than an in-syntax way to
    disable a service without commenting it out.  Submissions here
    would probably be welcome.

(2) There's some overlap between settings in the somewhat obtuse
    Security Profile mechanism and other settings, including the inetd
    setting, and NFS server configuration.  As features become
    individually tunable, they should probably be removed from the
    security profile mechanism.  Otherwise, somewhat counter-intuitively,
    sysinstall (in practice) queries multiple times whether inetd, nfsd,
    etc, should be enabled/disabled.  A possible future direction might
    be to drive profiles not by degree of paranoia, rather, the set
    of services desired.  Or simply to remove the Security Profile
    mechanism and resort to feature-driven configuration.

Reviewed by:	imp, chris, jake, nate, -arch, -stable
2001-08-02 03:25:16 +00:00
Andrey A. Chernov
3670a10826 Add ability to configure console terminal type in /etc/ttys
Reviewed by:	audit, jkh's silence
2001-07-17 04:09:50 +00:00
Ruslan Ermilov
d95db8f60e msdos -> msdosfs. 2001-06-01 12:16:09 +00:00
David E. O'Brien
f5a79676ee Our exports(5) syntax is rather "host-centric", while people comming from
a Sun background think in a more FS-centric mind set.  Add a note to help
the Sun backgrounded ones to not make invalid assumptions.
2001-04-22 18:59:03 +00:00
David E. O'Brien
3d43d76fe3 Add an example borrowed from the FAQ showing a very commonly desired
export in FreeBSD'ville for `make installworld' elsewhere.
2001-04-22 18:54:20 +00:00
David E. O'Brien
ad0f825a09 Give a little more variety in the /etc/exports example. 2001-04-01 09:19:23 +00:00
Jordan K. Hubbard
386deae89c afterstep doesn't need an explicit xterm started for it either. 2001-03-24 03:17:35 +00:00
Jordan K. Hubbard
7416da67e9 Very small cosmetic tweak - avoid starting an extra xterm for the fvwm
desktop case.
2001-03-16 03:32:13 +00:00
Jordan K. Hubbard
369e272fb6 Argh! Why can't I stop breaking the fvwm desktop option? *I* use
fvwm as my desktop, yet I've broken this damn thing 3 times in a row
now while all the desktops I don't actually use continue to work fine! :)
2001-03-14 09:39:54 +00:00
Jordan K. Hubbard
56d6f15dca OK, *now* we only sort the file once (red face). 2001-03-14 03:26:40 +00:00
Jordan K. Hubbard
401e1ee5c1 Be a better rc.conf citizen and create an initial file which:
1. Has a time-stamp to show when it was created

2. Sorts and uniq's the output to only contain single instances of a
   given setting. This doesn't mean you still can't have settings which
   override one another, that's still possible since it's too much
   trouble to do the redundancy checking here.

Requested by: 	lots of people
2001-03-13 06:42:12 +00:00
Jordan K. Hubbard
c95f3d84ce Properly deal with the fvwm desktop - this should restore that option
to functionality.
2001-03-12 22:43:27 +00:00
Jordan K. Hubbard
717bd36c83 Fix some of the security profile messages to be more explanatory
and also obey most of the rules of english in their construction.

Add a help screen for the security menu which gives the user a rough idea
just what the various security profiles do.
2001-03-08 10:16:56 +00:00
Jordan K. Hubbard
e18638480d Sawfish is invoked by the gnome stuff automatically if it exists -
we don't need to start it explicitly.

Noted by:	"Jose M. Alcaide" <jose@we.lc.ehu.es>
2001-03-06 21:46:03 +00:00
Jordan K. Hubbard
2d16329250 Replace GNOME + Afterstep choice with GNOME + sawfish. This is a more
popular configuration now.
2000-11-14 00:03:52 +00:00
Jordan K. Hubbard
17d7bfc3fc For High security profile, set securelevel to 1 to protect /dev/*mem
and mounted disks, among other things.

Requested by:	kirk
2000-11-07 23:05:14 +00:00
Jordan K. Hubbard
042c61e58d Add another security configuration profile, call it "high" and
rename the previous one to indicate that it's not just high, it's
extreme (everything off, secure level raised).

Submitted mostly by:	Tony Finch <dot@dotat.at>
2000-10-14 21:02:31 +00:00
Murray Stokely
d665d812e2 PR: 21729
Approved by:	jkh

Write kern_securelevel_enable variable to rc.conf if user selects
medium or low security in sysinstall.  This overrides the case where a
user selects fascist security and then tries to go back to a lower
setting.
2000-10-05 23:27:32 +00:00
Jordan K. Hubbard
53447cc7b9 One small tweak on the security profile code; don't be verbose if
setting up default values for an express/custom install.  It would
be confusing to see the informational popup completely out of context.
2000-09-24 06:44:00 +00:00
Jordan K. Hubbard
b9d13dac47 One whack at the idea of having "security profiles" which select the
appropriate(?) defaults for "low", "medium" and "high" security
environments.  Medium is basically what we currently have with a little
seat-belt tightening where it made sense.  Low is the same as medium but
without the tightening.  High is positively fascist with nothing turned
on by default and an automatic call to 911 if it can find a modem.
2000-09-22 19:12:41 +00:00
Jordan K. Hubbard
45b9c3d79c enable sshd by default. This only effects *new* installs, so
upgraders will not receive any unpleasant surprises.
2000-09-04 15:50:15 +00:00
John W. De Boskey
0d4ea86b6e Remove a stray backspace character.
Reviewed by:	Eivind Eklund <eivind@FreeBSD.org>
2000-08-27 18:49:12 +00:00
Eivind Eklund
8e4a14a9fa Change the defaults for portmap, sendmail and inetd to be not running them.
Make sysinstall override this on install, so the effective behavioural
change for a newly installed system is null.  Overall, this makes a system
with an empty /etc/rc.conf not run any network services, and makes the
FreeBSD-provided network services that are running visible in /etc/rc.conf
(instead of making people look through /etc/defaults/rc.conf to find the
things they need to disable to secure the system.)

Reviewed by:	jhb
Discussed with:	The usual cabal
2000-07-28 22:45:36 +00:00
John Baldwin
491a165843 Fix an annoying bogon in the form of a missing tab when generating CD-ROM
mount points in /etc/fstab.

Requested by:	obrien
2000-07-27 00:46:29 +00:00
Jordan K. Hubbard
cf07fd263a Terminate, with extreme prejudice, the USAResident hack which
does bad things to /etc/make.conf in certain situations.  Also
soften the "don't install crypto from the USA!" messages since,
except for RSA (which is still noted), that's not so true anymore.
2000-07-24 18:00:16 +00:00
Hajimu UMEMOTO
2931df8a40 IPv6 support.
IPv6 configuration is only done by rtsol.  Does someone really
need manual configuration? :-)
You can specify IPv6 DNS server as well.
We have only one server ftp7.jp.freebsd.org that speaks IPv6
in this time.  ftp7.jp speaks IPv4 as well and also listed as
Japan #7.

Approved by:	jkh
2000-07-14 08:33:10 +00:00
Bill Fumerola
26b0377cc1 Refresh the aout ldconfig info so things like compat22 when installed can
be detected by netscape and such.

PR:		bin/17659
Submitted by:	Murray Stokelay <murray@cdrom.com>
Approved by:	jkh

jkh made updates that conflict with the submitters patch, so I updated
accordingly, any mistakes are mine, not the submitters.
2000-03-31 01:03:41 +00:00
Jordan K. Hubbard
260efb1efd Search for the proper hints file in an ELF world. 2000-03-30 08:18:19 +00:00
Jordan K. Hubbard
8b80a8837b Really fix the USA_RESIDENT botch.
Submitted by:	Dmitry Valdov <dv@dv.ru>
2000-03-03 20:33:21 +00:00
Jordan K. Hubbard
b9452ccfa1 Do USA_RESIDENT properly. 2000-02-24 08:28:06 +00:00
Jordan K. Hubbard
da8a39382b If user says they're in the USA, record that fact in /etc/make.conf 2000-02-19 23:22:22 +00:00
Jordan K. Hubbard
d294a07a7f Various cosmetic fixes, stop saying "DES" when we really mean "crypto",
go for more sensible defaults in a couple of menus.
2000-02-17 06:15:11 +00:00
Jordan K. Hubbard
74ffe8004b Do better things with router configuration (use proper display variable,
for one thing - it's router_enable to check, not router).
1999-12-19 22:38:59 +00:00
Jordan K. Hubbard
e23b011f50 Bah, I got the MFC and this commit backwards. :) 1999-12-19 19:42:02 +00:00
Jordan K. Hubbard
8932007887 Better screen handling in X desktop setup.
Don't get cute with nested dialogs now.
1999-12-18 02:04:02 +00:00
Jordan K. Hubbard
3b7657d80d Add another strategic screen clear. 1999-12-17 03:00:28 +00:00
Jordan K. Hubbard
7025aeb16e Completely rip-out and redesign sysinstall's refresh model as well
as redoing all the menus to have proper, or at least non-hallucinogenic,
keyboard accelerators.

This requires my recent update to libdialog to work properly and will
probably also exhibit some other "interesting" behavior while the last
few missing screen clears are found (which is why I'm not going to MFC
immediately).  At least now, however, sysinstall does not gratuitously
redraw random screens at the drop of a hat and drive serial console
installers out of their minds.
1999-12-14 04:25:29 +00:00
Jordan K. Hubbard
bbf0b709cd Make sure modes on new skeleton files are correct. 1999-11-05 11:04:30 +00:00
Jordan K. Hubbard
eeeeec707a MF3: various small tweaks. 1999-09-17 09:32:22 +00:00
Jordan K. Hubbard
b1da34ca31 If enlightenment is present, gnome-session starts it automagically. 1999-09-15 02:52:56 +00:00
Jordan K. Hubbard
3349701ae5 Provide another installation option for GNOME so we have the more "classic
GNOME" desktop that Debian does as an option.
1999-09-08 04:48:26 +00:00
Jordan K. Hubbard
3910e95363 Oh crud, did I ever screw the pooch! Rather than sync this with -stable,
I backed-out the changes in -current and didn't touch stable at all (I
thought I had my patch order reversed, not what actually happened).
AIEEE!  I can't even blame the crack for this one since I broke my
crack pipe a few weeks ago.  I think sleep deprivation gets the blame
for this one.

Medal for noticing this one goes to:	Jim Bloom <bloom@acm.org>
1999-09-02 00:51:16 +00:00
Jordan K. Hubbard
d03dcaa779 MFC: Catch 3.2-stable sysinstall up to 4.0-current level functionality,
bringing in DHCP support.  The only thing I left out were Poul-Henning's
newfs changes since I'm not sure if he's brought the rest of that support
into -stable yet.  If it turns out that this is the case, I'll MFC those
changes too.
1999-09-01 04:29:30 +00:00
Peter Wemm
97d92980a9 $Id$ -> $FreeBSD$ 1999-08-28 01:35:59 +00:00
Jordan K. Hubbard
d49c1fb83f Deal with new linux compat package naming.
Submitted by:	Marcel Moolenaar <marcel@scc.nl>
1999-07-22 09:18:12 +00:00
Jordan K. Hubbard
eb31d123ad XFree86 3.3.4 seems to require "XWINHOME" to be set for the setup tool
to work (fnark).
1999-07-20 21:06:18 +00:00
Jordan K. Hubbard
ad4faaa504 invoke fvwm properly 1999-07-07 09:47:41 +00:00
Jordan K. Hubbard
2618634bae Add an option for more fully enabling linux compatibility. 1999-07-06 08:45:40 +00:00
Jordan K. Hubbard
4ee02f4bb8 deal with a.out ldconfig paths also. 1999-05-18 00:44:28 +00:00
Jordan K. Hubbard
de37d1149a Small typo in windowmaker startup line. 1999-05-15 15:05:08 +00:00
Jordan K. Hubbard
b7f708e677 o Prevent alpha installs from grabbing x86 bits and vice-versa, at least
on CDs and FTP sites.

o Collapse some redundant code.

o Fix typo'd menu.

o Restrict searches properly to packages rather than categories.

o Small tweaks to signal handling.

All RELENG_3 candidates.
1999-05-15 14:34:22 +00:00
Jordan K. Hubbard
be06522a93 Do more impressive things for windowmaker. 1999-05-14 15:04:24 +00:00
Jordan K. Hubbard
e71d157614 Add some extra checks to make *sure* we got what we were told we got. 1999-05-12 09:22:47 +00:00
Jordan K. Hubbard
b9ad2ee3d4 Completely change the way package_add() does its work. Now we
handle dependencies at a lower level and use package add for this.
Also made index searches stricter.
1999-05-12 09:02:37 +00:00
Jordan K. Hubbard
703e69c29c Fix a couple of bogons in the X server/desktop setup menus. 1999-05-12 04:52:41 +00:00
Jordan K. Hubbard
2d49c1f84a Another round of updates for -current and 3.2 1999-05-05 11:34:03 +00:00
Jordan K. Hubbard
da95ac4842 Write config files to /usr/share/skel as well as root's profile. 1999-04-28 07:20:11 +00:00
Jordan K. Hubbard
a5a953fc61 Do the right thing for windowmaker installation if it's picked. Add some
seat belts for failed desktop installations.
1999-04-28 06:39:25 +00:00
Jordan K. Hubbard
4d24621b10 o Make package matching for specific package loading use the Latest/
feature of packages now so that no version info is embedded.

o Add a default X desktop menu offering afterstep, enlightenment, KDE, GNOME
  and Windowmaker desktops instead of the boring twm(1) based one if the
  user so chooses.  This will require a little testing.
1999-04-27 14:33:29 +00:00
Jordan K. Hubbard
c8f07a79f8 Remove the registration stuff; we're redoing this and the emailed
registrations have a high failure rate for various reasons.
1999-04-24 01:53:55 +00:00
Jordan K. Hubbard
21300d38a6 Put a convenient marker in rc.conf to show updates.
Better screen saver descriptions.
1999-02-14 21:35:02 +00:00
Jordan K. Hubbard
0616103816 rc.conf vars no longer "dirty" by default. 1999-02-14 07:35:27 +00:00
Jordan K. Hubbard
37e9b7b068 Preserve existing rc.conf contents. 1999-02-14 05:52:57 +00:00
Jordan K. Hubbard
58dd43480c Write changes out to /etc/rc.conf again; rc.conf.site is dead! 1999-02-09 22:18:10 +00:00
Jordan K. Hubbard
63cad5499d Totally change the way variables are accounted for in sysinstall.
Now we know which variables are internal and which need to be
backed to /etc/rc.conf.site.  rc.conf is not touched now.

Also kget kernel change information back properly and set up a loader.rc
file to use it.
1999-02-05 22:15:52 +00:00
Jordan K. Hubbard
86784dbcd2 Show dependencies in package menu.
PR:		7454
Submitted by:	Stefan Eggers <seggers@semyam.dinoco.de>
1999-02-02 15:57:14 +00:00
Jordan K. Hubbard
750eba274b Man, was I ever smoking crack when I wrote this. Don't free()
values I'm going to use again. :-}
1999-02-01 16:35:40 +00:00
Jordan K. Hubbard
6f6f564445 1. Install /boot/loader correctly on boot.flp
2. Back up old rc.conf.site if it exists.
1999-01-30 22:15:36 +00:00
Jordan K. Hubbard
24c1db52ef Write changes out to /etc/rc.conf.site now rather than mucking with
rc.conf.  There were many different ways I could have done this, some of
them "cleaner", but this represented the lowest impact.
1999-01-27 02:32:47 +00:00
Jordan K. Hubbard
18c434c8f2 o Break fixups into binary fixups and XFree86 based fixups.
o Move fixups into extraction routine so all consumers don't have to duplicate
  the right behavior.
o Make some things more orthogonal (just for asthetics sake)
o Add option to go back and do it again if XF86Setup fails (possibly with
  a different setup - this one has always annoyed me).
1998-11-15 09:06:20 +00:00
Jordan K. Hubbard
f73e2ce42e Don't generate a spam-friendly /etc/hosts by default.
Suggested by:	jmb
1998-10-14 01:04:44 +00:00
Jordan K. Hubbard
fb386e7c77 Fix english in prompt. 1998-09-30 12:33:28 +00:00
Jordan K. Hubbard
9bb1c20147 various bits of overdue cleanup. 1998-09-30 11:49:37 +00:00
Jordan K. Hubbard
bf05096f52 MF22: Important fixes for loading XFree86 distributions I forgot to
merge after 2.2.7 (I was wondering why that bug looked so familiar!).
Also update some docs accordingly.
1998-09-23 12:13:51 +00:00
Jordan K. Hubbard
ac4c856698 Sync with 2.2-stable branch. 1998-03-24 09:51:58 +00:00
Jordan K. Hubbard
bd002b6bd8 Be careful not to spam ld.so.hints in multi-user case.
Submitted by:	Kazutaka YOKOTA <yokota@zodiac.mech.utsunomiya-u.ac.jp>
1998-03-13 11:12:53 +00:00
Jordan K. Hubbard
1a8a1188c0 Correct misfeature with quoting, better error reporting. 1998-03-10 17:24:08 +00:00
Jordan K. Hubbard
9f8db01318 Remove deprecated XIG support - that project never
happened.
1998-03-09 15:01:02 +00:00
Jordan K. Hubbard
dd3a83ba63 MF22: nuke compat slice for root. 1998-03-09 08:39:46 +00:00
Jordan K. Hubbard
7f2c35c3f8 Add a mouse configuration menu.
Submitted by:	Kazutaka YOKOTA <yokota@zodiac.mech.utsunomiya-u.ac.jp>
1998-03-07 08:59:32 +00:00
Paul Traina
69ac164732 Put all variables in VAR_ #define's to force a single location for all
of these magic knobs.  This is purely cosmetic and a documentation issue
so we don't have to glop through the source code looking for gems.
1997-09-17 16:18:22 +00:00
Jordan K. Hubbard
ea2b79b03e Fix fstab sequence number bug.
Add a few more strategic screen clears.
Fix registration form bug.
1997-08-18 21:47:34 +00:00
Jordan K. Hubbard
a6d56f6e65 Sync with rc.conf change for weak_mountd_authentication 1997-08-17 10:08:25 +00:00
Jordan K. Hubbard
31377e1f1f Change the way that X configuration method is selected. 1997-06-21 15:45:15 +00:00
Jordan K. Hubbard
08e6881746 YAMF22 1997-06-13 14:21:22 +00:00