Commit Graph

269 Commits

Author SHA1 Message Date
markm
22aa258b31 Upgraded launchpad for kerberos. Noe kerberos IV OR kerberos 5
may be started at boot for kerberos servers.
2001-07-28 19:57:57 +00:00
hm
f624f22b32 change the default for isdn_fsdev to NO. specifying a device here
results in a potential conflict with a getty running on that device.
PR:		26818
Submitted by:	Clement Ballabriga <clement@asso.ups-tlse.fr>
2001-07-23 14:24:31 +00:00
roam
401d22d5ac Add a script_name_sep rc.conf knob to specify the IFS character
for separating the startup scripts' list into individual filenames.

Run the shutdown scripts in reverse alphabetical order, so dependent
services are stopped before the services they depend upon.

Reviewed by:	-arch, -audit
MFC after:	3 weeks
2001-07-17 14:33:52 +00:00
ume
11cef0ec41 Change default of ipv6_default_interface to NO. This is meaningless
in most cases and rather harmful.

Reported by:	Kevin Oberman <oberman@es.net>
MFC after:	1 week
2001-06-28 21:45:47 +00:00
dd
fe47a79f92 Introduce syslogd_program and inetd_program variables in case somebody
wants to replace one of those programs.

PR:		13609
Submitted by:	Goran Lowkrantz <goran.lowkrantz@infologigruppen.se>
2001-06-28 03:32:10 +00:00
ume
4de3cb9611 Change default value of rtadvd_enable to NO to be compatible with
the following description in RFC2461:

    AdvSendAdvertisements
	    A flag indicating whether or not the router sends
	    periodic Router Advertisements and responds to
	    Router Solicitations.

	    Default: FALSE

	    Note that AdvSendAdvertisements MUST be FALSE by
	    default so that a node will not accidentally start
	    acting as a router unless it is explicitly
	    configured by system management to send Router
	    Advertisements.

Submitted by:	JINMEI Tatuya <jinmei@isl.rdc.toshiba.co.jp>
MFC after:	1 week
2001-06-20 13:17:07 +00:00
ume
ce5986e7e8 Add configuration for a FAITH IPv6-to-IPv4 TCP translator.
To use a FAITH actually, you also need faithd(8) setup.
Please consult faithd(8) manpage.
2001-06-19 19:27:51 +00:00
dd
6a8d5663b7 Explicitly set arpproxy_all and start_vinum to "NO" for consistency.
PR:		28185
Submitted by:	Gordon Tetlow <gordont@bluemtn.net>
2001-06-16 00:27:31 +00:00
ume
3851943e9b prefixcmd_enable was obsoleted by syncing recent KAME. New prefix(8)
is just a shell script for backward compatibility.  Now, we always use
ifconfig(8) instead of prefix(8).

MFC after:	3 weeks
2001-06-11 13:28:05 +00:00
phk
89044d5223 Add diskcheckd to /etc/rc with a knob in rc.conf.
Make the default setting YES for now to get some experience with it.

Note: If people starts seeing disk errors because of this then it
should not be backed.
2001-06-03 20:15:13 +00:00
brian
fd81208991 Move gif_interfaces from an IP6 option to a regular IP option.
PR:		26543
Submitted by:	Brooks Davis <brooks@one-eyed-alien.net>
MFC after:	3 weeks
2001-06-03 12:26:56 +00:00
obrien
62aa1bd59a I didn't fix the comment in rev 1.107. 2001-05-25 01:46:39 +00:00
obrien
51820b3786 Turn on TCP_EXTENSIONS (rfc1323) by defualt. 2001-05-25 01:43:42 +00:00
dd
82ab5b2b68 Introduce a background_fsck rc.conf option which allows the user to
enable or disable background fsck'ing all in one shot.  Default is
currently 'YES'.

Reviewed by:	jkh
2001-05-22 00:05:48 +00:00
schweikh
3305b34ee6 New option isdn_screenflags to set the syscons screen params for isdnd,
plus documentation.

Submitted by:	Alexander Leidinger <Alexander@Leidinger.net>
Not objected to by:	hm
MFC after:	1 week
2001-05-14 20:51:10 +00:00
schweikh
64335fb3fd Use foo () instead of foo ( ) for function definition,
so zsh can parse this file as well.
2001-05-07 14:15:02 +00:00
dd
3c3005df45 Add an allscreens_kbdflags option. Same thing as allscreens_flags,
but runs kbdcontrol instead of vidcontrol.

Reviewed by:	ru
2001-04-28 20:56:53 +00:00
schweikh
a0845820c9 Add isdn_ttype (moved to rc.conf from rc.isdn)
PR:		conf/24865
Submitted by:	schweikh
Reviewed by:	hm
2001-04-24 20:02:31 +00:00
ache
0636edd613 Fix typo in mouse_char range 2001-04-21 16:22:26 +00:00
ache
bc687f48be Add mousechar_start hook
Reviewed by:	Nick Hibma <n_hibma@qubesoft.com>
2001-04-19 14:53:47 +00:00
bmah
4b8ca31804 Add removable_interfaces to /etc/defaults/rc.conf. It is used
(undocumented until now) by /etc/pccard_ether.

MFC candidate.

Pointed out by:	Dave Crane <dave@trig.net>
Reviewed by:	-mobile
2001-04-04 16:48:57 +00:00
phk
a0f0214f3c Change ntp_flags to "-b" to inspire people to set it right.
Note that "right" in this case is not universally recognized, but
NTP-practittioners as opposed to theoretians generally agree that
getting "inside the window" using ntpdate is TRTTD on PC hardware.

PR:		25514
Submitted by:	Chris Johnson <cjohnson-pr@palomine.net>
2001-03-28 17:51:03 +00:00
des
097a9d6bae Axe TCP_RESTRICT_RST. It was never a particularly good idea except for a few
very specific scenarios, and now that we have had net.inet.tcp.blackhole for
quite some time there is really no reason to use it any more.

(second of three commits)
2001-03-19 22:07:32 +00:00
alfred
f67e4a8fc7 Bring in a hybrid of SunSoft's transport-independent RPC (TI-RPC) and
associated changes that had to happen to make this possible as well as
bugs fixed along the way.

  Bring in required TLI library routines to support this.

  Since we don't support TLI we've essentially copied what NetBSD
  has done, adding a thin layer to emulate direct the TLI calls
  into BSD socket calls.

  This is mostly from Sun's tirpc release that was made in 1994,
  however some fixes were backported from the 1999 release (supposedly
  only made available after this porting effort was underway).

  The submitter has agreed to continue on and bring us up to the
  1999 release.

  Several key features are introduced with this update:
    Client calls are thread safe. (1999 code has server side thread
    safe)
    Updated, a more modern interface.

  Many userland updates were done to bring the code up to par with
  the recent RPC API.

  There is an update to the pthreads library, a function
  pthread_main_np() was added to emulate a function of Sun's threads
  library.

  While we're at it, bring in NetBSD's lockd, it's been far too
  long of a wait.

  New rpcbind(8) replaces portmap(8) (supporting communication over
  an authenticated Unix-domain socket, and by default only allowing
  set and unset requests over that channel). It's much more secure
  than the old portmapper.

  Umount(8), mountd(8), mount_nfs(8), nfsd(8) have also been upgraded
  to support TI-RPC and to support IPV6.

  Umount(8) is also fixed to unmount pathnames longer than 80 chars,
  which are currently truncated by the Kernel statfs structure.

Submitted by: Martin Blapp <mb@imp.ch>
Manpage review: ru
Secure RPC implemented by: wpaul
2001-03-19 12:50:13 +00:00
ume
3d620f4db9 Add `ipv6_ifconfig_IFN_aliasN' directive to allow multiple aliases.
PR:		conf/24239
2001-03-18 16:07:21 +00:00
peter
3973aeb5eb At great personal risk, touch the sendmail startup again. This adds easy
seperate knobs for inbound (accepting SMTP connections) and outbound (just
occasionally dequeueing) sendmail daemon startup.
2001-03-13 05:53:16 +00:00
dougb
4b267fa5fd Add flags option for savecore.
Submitted by:	David A. Panariti <davep@who.net>
2001-03-12 05:18:03 +00:00
dougb
020bef59da Avoid complicated tests of whether devices are present or not, and
enable all harvesting options by default since having them on for
devices not present doesn't hurt anything. Leave them on by default
since for the most part they are not producing noticable slowdown,
and are about to get a lot more efficient.

Re-order part of the cheesy entropy process in preparation for
its complete removal.
2001-03-10 05:33:38 +00:00
dougb
a488c869ed Add code to turn on the entropy harvesting sysctl's as early as possible
during the boot process. We're turning it on by default, based on the
actual presence of a configured ethernet card, and/or ppp/tun devices.
Of course, it's easy to disable in rc.conf.
2001-03-01 13:19:49 +00:00
jkh
95a8f4bd49 Have coff be a default ibcs2 loader if we have ibcs2 support enabled. 2001-02-28 22:28:00 +00:00
dougb
d59879728c Introduce the option of running fsck -y if the initial preen fails.
Defaults to off.

Obtained from:	Yahoo!
2001-02-05 04:54:42 +00:00
ume
9d926b25dc Mention about rtadvd_interfaces. It should be specified if you want
use rtadvd.
2001-01-25 13:05:50 +00:00
dougb
e3a3551537 Add the options of which cron program to run, and specifying flags
to it.

PR:		conf/24358
Submitted by:	Gerhard Sittig <Gerhard.Sittig@gmx.net>
2001-01-21 20:57:38 +00:00
des
6317f7a2c4 Add a sysvipc_enable variable that causes the SysV IPC modules to be loaded.
Reviewed by:	dougb
2001-01-16 20:05:05 +00:00
dougb
3bbfa62b63 Move the process of storing entropy from /dev/random and reseeding with
it at boot time closer to the way we want it to be in the final version.

* Move the default directory to /var/db/entropy
* Run the entropy saving cron job every 11 minutes. This seems
  to be a better default, although still bikeshed material.
* Feed /dev/random some cheesy "entropy" from various commands
  and files before the disks are mounted. This gives /dev/random
  a better chance of running without blocking early.
* Move the reseeding with previously stored entropy to the point
  immediately after the disks are mounted.
* Make the harvesting script a little safer in regards to the
  possibility of accidentally overwriting something other
  than a regular file.
2001-01-14 07:18:31 +00:00
dougb
ed0bc299d0 Add a system to save entropy from /dev/random periodically so that
it can be used to reseed at boot time. This will greatly increase
the chances that there will be sufficient entropy available at
boot time to prevent long delays.

For /etc/rc, remove the vmstat and iostat runs from the attempt
to provide some cheesy randomness if the files fail, since
those programs are dynamically linked, and ldd seems to want
some randomness to do its magic.

Guidance and parameters for this project were provided by
Mark Murray, based on the requirements of the Yarrow
algorithm. Some helpful suggestions for implementation
(including the tip about iostat and vmstat) were provided
by Sheldon Hearn. All blame for problems or mistakes is
mine of course.
2001-01-11 13:01:20 +00:00
ume
03e9a76a97 - ipv6_prefix_* and ipv6_ifconfig_* work for end node
- rtsol should be work for only one interface
- new variable ipv6_defaultrouter is added
- option name of rtadvd in comment are corrected
- ipv6_firewall_enable, ipv6_firewall_type, ipv6_firewall_script,
  ipv6_firewall_logging are added to introduce rc.firewall6.

IPv6 firewall rule is just starting point and should be brushed up.
This commit includes PR18621, PR21694, PR22051.

PR:		conf/18621, conf/21694, conf/22051
Reviewed by:	asmodai
2000-10-29 19:59:05 +00:00
sanpei
9c17a07343 add PC-Card melody beep(PC Card bus, kludge version)
Original idea from:	PAO3
2000-10-28 13:35:34 +00:00
jwd
ac37933794 Set new default: entropy_file="/entropy"
with /var/db/entropy being a hardcoded backup.

Submitted by:	Doug Barton <DougB@gorean.org>
Approved by:	markm
2000-10-16 04:45:47 +00:00
darrenr
d021730618 This brings support for IP Filter into rc.network and rc.conf with
the appropriate documentation added to rc.conf(5).  If all goes well
with this over the next few weeks, the PR will be closed with the
pullup of patches back to 4-STABLE.

PR:		20202
Submitted by:	Gerhard Sittig <Gerhard.Sittig@gmx.net>
Reviewed by:	Darren Reed <darrenr@freebsd.org>
Approved by:	Darren Reed <darrenr@freebsd.org>
Obtained from:	Gerhard Sittig <Gerhard.Sittig@gmx.net>
2000-10-06 12:24:45 +00:00
brian
12f7c0812b Add a unaligned_print option (alpha only)
Document osf1_enable

Submitted by:	Eric D. Futch <efutch@nyct.net>
PR:		21649
2000-10-04 18:58:46 +00:00
obrien
06039543c8 Remove our override on the default time that a looked up name remains
cached when not in use.  This changes the FreeBSD default from 30 minutes
to 5 minutes.  JKH was the one that added the override to amd_flags, but
there was no reason given other to serve as an example of what could be
done.
2000-09-01 01:08:52 +00:00
sheldonh
7567d061c5 Document ibcs2_loaders and provide a default for it in
etc/defaults/rc.conf .
2000-08-18 09:37:50 +00:00
jhb
9c5a24968b Mention that basic network options now include firewall/security options as
well.
2000-08-17 06:04:13 +00:00
sheldonh
f28db623c4 Add a sample ifconfig entry for an IPX address family address, to give
IPX folks a fighting chance of figuring this out themselves.  I can't
work out how to document this carefully in rc.conf(5), but this ought
to close the PR.

PR:		17904
Reported by:	John Gelnaw <jeg@hawk.circa.ufl.edu>
2000-08-15 15:09:34 +00:00
jdp
42f709b552 Add an rc.conf knob "ldconfig_insecure" to disable ldconfig's
security checks.  Set the default to NO, i.e., secure.

Submitted by:	Maxime Henrion <mhenrion@cybercable.fr>
2000-08-11 03:26:30 +00:00
billf
6e74136b0a make sshd follow the pattern of enable, program, flags like every
other entry does.
2000-08-10 19:52:06 +00:00
brian
21c4f73753 Allow a ppp_user specification to run ppp at startup
PR:		20258
2000-08-10 00:13:02 +00:00
eivind
126215b8e1 Change the defaults for portmap, sendmail and inetd to be not running them.
Make sysinstall override this on install, so the effective behavioural
change for a newly installed system is null.  Overall, this makes a system
with an empty /etc/rc.conf not run any network services, and makes the
FreeBSD-provided network services that are running visible in /etc/rc.conf
(instead of making people look through /etc/defaults/rc.conf to find the
things they need to disable to secure the system.)

Reviewed by:	jhb
Discussed with:	The usual cabal
2000-07-28 22:45:36 +00:00
asmodai
f55c1c6732 Add weak_mountd_authentication, which is examined in /etc/rc.network.
Setting this to YES instead of its default NO, causes mountd to be
passed the -n flag, which allow non-root users mount requests to be served.
2000-07-23 11:31:09 +00:00
markm
968e0bbd12 Add entropy caching. With this, some entropy is cached at shutdown
time, and this is used to reseed the random number generator at
boot time.

NOTE - this has no hope of working if you halt(); you need to
execute rc.shutdown to get the entropy stash.
2000-07-17 12:28:58 +00:00
markm
06c84cc174 Clean up all the old setup code for the old /dev/random. This will be
revisited when the new /dev/random is done.
2000-06-25 10:55:23 +00:00
brian
567e3fdcca Introduce /etc/defaults/periodic.conf, similar in concept to rc.conf.
The only change in the default functionality should be that
the output reports are slightly more verbose WRT files deleted.

Not objected to by: freebsd-arch
2000-06-23 01:18:31 +00:00
dillon
5d8a7de857 Add ip_portrange_first and ip_portrange_last rc.conf/rc.network
options.  This allows you to set the standard dynamic port
    assignment range prior to any network daemons (like named) starting
    up, necessary if you are also using a firewall to restrict lower ports.
    will be MFC'd in a few days
2000-06-22 17:40:53 +00:00
brian
041e66b304 Don't include /compat/linux/tmp in $clean_daily_dirs as it's usually
a link to /tmp

Pointed out by: des
2000-06-20 14:58:48 +00:00
brian
4f17385195 Add clear_daily_* variables 2000-06-09 17:07:15 +00:00
wilko
58e3e4be42 Add suggested comment for TCP_DROP_SYNFIN and TCP_RESTRICT_RST
PR:		conf/18124
Submitted by:	Matt Heckaman <matt@arpa.mail.net>
2000-05-27 18:03:15 +00:00
wollman
3836de47f4 Fix misleading comment. 2000-05-18 19:02:47 +00:00
dillon
78844f7360 Add ipsec_enable and ipsec_file options to run IPSEC's setkey program
with the specified configuration file at the appropriate time.
2000-05-16 06:52:11 +00:00
ache
4a110a737f Add firewall_logging knob to enable/disablle events logging, disabled
by default. Needed mainly for ipfw kernel module to enable logging
disabled there.
2000-05-06 17:18:19 +00:00
sheldonh
e9b1278038 Add to defaults/rc.conf a new function source_rc_confs which rc
scripts may use to source safely overrides in ${rc_conf_files}
files.

This protects users who insist on the bad practice of copying
/etc/defaults/rc.conf to /etc/rc.conf from a recursive loop
that exhausts available file descriptors.

Several people have expressed interest in breaking this function
out into its own shell script.  Anyone who wants to embark on
such an undertaking would do well to study the attributed PR.

PR:		17595
Reported by:	adrian
Submitted by:	Doug Barton <Doug@gorean.org>
2000-04-27 08:43:49 +00:00
iwasaki
6c940a99c2 Enable etc/defaults/pccard.conf which is default configuration file
for pccardd.
Please install /etc/defaults/pccard.conf and update /etc/defaults/rc.conf
as well.
Note that old pccard.conf.sample still remains for while but
no longer to be maintained.

Reviewed by:	imp, -mobile ML and nomads ML in Japan.
2000-04-03 19:24:25 +00:00
shin
c3f9e80fdc Fix english.
Specified by: sheldonh
2000-03-29 15:03:28 +00:00
shin
ef2ad588bc Add a configuration options which enable/disable IPv4 mapped IPv6 addr
support.

Suggested and Reviewed by: ume
2000-03-28 17:39:53 +00:00
dillon
d7295a1a39 Add a sysctl to specify the amount of UDP receive space NFS should
reserve, in maximal NFS packets.  Originally only 2 packets worth of
    space was reserved.  The default is now 4, which appears to greatly
    improve performance for slow to mid-speed machines on gigabit networks.

    Add documentation and correct some prior documentation.

Problem Researched by: Andrew Gallatin <gallatin@cs.duke.edu>
Approved by: jkh
2000-03-27 21:38:35 +00:00
billf
042cd9478f Make syslogd boot -s by default, which prevents Bad People from filling up
your diskspace.

PR:		conf/15737
Submitted by:	Kevin Day <toasty@dragondata.com> (PR)
		Nick Johnson <freebsd@spatula.net> (on -current)
2000-03-20 19:53:56 +00:00
shin
75ef5ce6df IPv6 related configuration updates.
- 6to4(stf) interface configuration.
  - Static route configuration.
  - Comment additions.
  - Replaced a still existed '@' to '%' in IPv6 scoped addr format.
    (This became necessary as previous IPv6 scoped addr format change.)

Much thanks to ume, who helped me reviewing, testing, and finding problems
with these changes.

Approved by: jkh

Reviewed by: ume
2000-03-12 20:35:54 +00:00
shin
2495f8bf23 Change default of rtadvd to "YES".
Also add IPv6 example for "ifconfig_ifname_alias".

Suggested by: bmah@CA.Sandia.GOV
2000-03-09 15:19:58 +00:00
markm
27fe751781 Add userland tweakables for OpenSSH and OpenSSL. 2000-02-24 23:08:19 +00:00
shin
af0bb08525 Add IPv6 configuration scripts.
Initial version created by, and kindly much tested by:
	bmah@CA.Sandia.GOV (Bruce A. Mah)

Approved by: jkh

Reviewed by: bmah@CA.Sandia.GOV (Bruce A. Mah),
	Ollivier Robert <roberto@keltia.freenix.fr>
Obtained from: KAME project
2000-02-23 18:05:58 +00:00
jkh
009cea468d PS/2 mice are a lot more common than serial mice now; use /dev/psm0
as default rather than /dev/cuaa0
2000-02-19 13:07:21 +00:00
paul
1526ff49b0 Add a firewall_flags option that is used when ipfw processes a file. It allows
you to run a preprocessor, such as m4, so that you can use macros in your
rules file.

Approved by:	jkh
2000-02-06 19:25:00 +00:00
sheldonh
e19228dc56 Add an explicit warning against copying this file into /etc/, since
work-arounds for the ".: Out of file descriptors" problem (see
PR 13724) are taking longer than expected to come to fruition.
1999-12-21 10:46:41 +00:00
roberto
7f5f260b45 Bye bye xntpd, enter ntp.
The variable names haven't changed for compapatibility reasons.
1999-12-16 12:45:40 +00:00
gallatin
22dd32c01d Add an enable_osf1 knob to the alpha startup code 1999-12-15 14:27:59 +00:00
imp
61ef46db68 Now that pccardc beep actually works, add knob for it in rc.conf/rc.pccard
Submitted by: sanpei@sanpei.org (MIHIRA-san Yoshiro)
1999-12-02 19:48:16 +00:00
alfred
610bf05839 we all like to 'Use' ppp, but this should be 'User'
Pointed out by: dcs
1999-11-24 10:44:47 +00:00
ache
32e24001e6 Remove man_locales - goes to manpath.config 1999-11-23 03:24:20 +00:00
brian
24f5678bfc Add pppoed startup options 1999-11-23 00:22:25 +00:00
ache
13f6adacd5 Add single_mountd_enable hook to run mountd but not NFS server
Needed for machine with CFS but without real NFS
1999-11-14 21:28:13 +00:00
obrien
a968f654a9 Remove "-k" (kernel-arch) as "i386" is not appropriate on the Alpha.
Also remove the "-d" domain option, as if someone is savey enough to want
this, they are savey enought to make a custom amd_flags in /etc/rc.conf.
1999-10-16 05:42:50 +00:00
billf
b6956e3e3c If dumpdev exists, it's automatically enabled. Change comment to reflect. 1999-10-01 00:13:44 +00:00
jkoshy
13f995da9e Remove the "vinum_drives" rc.conf knob. According to Greg <grog@lemis.com>
this is no longer the right way to start Vinum unless you are doing some
kind of maintenance, and that's not the sort of thing that would go into
rc.conf.
1999-09-22 06:31:32 +00:00
obrien
452637dcc0 /emulation/binary compatibility/ 1999-09-15 02:25:13 +00:00
des
ad7d5e0e01 Fix disordering introduced in my previous commit.
Pointed out by:	bde
1999-09-13 09:45:07 +00:00
des
19e7731a48 Add the net.inet.tcp.restrict_rst and net.inet.tcp.drop_synfin sysctl
variables, conditional on the TCP_RESTRICT_RST and TCP_DROP_SYNFIN kernel
options, respectively. See the comments in LINT for details.
1999-09-12 17:22:08 +00:00
ache
a59fb2667c Add man_locales knob to specify localized man subdirs for makewhatis and
catman
1999-09-11 19:00:41 +00:00
cpiazza
bd6cdbc443 set check_quotas="YES" as the default.
PR:		13603
Submitted by:	Alex Perel <veers@distributed.net>
Reviewed by:	billf
1999-09-06 20:22:40 +00:00
peter
289c0d262f $Id$ -> $FreeBSD$ 1999-08-27 23:37:10 +00:00
brian
731a1c9a39 ppp_alias -> ppp_nat
Submitted by: Josef L. Karthauser <joe@FreeBSD.org.uk>
1999-08-22 23:26:05 +00:00
obrien
ac3a4d6b97 s/Yes/YES/g. `tcp_extensions''s comment implied "Yes" was a valid value
for turning on the feature.  Which is wrong.

Submitted by:	bde
1999-08-14 17:15:19 +00:00
obrien
61f4e46c6b Hopefully clarify "log_in_vain" knob's comment.
Reviewed by:	bde, sheldonh, andreas
1999-08-14 17:13:40 +00:00
obrien
0fd5df0f13 Use proper capitalization. 1999-08-14 03:42:27 +00:00
obrien
a6481ae094 Use better comment for tcp_keepalive option.
Submitted by:	imp
1999-08-14 03:41:56 +00:00
des
25571d959a Add net.inet.icmp.log_redirect and net.inet.icmp.drop_redirect, for
respectively logging and dropping ICMP REDIRECT packets.

Note that there is no rate limiting on the log messages, so log_redirect
should be used with caution (preferrably only for debugging purposes).
1999-08-10 09:45:33 +00:00
eivind
eb88bd01b5 Better comment on ntpdate_enable - if I have misunderstood when
ntpdate was run (I thought it was cron'ed), other people probably do
too.
1999-08-03 10:11:02 +00:00
brian
03ab8a3b7f Add a default ppp.conf (mode 600).
Originally submitted by: Wayne Self <wself@cdrom.com>

Allow a ppp startup option in rc.conf.

Adjust sysinstall so that it appends to the end of ppp.conf
and uses the generated profile to start ppp in auto mode on
boot.

Submitted by: Josef L. Karthauser <joe@uk.FreeBSD.org>
1999-07-26 10:49:37 +00:00
jkh
47d2323c99 Use a less annoying default hostname. 1999-07-18 09:58:01 +00:00
jkh
62a15a73f5 Allow DHCP to be used in an ifconfig variable instead of the usual
address information, producing the obvious effect (dhcp configuration).

Submitted by:   "Sean O'Connell" <sean@stat.Duke.EDU>
1999-07-16 09:26:53 +00:00
iwasaki
4e7cdaf3e8 Refine on explanation for apm stuff.
Make it clear that apmd  depends on apmconf -e.

Reviewed by:	obrien, my friend :-)
1999-07-12 17:20:29 +00:00
iwasaki
f687757a7c Add apmd_enable and apmd_flags for the boot-time optinos.
Pointed out by:	obrien
Forgotten by:	iwasaki
1999-07-11 04:05:45 +00:00
sheldonh
37c066a7ad Allow internal and external wrapping to be enabled independantly of
each other. Instead of allowing the -w option to be specified twice,
we now take -w (wrap external) and -W (wrap internal).

Discussed with:	markm
1999-07-09 11:19:01 +00:00
peter
b972643acb Tweak previous commit. Only sense the configuration if network_interfaces
is set to "auto".  Any network_interfaces settings will be treated as
before.
1999-07-08 18:56:04 +00:00
peter
cc2ae796a6 Do away with ${network_interfaces} in rc.conf. Just use ifconfig -l to
get a list of interfaces, and then automatically configure them if
${ifconfig_${ifn}} or /etc/start_if.${ifn} exists.

This makes it a lot easier to deal with machines that constantly change
their network configuration as you can leave ifconfig settings for all
the possible cards - just the ones that are present will be configured.
1999-07-07 12:49:47 +00:00
hosokawa
d7975be538 Added pccard_conf parameter to /etc/rc.conf,
and set it to "/etc/pccard.conf.sample" in /etc/defaults/rc.conf.
Perhaps this default value can be inappropriate,
but I set to this value for the convenience of PC-card boot.flp users.
Please correct it if there are better solutions.
1999-07-07 01:19:15 +00:00
hosokawa
e643ff4664 Added "pccardd_flags" for rc.conf. 1999-07-04 14:41:20 +00:00
obrien
8447bc90a5 Amd now mounts to "/.amd_mnt" rather than "/net". "/net/<host>" now works
in addition to "/host/<host>".  This make us consistant with Sun (as we
already were with SGI).
1999-06-28 04:09:14 +00:00
jseger
adb097eb8e Standardize appearance of subsection headers (two spaces for section name) 1999-06-27 22:12:35 +00:00
sheldonh
31aade9ad1 Add command-line option (-w), specified once to enable wrapping and
twice to enable wrapping for internal wrapping as well. If the option is
not specified wrapping is turned off so that inetd will behave exactly
as it used to before TCP Wrappers was imported.

Change etc/defaults/rc.conf so as to encourage wrapping on new systems.

Clarify the use of TCP Wrappers in the IMPLEMENTATION NOTES of the
manual page.

Approved by:	jkh
1999-06-27 18:05:34 +00:00
phk
47e8c0df80 Add handle to control global TCP keepalives and turn them on as
default.

Despite their name it doesn't keep TCP sessions alive, it kills
them if the other end has gone AWOL.  This happens a lot with
clients which use NAT, dynamic IP assignment or which has a 2^32
* 10^-3 seconds upper bound on their uptime.

There is no detectable increase in network trafic because of this:
two minimal TCP packets every two hours for a live TCP connection.

Many servers already enable keepalives themselves.

The host requirements RFC is 10 years old, and doesn't know about
the loosing clients of todays InterNet.
1999-06-05 05:45:57 +00:00
phk
3dc9bdca32 Change tcp_extension comment.
Submitted by:	Studded <Studded@gorean.org>
Reviewed by:	phk
1999-05-16 09:19:44 +00:00
des
0a96c9181d Allow the user to specify a different firewall script than /etc/rc.firewall. 1999-04-10 10:56:58 +00:00
grog
1e7868a058 Add variable start_vinum. If set to YES, it will start vinum and
automagically find all the partitions.  This is to be preferred to the
somewhat emetic usage of vinum_slices and the equally obnoxious 'vinum
read' command.
1999-04-02 07:15:44 +00:00
imp
cef8c01351 Add two features:
log_in_vain:
	log_in_vain turns on logging for packets to ports for which
	there is no listener.
    rc.sysctl:
	A generic way to set sysctl values.  It reads /etc/syslog.conf
	and sets values based on that.  No /etc/syslog.conf has been
	checked in yet, and I've not added this to the makefile yet
	until I get more feedback.

Reviewed by: -current, -hackers and bde especially
1999-03-28 20:36:03 +00:00
brian
2a47068aac Add natd_program and change a comment. 1999-03-24 10:27:46 +00:00
billf
544adda3ec Split check_quotas into check_quotas and enable_quotas
enable_quotas - use quotas on your system
check_quotas - check for violations on startup

By assuming that a system was neat and without violation before it booted
we can skip a long (and at that point needless) process.

Submitted by:	Alex Perel <veers@disturbed.net>
1999-03-17 04:00:04 +00:00
jfitz
1a5c7969f4 Add ${lpd_program} and ${portmap_program} as variables in rc.conf, with
suitable defaults pointing to the FreeBSD-shipped versions.  This will allow
for easier integration of third-party replacements for these daemons.
Reviewed by: Several members of -committers
1999-03-11 16:17:24 +00:00
phk
118df06bdc Change the comment to sendmail_flags which has scared so many people
from removing -bd to something more sensible.
1999-03-03 15:04:33 +00:00
jkh
fb9f9eb881 Move rc.conf into defaults/ directory. This is part of a larger series
of commits to deal with the rc.conf.site confusion.
1999-02-09 22:15:18 +00:00