Commit Graph

200 Commits

Author SHA1 Message Date
Murray Stokely
7e25871d19 Teach sysinstall the difference between a command line, and an
executable file, so that we can pass commands with arguments to
configXSetup().
2002-04-06 02:39:27 +00:00
Robert Watson
71e8420535 o No longer mount /proc by default on newly installed systems. Almost
all facilities that previously relied on /proc have been rewritten
  to use ptrace().  procfs has presented a substantial security
  hazard for years, with several user->root compromises in the last
  few years.  Procfs will continue to be available but will require
  administrator intervention to use.

Reviewed by:	scottl, jedgar, mike, tmm
2002-02-10 01:34:04 +00:00
Maxim Sobolev
ef9cff0bec Safwish package built on bento is called `sawfish-gnome', so adjust sysinstall
and print-cdrom-packages.sh accordingly.

Revealed by:	re
MFC after:	1 day
2002-01-09 20:10:02 +00:00
Robert Watson
4d0032bde9 o Expand the text describing the Security options menu.
o Move nfs_reserved_port_only out of security profiles (where it was
  set somewhat improperly) to the Security options menu directly.
  Previously, the variable was set to true for Moderate, but not for
  Extreme, which is at best inconsistent.
o Update the Security Profiles help file to remove reference to the
  NFS reserved port.

o Note that the kernel currently defaults the sysctl to '0', but
  sysinstall has changed it to '1' as a default as of late; however,
  rc.conf sets the value to NO as the default.  This change brings
  them relatively into sync.

Sponsored by:	DARPA, NAI Labs
2001-12-21 19:51:44 +00:00
Robert Watson
86f2d72fd8 o Add a configSecurity menu to generally configure security settings,
and pull configSecurityProfile under that menu.  Add a menu option
  to determine whether LOMAC is enabled at boot.  Probably, eventually,
  many of the 'Security Profile' menu choices should be pulled out
  independently into the Security Menu, so as to make them individually
  selectable.

Sponsored by:	DARPA, NAI Labs
2001-12-21 18:30:50 +00:00
Murray Stokely
d47aa91c6a Silence warnings on alpha :
Use '%p' when printing out the address of a function.
  sizeof(int) != sizeof(long)
2001-09-22 22:34:14 +00:00
Robert Watson
dd5360b44c Spell SSHd as sshd to improve readability and consistency. 2001-09-04 20:22:14 +00:00
Robert Watson
0d0f76632d Add an additional \n before the "cautionary note" on the topic of
admins needing to pay attention when configuring the system.  This
improves readability of this message.
2001-09-04 20:21:12 +00:00
Ruslan Ermilov
1c86a7d9c7 Removed the (possible) ambiguity in /etc/rc.conf comment.
PR:		bin/29736
2001-08-17 16:05:54 +00:00
Josef Karthauser
67923e665b Sysinstall inserts a comment between changes to /etc/rc.conf.
Add a timestamp to the comment so that it's possible to see when
changes were made.

e.g.:
# -- sysinstall generated deltas -- # Wed Aug 15 18:10:20 2001
2001-08-15 17:10:49 +00:00
Robert Watson
86a02c1326 Somewhere along the way, configSecurityModerate() lost it's "int"
return value.

Spotted by:	gratuitous use of diff during MFC process
2001-08-11 03:26:52 +00:00
Robert Watson
614af3941d o Reduce the number of offered security profiles, as we now have a more
conservative default, and actually prompt specifically for inetd rather
  than handling it as a side effect of the security profile.  Update the
  help file to reflect this change.
o Rename "Fascist" to "Extreme" in the source code, to match the names
  presented to the user.
o Remove portmap and inetd from profile management.  Portmap is now
  disabled by default, but automatically turned on if a feature requires
  it (such as NFS, etc).

This is an MFC candidate for 4.4-RELEASE.

Reviewed by:	freebsd-arch@FreeBSD.org
Approved by:	re@FreeBSD.org
MFC after:	2 days
2001-08-10 23:57:43 +00:00
Robert Watson
f5ad562c54 Return DITEM_SUCCESS from configInetd(), as apparently a success or
failure value is expected.

Spotted by:     gcc
2001-08-10 02:23:10 +00:00
Andrey A. Chernov
cf9da17cbb Apply pending /etc/ttys changes before calling editor on it
Approved by:	rwatson
2001-08-07 15:13:42 +00:00
Robert Watson
f3ea28cb07 In preparation for MFC of sysinstall changes to edit /etc/ttys in
post-install config, reduce the potential confusion from the existence
of both configTTYs and configTtys by renaming configTTYs to
configEtcTtys.  While this is not a C naming conflict, it was probably
a poor choice of names on my part.
2001-08-07 12:48:17 +00:00
Robert Watson
c17d6a73f2 Add the ability to modify /etc/ttys before first reboot during the
system installation process.  This allows users installing via serial
console to enable serial console login during the installation
process using an un-customized install.  The user is not prompted to
modify /etc/ttys during a normal install, but is offered the
opportunity during post-install configuration.

- Introduce configTTYs(), which describes the benefits of editing
  /etc/ttys, and asks for confirmation before spawning the editor.
- add configTTYs to the post-install configuration, as well as to
  the global configuration index.
2001-08-02 03:53:36 +00:00
Robert Watson
0c09bcb0e8 Compensate for default disabling of network services in inetd.conf(5)
by providing the opportunity to edit inetd.conf during the system
installation process.  The following modifications were made:

(1) Expand the Anonymous FTP description dialog to indicate that inetd
    and ftpd must be enabled before it can be used.

(2) Introduce a new configInetd() pair of dialogs, the first describing
    inetd, giving a couple of examples of services that require it, and
    hinting at potential risk, then asking the user if they wish to
    enable it.  The second indicates that inetd.conf must be configured
    to enabled specific services, and asks if the user would like to
    load inetd.conf into the editor to modify it.  Add this
    configuration action to the index.

There are some further improvements that might be considered:

(1) Provide a more inetd.conf-specific configuration tool that speaks
    inetd.conf(5).  However, this is made difficult by the "yet another
    configuration format" nature of inetd.conf, as well as its use of
    commenting to disable services, rather than an in-syntax way to
    disable a service without commenting it out.  Submissions here
    would probably be welcome.

(2) There's some overlap between settings in the somewhat obtuse
    Security Profile mechanism and other settings, including the inetd
    setting, and NFS server configuration.  As features become
    individually tunable, they should probably be removed from the
    security profile mechanism.  Otherwise, somewhat counter-intuitively,
    sysinstall (in practice) queries multiple times whether inetd, nfsd,
    etc, should be enabled/disabled.  A possible future direction might
    be to drive profiles not by degree of paranoia, rather, the set
    of services desired.  Or simply to remove the Security Profile
    mechanism and resort to feature-driven configuration.

Reviewed by:	imp, chris, jake, nate, -arch, -stable
2001-08-02 03:25:16 +00:00
Andrey A. Chernov
3670a10826 Add ability to configure console terminal type in /etc/ttys
Reviewed by:	audit, jkh's silence
2001-07-17 04:09:50 +00:00
Ruslan Ermilov
d95db8f60e msdos -> msdosfs. 2001-06-01 12:16:09 +00:00
David E. O'Brien
f5a79676ee Our exports(5) syntax is rather "host-centric", while people comming from
a Sun background think in a more FS-centric mind set.  Add a note to help
the Sun backgrounded ones to not make invalid assumptions.
2001-04-22 18:59:03 +00:00
David E. O'Brien
3d43d76fe3 Add an example borrowed from the FAQ showing a very commonly desired
export in FreeBSD'ville for `make installworld' elsewhere.
2001-04-22 18:54:20 +00:00
David E. O'Brien
ad0f825a09 Give a little more variety in the /etc/exports example. 2001-04-01 09:19:23 +00:00
Jordan K. Hubbard
386deae89c afterstep doesn't need an explicit xterm started for it either. 2001-03-24 03:17:35 +00:00
Jordan K. Hubbard
7416da67e9 Very small cosmetic tweak - avoid starting an extra xterm for the fvwm
desktop case.
2001-03-16 03:32:13 +00:00
Jordan K. Hubbard
369e272fb6 Argh! Why can't I stop breaking the fvwm desktop option? *I* use
fvwm as my desktop, yet I've broken this damn thing 3 times in a row
now while all the desktops I don't actually use continue to work fine! :)
2001-03-14 09:39:54 +00:00
Jordan K. Hubbard
56d6f15dca OK, *now* we only sort the file once (red face). 2001-03-14 03:26:40 +00:00
Jordan K. Hubbard
401e1ee5c1 Be a better rc.conf citizen and create an initial file which:
1. Has a time-stamp to show when it was created

2. Sorts and uniq's the output to only contain single instances of a
   given setting. This doesn't mean you still can't have settings which
   override one another, that's still possible since it's too much
   trouble to do the redundancy checking here.

Requested by: 	lots of people
2001-03-13 06:42:12 +00:00
Jordan K. Hubbard
c95f3d84ce Properly deal with the fvwm desktop - this should restore that option
to functionality.
2001-03-12 22:43:27 +00:00
Jordan K. Hubbard
717bd36c83 Fix some of the security profile messages to be more explanatory
and also obey most of the rules of english in their construction.

Add a help screen for the security menu which gives the user a rough idea
just what the various security profiles do.
2001-03-08 10:16:56 +00:00
Jordan K. Hubbard
e18638480d Sawfish is invoked by the gnome stuff automatically if it exists -
we don't need to start it explicitly.

Noted by:	"Jose M. Alcaide" <jose@we.lc.ehu.es>
2001-03-06 21:46:03 +00:00
Jordan K. Hubbard
2d16329250 Replace GNOME + Afterstep choice with GNOME + sawfish. This is a more
popular configuration now.
2000-11-14 00:03:52 +00:00
Jordan K. Hubbard
17d7bfc3fc For High security profile, set securelevel to 1 to protect /dev/*mem
and mounted disks, among other things.

Requested by:	kirk
2000-11-07 23:05:14 +00:00
Jordan K. Hubbard
042c61e58d Add another security configuration profile, call it "high" and
rename the previous one to indicate that it's not just high, it's
extreme (everything off, secure level raised).

Submitted mostly by:	Tony Finch <dot@dotat.at>
2000-10-14 21:02:31 +00:00
Murray Stokely
d665d812e2 PR: 21729
Approved by:	jkh

Write kern_securelevel_enable variable to rc.conf if user selects
medium or low security in sysinstall.  This overrides the case where a
user selects fascist security and then tries to go back to a lower
setting.
2000-10-05 23:27:32 +00:00
Jordan K. Hubbard
53447cc7b9 One small tweak on the security profile code; don't be verbose if
setting up default values for an express/custom install.  It would
be confusing to see the informational popup completely out of context.
2000-09-24 06:44:00 +00:00
Jordan K. Hubbard
b9d13dac47 One whack at the idea of having "security profiles" which select the
appropriate(?) defaults for "low", "medium" and "high" security
environments.  Medium is basically what we currently have with a little
seat-belt tightening where it made sense.  Low is the same as medium but
without the tightening.  High is positively fascist with nothing turned
on by default and an automatic call to 911 if it can find a modem.
2000-09-22 19:12:41 +00:00
Jordan K. Hubbard
45b9c3d79c enable sshd by default. This only effects *new* installs, so
upgraders will not receive any unpleasant surprises.
2000-09-04 15:50:15 +00:00
John W. De Boskey
0d4ea86b6e Remove a stray backspace character.
Reviewed by:	Eivind Eklund <eivind@FreeBSD.org>
2000-08-27 18:49:12 +00:00
Eivind Eklund
8e4a14a9fa Change the defaults for portmap, sendmail and inetd to be not running them.
Make sysinstall override this on install, so the effective behavioural
change for a newly installed system is null.  Overall, this makes a system
with an empty /etc/rc.conf not run any network services, and makes the
FreeBSD-provided network services that are running visible in /etc/rc.conf
(instead of making people look through /etc/defaults/rc.conf to find the
things they need to disable to secure the system.)

Reviewed by:	jhb
Discussed with:	The usual cabal
2000-07-28 22:45:36 +00:00
John Baldwin
491a165843 Fix an annoying bogon in the form of a missing tab when generating CD-ROM
mount points in /etc/fstab.

Requested by:	obrien
2000-07-27 00:46:29 +00:00
Jordan K. Hubbard
cf07fd263a Terminate, with extreme prejudice, the USAResident hack which
does bad things to /etc/make.conf in certain situations.  Also
soften the "don't install crypto from the USA!" messages since,
except for RSA (which is still noted), that's not so true anymore.
2000-07-24 18:00:16 +00:00
Hajimu UMEMOTO
2931df8a40 IPv6 support.
IPv6 configuration is only done by rtsol.  Does someone really
need manual configuration? :-)
You can specify IPv6 DNS server as well.
We have only one server ftp7.jp.freebsd.org that speaks IPv6
in this time.  ftp7.jp speaks IPv4 as well and also listed as
Japan #7.

Approved by:	jkh
2000-07-14 08:33:10 +00:00
Bill Fumerola
26b0377cc1 Refresh the aout ldconfig info so things like compat22 when installed can
be detected by netscape and such.

PR:		bin/17659
Submitted by:	Murray Stokelay <murray@cdrom.com>
Approved by:	jkh

jkh made updates that conflict with the submitters patch, so I updated
accordingly, any mistakes are mine, not the submitters.
2000-03-31 01:03:41 +00:00
Jordan K. Hubbard
260efb1efd Search for the proper hints file in an ELF world. 2000-03-30 08:18:19 +00:00
Jordan K. Hubbard
8b80a8837b Really fix the USA_RESIDENT botch.
Submitted by:	Dmitry Valdov <dv@dv.ru>
2000-03-03 20:33:21 +00:00
Jordan K. Hubbard
b9452ccfa1 Do USA_RESIDENT properly. 2000-02-24 08:28:06 +00:00
Jordan K. Hubbard
da8a39382b If user says they're in the USA, record that fact in /etc/make.conf 2000-02-19 23:22:22 +00:00
Jordan K. Hubbard
d294a07a7f Various cosmetic fixes, stop saying "DES" when we really mean "crypto",
go for more sensible defaults in a couple of menus.
2000-02-17 06:15:11 +00:00
Jordan K. Hubbard
74ffe8004b Do better things with router configuration (use proper display variable,
for one thing - it's router_enable to check, not router).
1999-12-19 22:38:59 +00:00
Jordan K. Hubbard
e23b011f50 Bah, I got the MFC and this commit backwards. :) 1999-12-19 19:42:02 +00:00