Commit Graph

4276 Commits

Author SHA1 Message Date
ru
2b4a153126 Fixed symlinking /var/named/etc/namedb to /etc/namedb.
A second "make distrib-dirs" createed a symlink in /var/namedb/etc/namedb.
A third "make distrib-dirs" failed.
2004-09-29 06:54:18 +00:00
dougb
7d517d0a4a Add a statistics-file directive 2004-09-29 03:49:35 +00:00
dougb
0e6ff3cc75 stats goes under /var, not /var/run 2004-09-29 03:43:10 +00:00
dougb
69f1a8cb34 gshapiro assures me that uid bind is not necessary for /etc/namedb,
so we'll use the more secure default till I have a chance to prove
myself wrong. :)

Add a /var/stats directory to be enabled in named.conf.

Submitted by:	gshapiro
2004-09-29 03:35:49 +00:00
dougb
93db1b2d6d Whitespace only, tabs -> spaces, per README 2004-09-29 03:33:45 +00:00
trhodes
2bf857d4fd Give users the ability to load a mac_bsdextended(4) ruleset on boot (defaults
to NO of course).  Provide a basic ruleset file, rc.bsdextended, but allow
the filename to be overridden through rc.conf.

Discussed with:	rwatson (awhile ago)
2004-09-29 00:12:28 +00:00
dougb
2f4ac8072d Fix some of the more egregious problems with this file:
1. Update text about later BINDs using a pseudo-random, unpriviliged
query port for UDP by default.

2. We are now running in a sandbox by default, with a dedicated dump
directory, so remove the stale comment.

3. The topology configuration is not for the faint of heart, so
remove the commented example.

4. Tighten up some language a bit.

5. s/secondary/slave/

6. No need for the example about a bind-owned directory for slave zones.

7. Change domain.com to example.com in the example, per RFC 2606.

8. Update the path for slave zones in the example.
	- Thanks to Scot Hetzel <swhetzel@gmail.com>

There is more work to do here, but this is an improvement.
2004-09-28 21:22:09 +00:00
dougb
a0c7847c5b Create a named chroot directory structure in /var/named, and use it
by default when named is enabled. Also, improve our default directory
layout by creating /var/named/etc/namedb/{master|slave} directories,
and use the former for the generated localhost* files.

Rather than using pax to copy device entries, mount devfs in the
chroot directory.

There may be some corner cases where things need to be adjusted,
but overall this structure has been well tested on a production
network, and should serve the needs of the vast majority of users.

UPDATING has instructions on how to do the conversion for those
with existing configurations.
2004-09-28 09:46:00 +00:00
dougb
fc66d174a3 1. Add much finer granularity to the NO_BIND knobs with the addition of:
NO_BIND_DNSSEC, NO_BIND_ETC, NO_BIND_NAMED, and NO_BIND_UTILS.

2. Make creation of directories in /usr/include that are only needed
in the WITH_BIND_LIBS case conditional.

Reviewed by:	ru, des
2004-09-27 08:23:43 +00:00
dougb
d69dcb1c72 Remove the directories that are now only installed when the user
defines WITH_BIND_LIBS.
2004-09-27 08:18:43 +00:00
dougb
540aa4514b Hook the BIND.* files up to the build. 2004-09-27 08:17:51 +00:00
dougb
b3d66f17dc Seperate out the optional parts of the include tree that are
only built and installed when the user defines WITH_BIND_LIBS.
2004-09-27 08:16:29 +00:00
dougb
db8948d7c2 Add a file spec to create a chroot directory structure for
a BIND name server.

This file is not being used yet, but will be soon.
2004-09-27 08:15:34 +00:00
dougb
c08ff0b54f This file is about to get some optional bits, so line up the parts of
the FILES variable one line at a time.

This should be a whitespace change only.

Reviewed by:	ru
2004-09-27 07:00:44 +00:00
dougb
99cc98aa0b It's not necessary to create an rndc.key file if the user already
has an rndc.conf file.

Submitted by:	Sergey Mokryshev <mokr@mokr.net>
2004-09-26 07:01:56 +00:00
des
74080d4757 Create /etc/namedb/bind with owner / group bind and mode 0750. 2004-09-25 15:55:17 +00:00
dougb
45457fa40b Install the documentation for bind9, and remove the /usr/share/doc/bind
directory from mtree while we're at it.

Help, advice, and code from:	ru, des
2004-09-25 00:42:38 +00:00
dougb
fc1ae4d927 Fix two glitches that appear in the non-chroot case. First, if not
chrooted the pid symlink code should not fire. Also, remove the quotes
around the chroot variable in the rndc-confgen invocation so that if
not chrooted the command will still succeed.

Pointed out by:	Sean McNeil <sean@mcneil.com>
2004-09-24 23:49:38 +00:00
dougb
3cd959aedd For the default FreeBSD install, the file path actually is
/var/run/named/pid. This is done so that named can start
with -u bind and still dump a pid file in that directory,
which is chowned to user bind.
2004-09-24 22:47:10 +00:00
des
3fe60073ff It's named.pid, not named/pid.
Pointy hat to:	dougb@
2004-09-24 19:46:18 +00:00
des
8bda6a04d2 Reconnect namedb. While it may not be optimal, our old named.conf from
BIND 8 is quite usable for BIND 9.
2004-09-24 16:13:55 +00:00
cognet
883ad7e1a5 Add ttyu0 as a serial console, as we're using the uart(4) driver on arm. 2004-09-24 12:51:15 +00:00
keramida
909ffdebbf Fix a comment typo: s/neccessary/necessary/ 2004-09-24 11:04:27 +00:00
dougb
cdf79b2b37 Update to reflect BIND 9 in the base:
1. Making the pid symlink now has to happen after named starts, otherwise
it can generate a fatal error.

2. named-xfer is not part of the BIND 9 world.

3. BIND 9 needs a /dev/random in the chroot directory if chrooted.

4. Only the pid file is symlinked now, the ndc socket is BIND 8 only.

5. Create an rndc.key file for the user if one does not exist.
This (generally) allows a BIND 8 config file to be used in a BIND 9
world with little or no modification.
2004-09-24 04:53:18 +00:00
dougb
4a53309170 Add a note to indicate that the path set in named_pidfile must
also be set in named.conf. Our default named.conf has this already.

Update the note for named_symlink_enable to indicate that ndc is gone.
2004-09-24 04:45:16 +00:00
des
138096672e Re-add namedb. I misunderstood what Doug said about using ISC's
layout: he meant for binaries, not configuration files.
2004-09-23 19:33:54 +00:00
jkoshy
e73862471d Add a knob 'daily_status_security_diff_flags' controlling the
format of the 'diff' output generated during periodic(8) scripts.

Submitted by:	keramida (script changes)
Reviewed by:	keramida (man page changes)
2004-09-23 02:00:52 +00:00
des
a4c12f8006 Switch from BIND 8 to BIND 9.
Submitted by:	(in part) dougb@, trhodes@
Reviewed by:	dougb@, trhodes@, re@
MFC after:	5 days
2004-09-21 19:01:48 +00:00
des
c93358b0a6 If $dumpdev is set to AUTO, use the first suitable swap partition listed
in /etc/fstab, or print an error message if no suitable device was found.

MFC after:	4 weeks
2004-09-20 17:48:45 +00:00
pjd
566c62aad2 Teach swap1 script how to remove added swap devices on system shutdown.
Without this change, if one had a swap-on-mirror configuration, gmirror
will rebuild mirror component(s) on boot, because they are dirty (they
were open on shutdown).
2004-09-17 17:58:19 +00:00
glebius
595e382626 Change tabs to whitespaces.
Noticed by:	ru
Pointy hat to:	glebius
2004-09-16 21:33:56 +00:00
glebius
1c47cb72bb Install netflow includes.
Approved by:	julian (mentor)
2004-09-16 20:42:03 +00:00
keramida
49dafca9da We don't have any providers of `beforenetlkm' in FreeBSD. Remove the
dependency to it from our rc.d scripts.

Approved by:	mtm
2004-09-16 17:04:20 +00:00
keramida
307d72bfbe Fix requirement of network' to NETWORK' because the former isn't
provided by any rc.d script.

Approved by:	mtm
2004-09-16 17:03:12 +00:00
seanc
7580811af2 Bring back etc/rc.d/ntpdate as requested by scads of people. This isn't a
complete backout as the ntpd_sync_on_start etc/rc.conf tunable is still
present, though the default is now NO (was YES).  Since we're no longer
syncing time at startup by default when ntpd is enabled (as was the case
24hrs ago), remove UPDATING entry pointing out that ntpd(1) -g is slower
than ntpdate(1).

Hopefully ntpd_sync_on_start="YES" can be made the default for -CURRENT
after 5.3 is cut.  At the very least, this should be set to YES when a
user requests to have ntpd enabled via sysinstall(1).

Requested by:	many
2004-09-15 01:08:33 +00:00
seanc
fe1474f861 Stop using ntpdate(1) in our startup procedure. Replace ntpdate(1) with
calls to ntpd -g.  ntpd is noticeably slower than ntpdate, but is also more
accurate.  This removes the nasty hackery in rc.d/ntpdate that would parse
out ntp servers from /etc/ntp.conf (ntpd knows how to read its own config
file).  By default, ntpd *will* sync with its listed time servers.  To
turn this off so that ntpd does not sync, ntpd_sync_on_start="NO" can be
added to /etc/rc.conf.  If ntpd is not enabled (the default), then time is
not synced on startup.  ntpdate has been depreciated by the ntpd authors
for quite some time so this change shouldn't be unexpected.

Suggested by:	des
Approved by:	roberto (resident ntp guru)
2004-09-14 03:04:50 +00:00
seanc
dcf0d84fcd Stop using ntpdate(1) in our startup proceedure. Replace ntpdate(1) with
calls to ntpd -g.  ntpd is noticably slower than ntpdate, but is also more
accurate.  This removes the nasty hackery in rc.d/ntpdate that would parse
out ntp servers from /etc/ntp.conf (ntpd knows how to read its own config
file).  By default, ntpd *will* sync with its listed time servers.  To
turn this off so that ntpd does not sync, ntpd_sync_on_start="NO" can be
added to /etc/rc.conf.  If ntpd is not enabled (the default), then time is
not synced on startup.  ntpdate's use has been depreciated by the ntpd
authors for quite some time so this change shouldn't be unexpected.

Suggested by:	des
Approved by:	roberto (resident ntp guru)
2004-09-14 03:01:38 +00:00
mlaier
61e73d53e0 Bring in some examples (and create space for future work here):
- Add OpenBSD example rulesets as advertised in etc/pf.conf and pf.conf(5)
- Tweak the pointer to fit the FreeBSD default location share/examples/pf
- Account for the new directory in BSD.usr.dist (no hier(7) change required
  as share/examples is an opaque item there).

Obtained from:	OpenBSD
Reminded by:	Thomas T. Veldhouse
PR:		docs/71691
MFC after:	2 days
2004-09-14 01:07:19 +00:00
mlaier
0dd68a174a Update the passive OS fingerprint database from OpenBSD.
Obtained from:	lcamtuf.coredump.cx (via OpenBSD)
2004-09-14 00:30:14 +00:00
ru
12835c964a A power failure left the temporary /var/.diskless directory
on my system, and since then my /var was always created as
MFS which was very surprising.  Fix this for /tmp and /var.
2004-09-13 17:40:14 +00:00
wpaul
a2f7a53a34 Add device driver support for the VIA Networking Technologies
VT6122 gigabit ethernet chip and integrated 10/100/1000 copper PHY.
The vge driver has been added to GENERIC for i386, pc98 and amd64,
but not to sparc or ia64 since I don't have the ability to test
it there. The vge(4) driver supports VLANs, checksum offload and
jumbo frames.

Also added the lge(4) and nge(4) drivers to GENERIC for i386 and
pc98 since I was in the neighborhood. There's no reason to leave them
out anymore.
2004-09-10 20:57:46 +00:00
obrien
e4d8d65565 Restore NetBSD SCM ID.
Submitted by:	delphij@beastie.frontfree.net
2004-09-09 16:41:55 +00:00
glebius
97fb6113f0 Add axe(4) to ethernet-nic-regex.
PR:		conf/71410
Submitted by:	Andrew Thompson <thompsa AT thingy.tbd.co.nz>
Approved by:	julian (mentor)
MFC after:	3 days
2004-09-06 20:09:00 +00:00
alfred
ffce5199dd Hook autofs to the build. 2004-09-02 20:44:56 +00:00
brooks
77972e1ec2 When an USB keyboard is plugged in to a machine with a builtin keyboard,
cause the USB keyboard to take over from the builtin one.  This means my
laptop just works when I'm using it as a desktop.

Reviewed by:	imp
2004-09-01 00:08:15 +00:00
mlaier
07c612deee Don't rely on properly setup linker.hints to figure out that pflog is now
part of the pf module.
While here fix a comment that was c'n'ped from rc.d/pf

PR:		bin/71096 (partly)
Submitted by:	Ville-Pertti Keinonen
MFC after:	2 days
2004-08-31 14:23:51 +00:00
kensmith
0da56f8f1e Protect the command flags set in the rc.conf files in case they're
more than one word, adding some quotes.

Advice from:	mtm (my first attempt wasn't quite right)
Reviewed by:	mtm
MFC after:	3 days
2004-08-29 15:02:43 +00:00
tjr
73afa7d781 Add Basque (Spain) locales: eu_ES.ISO8859-1, eu_ES.ISO8859-15, eu_ES.UTF-8.
(This differs somewhat from the version originally submitted - any mistakes
are my own.)

PR:		68524
Submitted by:	J. Vicente Carrasco -Bixen-
2004-08-28 12:52:31 +00:00
yar
2032b765e7 Avoid double appearing of cloned interfaces in the output
from list_net_interfaces() when network_interfaces=auto.

Rationale: Since the auto case is special, the lesser evil
had to be chosen among not adding cloned interfaces to
_tmplist or removing duplicates from _tmplist after adding
cloned interfaces.  Since list_net_interfaces() must not use
/usr/bin tools, the former "evil" appeared clearer and much
more efficient.  (See the PR audit trail for discussion.)

PR:		conf/63700
Reviewed by:	brooks
MFC after:	5 days
2004-08-28 07:58:02 +00:00
yar
42e5c7d376 Fix a typo in a variable name. 2004-08-27 12:11:47 +00:00
ru
8b2104d07b share/examples/worm is dead. 2004-08-24 19:03:55 +00:00
des
aedf82c640 Always quote variables in tests, to ensure correct evaluation even when
they are empty or undefined.

MFC after:	3 days
2004-08-19 08:55:24 +00:00
thomas
78808e1a5d Skip entries for GBDE swap devices if they are commented out in /etc/fstab.
Reviewed by:	des
2004-08-18 21:54:40 +00:00
nectar
455e6a1652 Create temporary files safely.
Submitted by:	Jon Passki <cykyc@yahoo.com>
2004-08-16 16:37:06 +00:00
cperciva
f036c02496 Add 3653/tcp and 3653/udp, since they were specifically requested.
PR:		conf/63907
Submitted by:	Marc Blanchet
MFC after:	3 days
2004-08-16 11:52:22 +00:00
dwmalone
486b54a301 Add Hungarian calendar entries.
PR:		42725
Submitted by:	Janos Mohacsi <janos.mohacsi@bsd.hu>
2004-08-16 09:31:09 +00:00
pjd
5719aaaa5f Connect RAID3 GEOM class to the build. 2004-08-16 06:36:21 +00:00
gshapiro
bd18d41fef Fix the startup logic for sendmail. If sendmail_enable=yes, don't start
the submit and outbound daemon, else if sendmail_submit_enable=yes, don't
start the outbound daemon.  Only one daemon should be started.

Also, do not rebuild database maps at boot time.  The code didn't pay
attention to SENDMAIL_MAP_TYPE and assumed 'hash'.  Also, admins may
not want maps automatically rebuilt just because the back end database
has changed.  Finally, some maps are built with mode tools than just
makemap (e.g., using cidrexpand on the access text file before sending
it to makemap).

Noticed by:	ache
Reviewed by:	ache
2004-08-05 03:09:54 +00:00
markm
2eca3d2dab Give sshd a secure startup, but with a tweakable timeout so that
the box won't hang forever at startup.
2004-08-04 08:10:37 +00:00
ume
aedc433cf3 Use RFC 3849 address for examples.
Pointed out by:	mistral@imasy.or.jp
MFC after:	1 week
2004-08-03 08:58:34 +00:00
ume
5a48e6bc9f allow ::1 explicitly.
Pointed out by:	mistral@imasy.or.jp
MFC after:	1 week
2004-08-03 08:47:35 +00:00
markm
b6d85a7112 UUCP's uucico(8) has not been in the base system for some time now,
so reflect this in the default. The uucp uid is a bit funny, and
is used by mtree in /var/spool for locks, so we can't remove it
without thinking about it a bit harder.
2004-08-01 21:33:47 +00:00
pjd
70045d465a Connect GEOM_MIRROR class to the build. 2004-07-30 23:18:53 +00:00
mtm
cc10a9c33b Finish cleanup of rc.d/netif. It's now possible to start/stop more
than one interface from the command line:
	# /etc/rc.d/netif start bfe0 xl0
It's also possible to restart an interface(s):
	# /etc/rc.d/netif restart bfe0

This required some changes to rc.subr(8) so that if the start/stop commands
are overidden the rest of the command line (after the start/stop/etc... cmd)
is passed through to the subroutines.
2004-07-30 17:19:35 +00:00
kan
482ec87e2d Bmake glue for GCC 3.4.2-prerelease. 2004-07-28 05:27:21 +00:00
eik
ac2fecdcf2 back out the localkg changes until things have settled.
Discussed with:	mtm
2004-07-28 00:09:19 +00:00
mtm
232741d90d Even though binaries will give 0 matches, make it explicit. 2004-07-27 16:59:35 +00:00
ru
1c9892680c Fixed style of previous commit. 2004-07-27 12:31:38 +00:00
mlaier
559d01a8d6 Fix typo in description of pflog_logfile.
Submitted by:	Mike Jakubik
2004-07-27 00:28:16 +00:00
mtm
7556b394c6 Correct typo.
Submitted by: eik (and probably many others)
2004-07-24 16:30:31 +00:00
mtm
99fe82d8e6 Ports related rc.d cleanups:
o Separate out local (ports) scripts that use rc.d, and the old style
  startup/shutdown scripts and execute them separately. On startup the
  rc.d style scripts are executed first and then the old-style scripts.
  On shutdown, exactly the reverse happens.
o The rc.d ports scripts should now behave more like base system scripts.
  Scripts ending in .sh will be sourced into the current shell, while the
  rest will be executed in a subshell. Previously, all ports scripts,
  regardless of the .sh suffix, were executed in a subshell.
o The parent script, /etc/rc.d/localpkg, passes its command line arguments
  straight to the rc.d ports scripts. This means they should now honor
  faststop and faststart commands as well. Old style scripts, should not see
  any differences. They will still get either a start or stop command.
o The initial phrase shown during shutdown has been changed to use
  "local packages" instead of "daemon processes" to be more inline with the
  phrase used during local package startup. The phrases are also used only for
  old-style ports script startup/shutdown, whereas previously they were being
  used for both rc.d and old-style scripts. This should make startup/shutdown
  output a bit less ugly.

Discussed with:	portmgr
Has Reservations: eik
2004-07-24 14:56:21 +00:00
roberto
f892b6158f Add /etc/ntp to hold keys for ntpd. 2004-07-21 10:14:10 +00:00
simon
0fcf2627f6 For the gbde attach script:
- Ask the user up to X times (3 by default) for the pass-phrase, if
  it is incorrect the first time.
- Add support for storing the lockfiles in another other directory
  than /etc.
- Document that it is possible to override the location of each single
  lockfile.

Approved by:	pjd
2004-07-18 18:01:48 +00:00
cperciva
4ac0cfc416 Whitespace cleanup. This will simplify a future merge from
IANA's official list of port assignments.
2004-07-11 19:20:47 +00:00
harti
8c11c172c1 Add a directory for the API include files. 2004-07-08 16:48:43 +00:00
cperciva
abbc5d3d40 Sort entries correctly. 2004-07-07 06:15:32 +00:00
imp
4a1a7c3a83 Disable rescanning of the scsi bus for the scsi controllers. There
are some that really hate this, so now that devd is default, be more
conservative about what we do.

Noticed by: marcel
2004-07-05 20:16:30 +00:00
cperciva
f02259600d Wrap rc.subr inside
if [ -z "${_rc_subr_loaded}" ]; then
_rc_subr_loaded="YES"
...
fi

in order to avoid re-interpreting rc.subr every time an rc.d
script is run.  In my tests, this speeds up rc time by about
8-10%.
2004-07-04 07:21:18 +00:00
pjd
7f4ea6942f Introduce GEOM_LABEL class.
This class is used for detecting volume labels on file systems:
UFS, MSDOSFS (FAT12, FAT16, FAT32) and ISO9660.
It also provide native labelization (there is no need for file system).

g_label_ufs.c is based on geom_vol_ffs from Gordon Tetlow.
g_label_msdos.c and g_label_iso9660.c are probably hacks, I just found
where volume labels are stored and I use those offsets here,
but with this class it should be easy to do it as it should be done by
someone who know how.
Implementing volume labels detection for other file systems also should
be trivial.

New providers are created in those directories:
/dev/ufs/ (UFS1, UFS2)
/dev/msdosfs/ (FAT12, FAT16, FAT32)
/dev/iso9660/ (ISO9660)
/dev/label/ (native labels, configured with glabel(8))

Manual page cleanups and some comments inside were submitted by
Simon L. Nielsen, who was, as always, very helpful. Thanks!
2004-07-02 19:40:36 +00:00
maxim
7dde49bc61 Add user _pflogd. 2004-06-30 16:47:08 +00:00
imp
d1d8d2673c devd is now on by default
Reviewed by: dfr,njr (not nate!)
2004-06-30 15:58:46 +00:00
mtm
5e58125da8 Make the stop command respect the 'fast' prefix.
Most notably, this cleans up messages when shutting down from
single user. In such a case there are usually no daemons running,
but their pid files are still in /var/run. This causes rc.d to
output diagnostics about daemons with pidfiles, but that are
not running.
2004-06-26 09:27:30 +00:00
mtm
6014d47522 Fix typo.
Submitted by: kuriyama
2004-06-24 16:57:49 +00:00
mlaier
01e37606dd It's /usr/sbin/nologin not /sbin/nologin
Found-by:	brueffer
Pointy-hat-to:	mlaier
2004-06-23 09:42:19 +00:00
mlaier
c5c0a34dc2 Swap order of ruleset load and enabling pf to work around a problem on altq
startup. Moreover, this is the "more logic" order.
2004-06-23 01:42:06 +00:00
mlaier
f42f4268ea Add "privsep" user/group _pflogd:_pflogd (64:64) to make pflogd(8) work
again. This user/group is not required for install* targets, hence do not
add them to CHECK_UIDS/CHECK_GIDS in Makefile.inc1 (no need to annoy
people).

Discussed-on:	-current
2004-06-23 01:32:28 +00:00
des
74ea372665 Correct an error carried over from the nsswitch.conf(5) manual page; add
a note to UPDATING since users may have to manually remove an incorrect
nsswitch.conf.

Noticed by:	simon
2004-06-21 19:38:58 +00:00
green
989cfda158 Allow setting the system console keyboard via the ${keyboard} rc.conf
directive.
2004-06-18 20:09:30 +00:00
mlaier
977d97b004 Link ALTQ to the build and break with ABI for struct ifnet. Please recompile
your (network) modules as well as any userland that might make sense of
sizeof(struct ifnet).
This does not change the queueing yet. These changes will follow in a
seperate commit. Same with the driver changes, which need case by case
evaluation.

__FreeBSD_version bump will follow.

Tested-by:	(i386)LINT
2004-06-13 17:29:10 +00:00
cognet
ad8a1611c3 Import the ttys file for arm.
make TARGET_ARCH=arm world now works (but still with external patches for
the toolchain bits).
2004-06-11 15:37:49 +00:00
obrien
aeea668843 Back out rev 1.3.
This is one of the few RC scripts that doesn't use rc.subr, and thus
doesn't source rc.conf. :-(
2004-06-08 19:53:25 +00:00
obrien
a814c9089c Don't assume everyone's /etc/[default/]rc.conf 'entropy_file' is "/entropy". 2004-06-07 09:16:19 +00:00
mtm
eead69e718 Restore pre-rcNG behaviour:
SIGINT (Ctrl-c) kills the current script
SIGQUIT (Ctrl-\) kills /etc/rc (dropping you into single-user)

Prodded by:	harti
2004-06-06 18:06:09 +00:00
gshapiro
dc0bb91824 Remove trailing space.
Submitted by:	jens
2004-06-06 17:28:31 +00:00
schweikh
91f34482ca Removed whitespace at BOF, EOL & EOF. 2004-06-06 11:46:29 +00:00
sanpei
9b15e9628d fix MELCO LPC3-TX entry.
I mistaked at 1.166.

Submitted by:	SARUMARU Yoshihiko <mistral@imasy.or.jp>
Pointed out by:	MORIYASU Hirano <m-hirano@konsei.co.jp>
	FreeBSD-users-jp 79808
	FreeBSD-users-jp 79816
2004-06-05 06:11:54 +00:00
ume
97a623b578 fix typo in comment in my previous commit. 2004-06-02 09:58:18 +00:00
ume
3203ab4537 Add ip6addrctl_enable and ip6_addrctl_verbose option. If
ip6addrctl_enable is set to YES, address selection policy is installed
into kernel.
If there is /etc/ip6addrctl.conf, it is used for address selection
policy.  Even if there is no /etc/ip6addrctl.conf, we install default
policy.  In this case, if ipv6_enable is set to YES, we use address
selection policy described in RFC 3484 as default.  Otherwise, we
install priority policy for IPv4 address.
The default of ip6addrctl_enable is NO for now.  However, it may
better to enable it by default.
2004-06-02 09:39:49 +00:00
kris
daf3889b76 Add common share/locale directories (everything used by >= 5 ports [1]) and
/usr/local/www

[1] Semi-arbitrary cutoff, but I didn't want to add every locale directory
    used by ports, because a lot are only used by one or two, and it's less
    intrusive for these ports to just clean up after themselves.

MFC after:	2 days
2004-05-31 07:34:40 +00:00
njl
a8fceddb6e Throw the switch and enable use of the lowest idle states while online in
addition to offline.  This can be overridden in /etc/rc.conf if it causes
trouble although this has been stable since 2003/12.
2004-05-29 04:52:37 +00:00
mlaier
a670a21760 Add ftp-proxy 8021/tcp in order to make the inetd.conf entry actually work.
Submitted-by:	brueffer
Approved-by:	bms(mentor)
2004-05-27 23:42:26 +00:00
des
c175fbd842 Install nsswitch. 2004-05-24 14:17:19 +00:00
des
f55719c110 If nsswitch.conf does not exist, create it with the default settings.
The reason for doing this is that (at least some) 4.x binaries are very
unhappy if host.conf does not exist, and if we create host.conf but not
nsswitch.conf, nsswitch.conf will be created at the next reboot, so it
is better to create a correct nsswitch.conf right away.
2004-05-24 11:53:26 +00:00
des
7d5a1a0c2b Move the task of updating nsswitch.conf / host.conf into a separate
script called nsswitch.
2004-05-24 11:48:58 +00:00
ume
169bb92b15 drop packet which has ::1 as src or dst via other than lo0
like as rc.firewall does.

MFC after:	1 week
2004-05-24 07:27:26 +00:00
mtm
8a9e48f1da Really remove the return statement this time. Thanks to
ru for noticing.
2004-05-20 15:53:49 +00:00
mtm
5d2866f125 The err routine requires two arguments: an exit value and a string.
Additionaly, it will exit the script so an return statements after
calling it are superflous.
2004-05-20 14:16:05 +00:00
pjd
87ec5ee8d6 - Install includes used by STRIPE and NOP GEOM classes.
- Create needed directories.

Supported by:	Wheel - Open Technologies - http://www.wheel.pl
2004-05-20 10:29:26 +00:00
joe
1251c94abc Allow the location of the INDEX file to specified to pkg_version.
This is particularly convenient on a cluster of machines to prevent
having to rebuild the INDEX file on each.

Reviewed by:	portmgr
2004-05-19 09:18:08 +00:00
njl
055815ed7e Change hw.acpi.cpu.cx_lowest to accept values in the form of C1,
C2, ...  Update power_profile to use the new format.  Update the
man page to reflect this and give more info on Cx states.
2004-05-07 05:22:38 +00:00
pjd
763751f494 Add g_concat.h and g_gate.h to be installed in
/usr/include/geom/(concat|gate)/.
2004-04-30 16:21:39 +00:00
phk
c37cc5e191 Protect som cross-script invocations by checks to see that the target
script exists.  This allows pruning of rc.d scripts without getting
too many ugly boottime error message
2004-04-28 13:20:15 +00:00
phk
beede09a6d Initdiskless must run before ipfw, or people will not be able to
use the conf/* stuff for their firewall configuration.

Running ipfw before could seem to make sense in that it would allow
one to setup access to the NFS server on a "default-deny" kernel,
but it is pretty obvious to the casual observer that such a configuration
never makes it far enough to mount the NFS-root in the first place.
2004-04-28 13:18:22 +00:00
ru
cb5b33962a Replace shell's positional parameters safely. 2004-04-28 09:09:27 +00:00
phk
6289df2735 When using this in non-NFSroot circumstances, mount -t nfs may
return empty.  Add a dummy element to prevent the alternate action
of the shell builtin "set"
2004-04-27 15:42:34 +00:00
simon
9d0355ed7f Removes the check for the existence of the sysctl variable
debug.watchdog since it is not created by hardware watchdog(4) devices.
The watchdog(4) device is always compiled in the kernel, so removing the
check should not cause any problems.

Approved by:	phk
2004-04-26 19:41:37 +00:00
tjr
1511636f6c Add an Israel Hebrew locale: he_IL.UTF-8.
PR:		65826
Submitted by:	Hye-Shik Chang
2004-04-21 15:28:23 +00:00
darrenr
77ecc19ba0 Add script for checking ipv6 blocked packets from PR.
PR:		misc/50154
Submitted by:	Kimura Fuyuki <fuyuki@hadaly.org>
2004-04-20 13:44:57 +00:00
darrenr
86348d86eb apply patch so pr can be closed
PR:		misc/56715
Submitted by:	grant@NetBSD.org
Reviewed by:	darrenr
2004-04-20 13:30:49 +00:00
fjoe
e6c3857b04 sendmail_submit_enable and sendmail_outbound_enable checks were reverted.
Found by:	Morten Rodal <morten@rodal.no>
2004-04-17 19:09:09 +00:00
brooks
adece3da68 Actually install preseedrandom.
Reported by:	bde
2004-04-17 04:12:27 +00:00
brooks
2368868392 Remove bogus checks on the value of ${entropy_file} and hardcode out
entropy source to /entropy.  We have to assume there is no rc.conf at
this stage of the boot process.

Reported by:	njl
2004-04-15 18:23:14 +00:00
brooks
5ba6f20e07 Band-aid diskless booting by running a new preseedrandom script before
initdiskless.  The output of several commands and if available the
contents of /entropy are feed into /dev/random to kickstart the PRNG.
/etc/rc.d/initrandom is left alone to maintain the previous behavior as
much as possiable.

Further work in this area is probably needed.

Discussed with:	markm
2004-04-15 17:52:53 +00:00
harti
7d1905e15b Move the SNMP MIBs and tree definitions from /usr/share/bsnmp to
/usr/share/snmp. This mirrors the use of /usr/local/share/snmp and
makes also more sense when non-bsnmp-specific MIBs go in.
2004-04-14 16:06:19 +00:00
brooks
4e1b51a160 Catch up with diskless split "diskless" is no longer provided.
Suggested by:	cperciva
2004-04-12 18:11:00 +00:00
green
6ccd44aa20 Document devfs_set_rulesets a little. 2004-04-10 22:13:27 +00:00
rsm
cafbeaf3a8 Add Xircom XEM5600 card (appears to be a renamed REM56).
Observe that Xircom CEM28 and CEM33 are known to work in Ethernet mode.

Reviewed by:	imp (mentor)
2004-04-09 17:15:18 +00:00
markm
876f2f7db7 Take into account hardware-supplied entropy. If the entropy source
is hardware, the Yarrow initialisations don't need to be done.
2004-04-09 15:56:16 +00:00
wes
3a3d909a8c Style fixes, as suggested by Jens Schweikhardt <schweikh@schweikhardt.net> 2004-04-06 23:15:48 +00:00
wes
5b812a093e Split ramdisk processing in two so it can actually work. Ownerships
and permissions specified per rc.conf(5) now apply both to the md
device and to the mountpoint directory, after the mount has completed.
This has to be done in two steps, because chown is not available
until after /usr has been mounted, but the mdconfig and newfs steps
have to complete before fstab processing.
2004-04-06 18:26:43 +00:00
fjoe
ea768cc3c2 Add separate script for natd. This fixes race condition with "ipfw restart"
(when new natd is started before old natd died) and allows to manage natd
without touching ipfw.

natd should probably be killed with SIGKILL when stopping natd.
2004-04-05 16:29:45 +00:00
fjoe
5fd7f55e2f Allow this script to be used for Postfix:
- Use sendmail_foo variables after load_rc_config so that they actually work.
- Utilize sendmail_procname.
- Check sendmail_submit_enable instead of sendmail_enable when dealing
with mail submission MTA.
2004-04-05 16:26:22 +00:00
fjoe
4aa199a178 Document sendmail_pidfile variable.
Add sendmail_procname variable.
2004-04-05 16:22:14 +00:00
mlaier
7f9c2ff639 Style:
- do not comment out entries in newsyslog.conf
 - use tabs to line up inetd.conf

Requested by:	bde
Approved by:	bms(mentor)
2004-04-03 17:52:29 +00:00
mlaier
a19995e562 Add rc.d script to start pflogd and add rcvars etc. Also document vars in
rc.conf(5) and put a sample entry to newsyslog.conf

Reviewed by:	-current
Approved by:	bms(mentor)
2004-04-02 19:25:27 +00:00
krion
8997a8f449 - Use "/bin/hostname" explicitly instead of "hostname".
Approved by:	tobez
MFC after:	1 week
2004-04-02 12:18:40 +00:00
krion
373fdcfae3 - Use absolute path for hostname(1)
Approved by:	green
2004-04-01 19:28:00 +00:00
luigi
839847403e Extensive documentation changes to the script, but only
comments and empty lines have been touched.

All of this should go in the diskless(8) manpage, now if we had
some kind of 'literate programming' tool to extract the comments
from the script and put them in a reasonable nroff format, it
would be a lot easier to keep code and docs in sync
2004-03-31 08:43:20 +00:00
luigi
b8eaf31fc9 Minor changes mostly as discussed on the lists a few days ago:
+ SUBDIR.cpio.gz prevents files from SUBDIR/ to be copied when
   priming the memory filesystems. This restores the old behaviour
   and makes the copy process a lot more efficient

 + look for templates also in the list of directories supplied by
   bootp/dhcp via the T134 option aka kern.bootp_cookie

 + keep track of directories temporarily mounted with "remount"
   or "diskless_remount" commands and unmount them once we are done
   with them (at the end of this script).
2004-03-31 07:24:15 +00:00
cperciva
32f32cef56 Synchronize with reality: nologin(8) is now in /usr/sbin
Reminded by:	trhodes
2004-03-30 19:19:02 +00:00
des
b6cc77826c Remove the POSIX and en_US.US-ASCII links after ache@ explained why they
are unnecessary (and a bad idea).
2004-03-30 14:20:45 +00:00
des
3f9f949de6 Fix the case where $ntpdate_hosts was not specified and /etc/ntp.conf
does not exist.

Submitted by:	ru
2004-03-29 20:00:54 +00:00
tjr
2a53b4b598 Add directories under /usr/share/nls and /usr/local/share/nls
for the new UTF-8 locales.

Reminded by:	ache
2004-03-29 11:07:35 +00:00
dougb
505c41e259 A few small cleanups:
1. Add the shutdown keyword so that the script is run at shutdown time,
and the mixer* files are saved.
2. Twiddle whitespace.
3. Remove an unecessary function, and therefore collapse one variable.
2004-03-27 09:26:22 +00:00
tjr
642f4c91af Add UTF-8 versions of all the currently supported system locales. Most of
the hard work was done by Hye-Shik Chang in the misc/utf8locale port; I made
a few minor adjustments and merged the makefiles.

PR:	44307
2004-03-27 08:14:15 +00:00
ru
82790ffa5b Removed more vestiges of the stl(4) driver. 2004-03-26 18:49:11 +00:00
mlaier
95fba106c8 Install the pf rc.d-script (missed Makefile update in original commit)
Approved by:	bms(mentor)
2004-03-24 21:54:44 +00:00
obrien
78406916b6 Back out revision 1.295. share/libdata/gcc/ is valid and used. 2004-03-24 19:37:53 +00:00
pjd
7456822f82 Added 'nojail' keyword for rc.d/mixer script, while mixer(8) is not
usable in jail by default (no /dev/mixer).
2004-03-24 12:49:34 +00:00
des
cc43c606f8 Previous commit should have read: remove share/libdata/doscmd/{,fonts/}.
This time around, remove share/libdata/gcc/ which seems unused.
2004-03-24 08:21:30 +00:00
des
4d8c9452c1 Remove share/doscmd/{,fonts/} 2004-03-24 08:19:46 +00:00
brooks
6ef21c4a07 Overhaul the /etc/rc.d/diskless script by splitting it out into
hostname, resolve, tmp, and var scripts.  The latter three are new and
were repo copied.  These scripts no longer depend on being booted with
and NFS root instead attempt to automaticly create mfs /tmp and /var
volumes if the they are not writable.  This behavior can be overridden
in /etc/rc.conf.

Reviewed by:    luigi, pjd
2004-03-23 23:22:35 +00:00
mlaier
a1442efbd3 Add rc.d script for pf(4) (more to come once pflogd(8) works as well).
Update defaults and write some lines for rc.conf(5) also.
Mostly dup'ed from ipf

Reviewed by:	-current
Approved by:	bms(mentor)
2004-03-23 22:30:15 +00:00
des
cef96f810f Drop the -d argument to mtree since some of the spec files now list
symlinks.
2004-03-23 22:17:34 +00:00
des
431b446dc3 Add share/nls/{POSIX,en_US.US-ASCII} as symlinks to C. 2004-03-23 22:16:38 +00:00
des
9d10e9dea5 Set start_cmd and stop_cmd correctly so the code that extracts the names
of the ntp servers from ntp.conf is actually used.  Remove pidfile since
ntpdate is not a daemon.
2004-03-22 16:35:35 +00:00
maxim
ed9eabcb8c o Add user proxy. 2004-03-20 19:13:06 +00:00
green
b32a2840fd Add a way for rc.d/devfs to set more than just the system devfs up.
Yes, this means for stuff OTHER than jails, too.  Example usage:
#devfs_system_ruleset="root"
devfs_set_rulesets="/dev=root /etc/namedb/dev=named_devfs"
2004-03-20 07:10:16 +00:00
davidc
5dc13201b2 Echo and pass dumpdev as the device argument to savecore.
PR: bin/51655
2004-03-18 15:18:20 +00:00
jhb
216c5338ff Add a mixer script that saves the current settings of all mixers present
in the system on shutdown and restores the settings on boot.  The settings
can also be reset to the saved values via 'mixer reload'.

Reviewed by:	current@
2004-03-15 23:09:17 +00:00
wes
e998d37f8e Add script for creating ramdisks at boot time, in time to be processed
by fstab.
2004-03-15 18:36:21 +00:00
dougb
454914fc9f 1. Remove the named_rcng variable. Mike's caution in this area was a good
thing, but we're ready to move on.

2. Remove the -g default argument in named_flags. It doesn't actually do
what most users think it does, and what most users want it to do is already
accomplished with a proper default group for the bind user, which we have.
Also, the -g knob does something entirely different in BIND 9, which leads
to a lot of needless confusion/aggravation.

3. In the rc.d script, don't bogusly override $command, or $rc_flags. Both
are adequately handled in rc.conf[.local].

4. DO properly override $rc_flags if user has named_chrootdir set.
This may need to be revisited, but should be ok for now.

5. Protect all chrootdir-related bits under that variable, instead of
named_rcng.

There is more work to be done here, especially in the area of BIND 9
compatibility, but this is a start at least.

Prompted in part by (legitmate) grousing from: kuriyama, Randy Bush
2004-03-14 19:10:06 +00:00
ru
4984053548 I believe most of /boot/device.hints out there are based (if not
identical) on GENERIC.hints, hence the following change:

Moved the creation of /boot/device.hints where it belongs.  This
should aid in merging GENERIC.hints changes to /boot/device.hints,
using mergemaster(8) or a similar approach.
2004-03-14 17:18:39 +00:00
cperciva
8dd2cbb51f Fix odd grammar in comment.
PR:		docs/64190
Submitted by:	Dan Langille
2004-03-13 05:16:42 +00:00
brooks
eaef20db03 If /conf/diskless_remount exists, use it to remount the entire /conf
directory.  This allows multiple roots (say for different architectures)
to share the same set of /conf files.
2004-03-12 04:40:16 +00:00
des
43f880ead7 Turn on logging for tftpd. 2004-03-11 22:15:28 +00:00
kientzle
badbb89cc5 Don't run fsck if there's no /etc/fstab.
In particular, this allows a "virgin" system installed from
source (installworld, installkernel, cd etc && make distribution)
to boot correctly and modestly simplifies the creation
of single-partition network/cdrom/CF bootable images.
2004-03-11 20:00:10 +00:00
mlaier
6288f397f9 ftp-proxy no longer lives in /usr/local/...
Noticed by:	Pyun YongHyeon
Approved by:	bms(mentor)
2004-03-10 15:06:17 +00:00
mlaier
a23e19f250 Add trailing collon
Noticed by:	dwhite
Approved by:	bms(mentor)
2004-03-10 15:04:29 +00:00
phk
ae10eb5198 Make this file more generally usable:
Trigger not only on diskless booting sysctls being set, but also
on the existence of the file "/etc/diskless".  But do not try to
extract IP# related keywords in that case.

Add a general "remount" facility to allow non-NFS remounting.
2004-03-09 23:06:50 +00:00
ale
fe0800a349 Fix typos.
Approved by:	blackend (mentor/implicitly)
2004-03-08 23:18:50 +00:00
mlaier
6be47b725d Link pf to the build and install:
This adds the former ports registered groups: proxy and authpf as well as
the proxy user. Make sure to run mergemaster -p in oder to complete make
installworld without errors.

This also provides the passive OS fingerprints from OpenBSD (pf.os) and an
example pf.conf.

For those who want to go without pf; it provides a NO_PF knob to make.conf.

__FreeBSD_version will be bumped soon to reflect this and to be able to
change ports accordingly.

Approved by:	bms(mentor)
2004-03-08 22:03:29 +00:00
pjd
798e9a1d99 Mark scripts as not usable inside a jail by adding keyword 'nojail'.
Some suggestions from:	rwatson, Ruben de Groot <mail25@bzerk.org>
2004-03-08 12:25:05 +00:00
pjd
6e71052f81 Fix skipping scripts with given keywords.
Proper syntax is '-s keyword1 -s keyword2', not '-s keyword1 keyword2'.
2004-03-08 12:02:07 +00:00
bde
54ba693212 Removed definition of NOPROG. It was just a style bug (a NetBSD macro
that became obsolete in NetBSD 22 months ago).

Submitted by:	ru
2004-03-05 16:13:22 +00:00
pjd
d17cebce57 One tab too much. 2004-03-05 09:18:40 +00:00
pjd
ef845cae5e Teach 'hostname' script how to act inside a jail.
No objections from:	mtm, arch@
2004-03-05 09:17:01 +00:00
rse
9229a66472 remove superfluous space before end of backtick expression 2004-03-05 08:49:59 +00:00
mtm
d667d273c2 When this script included NetBSD specific logic, the NetBSD branch
included a start_precmd check for gated. The precommand was not
executed in the FreeBSD branch. When I did a mass removal of
NetBSD specific logic a while back this file apparently got only
a partial treatement. This bug did not have any functional consequences,
however, since the precommand was not declared to the rc.subr routines.

Noticed by: pjd
2004-03-05 08:03:04 +00:00
mtm
81fd71f3d9 The syslogd script should require that /var is cleaned before it runs.
Otherwise it could be in the situation where its log socket is removed
after it has started.

Noticed by: jhay
2004-03-05 07:55:04 +00:00
mtm
88b3c4598b Remove scripts we don't use from requirement lines. These were
hold-overs from the initial NetBSD import.
2004-03-05 07:43:38 +00:00
bde
ea53bdf9aa Removed include of bsd.own.mk. It was just a style bug (half-baked
chumminess with the implementation).
2004-03-05 05:48:58 +00:00
bms
38f68ebbe4 Forgotten commit: Hook /etc/rc.d/ike up to the build. 2004-03-04 21:03:36 +00:00
mtm
8c9a5af5ab Some (most?) processes don't cleanup their pid files when
they exit. Sometimes they simply can't (core-dump, for example).
So, when searching for a running program send standard error
output from ps(1) to never-never land.

	# This should quite those
	# ps: kvm_getprocs: No such user
	# errors. Since ports use a duplicate rc.subr(8) you might
	# still see this error from ports startup scripts.
2004-03-03 15:28:44 +00:00
mtm
72747959d2 From the PR:
Certain MTA configurations mean that the notifications from
	virecover keep bouncing; so here's a patch to allow administrators
	to turn them off.

PR:		conf/54910
Submitted by:	bms (with a minor cleanup)
2004-03-03 15:21:01 +00:00
green
27a76d3a04 Further shuffle runcom ordering so that netif does not start before
ipfw, but ipfw and ipfilter do start before dhclient.
2004-02-29 01:42:48 +00:00
ache
3821a70e28 Don't remove empty dirs if their names are in $daily_clean_tmps_ignore 2004-02-28 04:58:40 +00:00
green
7eec1ea437 What depends on ipfilter should probably also start ipfw at the same time. 2004-02-27 22:08:19 +00:00
mtm
9c0d0ba7c8 o Add support for detecting a jailed environment. If a script
cannot or does not want to be executed in a jail the
  KEYWORDS line should contain the nojail keyword.
o Update Copyright

# I suggest people who use jails more extensively than I do
# make commits to the appropriate files.
2004-02-27 10:44:33 +00:00
mtm
dec03ccb5c NetBSD rev. 1.61
Implement ``one'' prefix to allow a "one shot" operation as if
  ${rcvar}=yes yet all the other prerequisite tests are still performed.
  The existing ``force'' prefix is a sledgehammer that ignores all the
  prerequisite checks and always returns a zero exit status; this is a
  more gentle approach to the problem of "manipulate this disabled
  service without editing rc.conf(5)".

Obtained From:	NetBSD

	# We have a work-around in our version of rc.subr that
	# makes force* return a non-zero exit status if the
	# command/service could not be acted upon. The work-around
	# is no longer necessary and should be removed.
2004-02-27 09:58:50 +00:00
mtm
6a77f4e518 o NetBSD rev. 1.60
Add "*,v" to the list of scratch files to skip.
  Suggested by Johnny Lam / Alistair Crooks

o Update NetBSD rcsid

Obtained From:	NetBSD
2004-02-26 12:43:43 +00:00
mtm
feba9882c4 NetBSD rev. 1.57
run_rc_command(): when checking if ${command} exists before executing it,
  be sure to check under ${name_chroot} (if set).
  Fix from Ed Ravin in [bin/18523]

Obtained From:	NetBSD
2004-02-26 12:35:58 +00:00
mtm
9ba5c8e1c5 NetBSD rev. 1.56
Use more concise shell syntax:
  1. for i in $* -> for i
  2. foo=$* -> foo="$@"

Obtained From:	NetBSD
2004-02-26 12:30:38 +00:00
mtm
c274def8fc NetBSD rev. 1.53, 1.54 and 1.55:
Change how internal boolean variables are used to:
	if ! ${_somevar:-false}; then
		_somevar=true
	fi
  (Consisent, slightly quicker, and slightly cleaner)

Obtained from:	NetBSD
2004-02-26 12:19:48 +00:00
ache
bd5bbb3ced Add "posix" subdir to "gnu" 2004-02-25 02:51:37 +00:00
brueffer
5b7005bbe9 Fix typo 2004-02-23 22:00:44 +00:00
des
4c4ff6d191 the default password policy for xdm should be pam_deny, since it is
incapable of holding a meaningful conversation.
2004-02-20 21:59:51 +00:00
mtm
9ad4279918 Don't forget to enable the ipv6 firewall once the rules are loaded.
PR:		misc/61501
Submitted by:	Roderick van Domburg <r.s.a.vandomburg@student.utwente.nl>
2004-02-19 06:53:24 +00:00
mtm
7ae22c7183 In-line documentation.
Prodded by: alfred
2004-02-19 05:49:06 +00:00
rwatson
59528aee48 Add com5-com8 (cuaa4-cuaa7) to /etc/remote so they are available to
tip by default.  On my systems, at least, pccard modems like to turn
up on higher addresses.
2004-02-17 05:10:12 +00:00
ache
699c9560d0 Add "gnu" to the list of subdirs 2004-02-16 22:23:34 +00:00
des
1859bb7c05 Run /etc/rc.d/routing at the appropriate time.
Spotted by:	mat
2004-02-10 19:10:34 +00:00
johan
0a1ce2dc98 Fix typo in comment, s/reebots/reboots/
PR:		62481
Submitted by:	Ulrich Spoerlein <q at uni.de>
2004-02-07 23:13:28 +00:00
imp
dd8f14df3f ttys is gone, kill it here too 2004-02-07 15:46:20 +00:00
mtm
f602b09c02 Now that devfs is mandatory, there is no need to muck around
with tty/pty permissions.

Noticed by:	brooks
OKed:		phk
2004-02-07 07:10:25 +00:00
des
0fa6f0d06c Require initrandom rather than random, since random requires
mountcritlocal, which requires disks, which gbde_swap provides.

Noticed by:	brooks
2004-02-05 21:40:37 +00:00
des
d0cea0329e We don't really need a lockfile, and most likely can't create one at
this point.
2004-02-04 15:53:49 +00:00
grehan
c78bcd05a8 PowerPC ttys file. 2004-02-04 01:44:34 +00:00
mtm
5be81e2dd9 o Unbreak the individual jail starting patch that I broke when
I committed it. Apologies to Juergen Unger <j.unger@addict.de>.
o When stopping jails output the hostname of the jails that
  were stopped.
o Refactor
o Remove extraneous empty line
o Correct spelling error
2004-02-03 12:59:30 +00:00
des
b48c644942 Add support for initializing swap devices with random one-shot keys. Note
that the keys are currently generated by computing the MD5 checksum of 512
bytes read from /dev/random, and are passed to gbde on the command line.

Sponsored by:	Teleplan AS
2004-02-03 11:26:08 +00:00
des
67b23eb794 Missed one in previous commit. 2004-02-03 10:22:55 +00:00
des
7e900b0c95 Style fixes. 2004-02-03 10:21:35 +00:00
mtm
104a1a8ee7 Configure a jail sysctl value only if it is different than
what the rc.conf(5) knob specifies. Also, correct a minor
capitalization error.
2004-02-03 07:15:32 +00:00
njl
8ec8ff7672 Notify the user (at kern.emerg) that the system will be shutting down if
it is still above the critical temperature on the next poll cycle.  This
is a 10 second advance notice by default.  Document the private
(non-standard) notify we will be using with devd(8).
2004-02-03 04:18:56 +00:00
pjd
b9b026e5be Teach /etc/rc.d/dumpon script how to stop.
Reviewed by:	gordon
Approved by:	gordon, scottl (mentor)
2004-02-02 19:05:06 +00:00
mtm
293120636b Ruleset numbers are not allowed in devfs_* knobs.
Noticed by someone on -current.
2004-02-02 13:27:41 +00:00
mtm
2d058bdea8 Support starting/stoping of jails individually.
This commit also removes the support for the sysutils/jailer port. This
is inline with the general policy to keep ports related knobs out
of the base system's configuration mechanism.

Submitted by: Juergen Unger <j.unger@addict.de>
2004-02-02 13:25:28 +00:00
dougb
7ad1c59903 Latest version of this file from InterNIC. This version updates the IP
address of b.root-servers.net, and various comments.
2004-01-29 16:24:30 +00:00
ache
30df04b3ec Add kk_KZ.PT154 2004-01-29 16:17:25 +00:00
njl
b0561e00e3 Remove only X[0-9]-lock. 2004-01-27 18:19:32 +00:00
ambrisko
fe992d62db - Existing code would ignore pccard_ether_delay when more then 9 seconds
- If there was an exiting dhclient running on the same interface as the
  new iface that left and returned then dhclient would be told to use the
  same interface twice.  Dhclient would fail and exit after getting
  confused.  Use "sort -u" on them to ensure no duplicates.
  This is a mostly a race condition on suspend and resume and how things
  happen to occur.
- Check for netmask being set on an interface rather then up.  An interface
  can be up but not configured.

Reviewed by:	mbr
2004-01-25 19:52:16 +00:00
mux
8df3ed961b Move the test used to determine whether IPFilter is loaded or not
into its own function to avoid a small duplication of code.
2004-01-24 20:40:11 +00:00
cperciva
53515fc189 If we're going to "add path 'fd/*' unhide", it only makes
sense to "add path fd unhide" first.

Requested by: mtm
Approved by: rwatson (mentor)
2004-01-22 20:53:15 +00:00
ru
d3f727a898 Catch up with etc/Makefile,v 1.324 -- split "install" and "distribution"
targets, have "distribution" always install original (as from the release
media) files, whether SENDMAIL_MC is set or not.  Do error handling the
make(1) way.

Reviewed by:	gshapiro
Approved by:	gshapiro
2004-01-22 17:51:02 +00:00
mtm
05d90511cf Since id(1) is in /usr, it may not be available until after filesystem
mounting.

Reminded by: bde
2004-01-22 08:46:03 +00:00
ru
69fd34608d - Run makewhatis(1) in etc/Makefile at the end of "install".
- Removed redundant and undocumented NO_MAKEDB_RUN knob.
2004-01-22 08:18:37 +00:00
cperciva
4f19a2bf30 After setting a ruleset on a new devfs mount, apply it.
Approved by: phk, rwatson (mentor)
PR: bin/61047
2004-01-21 16:36:17 +00:00
ru
1a98c079f6 Create section 4 and 8 man subdirectories for all Tier 1 architectures. 2004-01-21 13:15:19 +00:00
ru
191360285e Removed unused {man,cat}9/i386. 2004-01-21 13:09:16 +00:00
njl
cbf67a66c5 Make sure pid file creation doesn't complain if it can't create the file.
This removes a warning message when suspending is called by a non-root
user.
2004-01-21 03:03:40 +00:00
eivind
f6f5d6c39d Add /var/db/ports/ (support directory necessary for
ports that use the new OPTIONS infrastructure)
2004-01-20 13:51:23 +00:00
ru
3f8ee0c687 Use the standard <bsd.files.mk> API to install files. 2004-01-19 13:40:51 +00:00
mtm
fe4e7eb67e Remove an extraneous semicolon (;;). 2004-01-17 11:52:37 +00:00
mtm
98608e6447 Use the checkyesno routine instead of a case statement to
check an rc.conf(5) variable. This is in line with rc.d style.
2004-01-17 11:31:15 +00:00
mtm
ba6c003798 Remove checks for the FreeBSD OS. 2004-01-17 11:25:16 +00:00
mtm
bfdb074293 Make conform to general rc.d style. 2004-01-17 11:19:01 +00:00
mtm
485c95b430 o Rename the start command to conform to rc.d style.
o Move the additional commands list to the end of the
  variable initialization to conform to rc.d style
2004-01-17 11:15:04 +00:00
mtm
9fe4ef1274 Simplify setting of securelevel. 2004-01-17 11:11:18 +00:00
mtm
8943c2aa71 Remove variables whose sole purpose was to make easier to
work with the NetBSD specific stuff.
2004-01-17 11:06:41 +00:00
mtm
5da6236d01 Luke Mewburn has indicated that they (NetBSD) are not interested
in keeping the scripts under rc.d in sync with us. So, remove
NetBSD specific stuff (which made our scripts more complicated
than necessary).

The NetBSD ident string will be left intact, both for history and
also incase we wish to pull in future versions.
2004-01-17 10:59:43 +00:00
mtm
904beb9e16 Luke Mewburn has indicated that they (NetBSD) are not interested
in keeping the scripts under rc.d in sync with us. So, remove
NetBSD specific stuff (which made our scripts more complicated
than necessary).

The NetBSD ident string will be left intact, both for history and
also incase we wish to pull in future versions.
2004-01-17 10:40:45 +00:00
mtm
0bdb9e0220 Luke Mewburn has indicated that they (NetBSD) are not interested
in keeping the scripts under rc.d in sync with us. So, begin removal
of NetBSD specific stuff (which made our scripts more complicated
than necessary), starting with the NetBSD KEYWORD.
2004-01-17 10:16:38 +00:00
des
20bc942046 Get moduli from the OpenSSH sources instead of keeping a local copy. 2004-01-07 11:55:44 +00:00
brooks
37195ec3f8 Don't run newaliases if sendmail_enable=NONE.
Submitted by:	Matt Peterson <matt at peterson dot org>
Approved by:	silence on freebsd-rc
2004-01-05 19:14:47 +00:00
gshapiro
88f59471ab Use hoststat/purgestat instead of sendmail -bh/-bH so the calls can
be properly mailwrapper'ed.

PR:		conf/60676
Submitted by:	Colin Percival <cperciva@daemonology.net>, maxim
MFC after:	4 days
2004-01-02 18:50:22 +00:00
njl
5b48e77525 Use separate events for resume from standby and suspend in the apm(4)
case so that if devices need different initialization, we can key off
this in the rc scripts (currently unused).  Also update the man page
which is a 100% duplicate of the rc scripts.
2003-12-30 17:40:28 +00:00
njl
00a572d32f Fix a usage message. 2003-12-30 17:30:39 +00:00
njl
dc92f60c73 Add support for /etc/rc.suspend and /etc/rc.resume for ACPI. They are
called directly from acpiconf(8).  Change both scripts to take a
subsystem (apm|acpi) and sleep level (suspend,standby|1-5) argument.
2003-12-30 17:28:06 +00:00
babkin
e07ed5e22e Added support for intelligent handling of DST transitions in cron.
reviewed by: imp
2003-12-25 23:29:19 +00:00
gshapiro
207029e7f4 Enable IPv6 by default but make it optional so it doesn't affect
sites without IPv6.

Submitted by:	ume
Obtained from:	NetBSD
MFC after:	1 week
2003-12-24 21:15:09 +00:00