Commit Graph

146 Commits

Author SHA1 Message Date
Joseph Koshy
f3df0653bf Add rc.conf option to set kernel security level and modify "/etc/rc" to
use this.

Requested by: max, andreas

Note: This change just provides a convenient way to exercise existing
functionality.  Whether `kern.securelevel' is effective in increasing
system security is another issue, and one that has been well thrashed
out in the lists.
1998-06-22 06:34:12 +00:00
Poul-Henning Kamp
3a9b4259f4 Cut through the discussions and settle the issue: Everything in /var/run
is blown away at boot.  If sudo or other programs needs directories, they
had better make them in /usr/local/etc/rc.d/mumble.sh

PR:		4138 5619 6793
1998-06-02 11:02:16 +00:00
Søren Schmidt
cabb97dcbf ELF preparation step 2:
Move a.out libraries to /usr/lib/aout to make space for ELF libs.
Make rtld usr /usr/lib/aout as default library path.
Make ldconfig reject /usr/lib as an a.out library path.
Fix various Makefiles for LIBDIR!=/usr/lib breakage.

This will after a make world & reboot give a system that no
longer uses /usr/lib/*, infact one could remove all the old
libraries there, they are not used anymore.

We are getting close to an ELF make world, but I'll let this
all settle for a week or two...
1998-05-26 20:12:56 +00:00
Joerg Wunsch
f9a1322a23 Start syslogd before savecore, so savecore's messages will be logged
properly.  Only users of 4 MB machines might not want it this way (to
prevent accidentally clobbering the coredump), but they are somewhat
in the minority these days.
1998-01-08 17:08:22 +00:00
Steve Price
e8f5e3e6b2 Add a ldconfig_paths variable that specifies the shared library paths
to be given to ldconfig(8).

PR:		5178
Submitted by:	Evan Champion <evanc@synapse.net>
1997-12-27 19:46:54 +00:00
Daniel O'Callaghan
f81b400db5 Back out last commit re dmesg.boot 1997-12-09 10:06:49 +00:00
Daniel O'Callaghan
222d148ced Make rc record boottime dmesg to /var/log/dmesg.boot, so the data
is preserved after it scrolls out of the dmesg buffer.
1997-12-09 07:22:04 +00:00
Steve Price
390200d554 Resurrect a modified version of the /tmp clearing code from rev 1.119.
Enable this by setting clear_tmp_enable in rc.conf to YES.  Beware
there can be serious side-effects of enabling this, so use at you own
risk.

PR:		misc/4982, misc/5054
1997-11-16 12:52:17 +00:00
Joerg Wunsch
7435b8f163 Unspam rev 1.114 that got spammed when someone commited the rc.conf
changes: drop `savecore_enable' now that our savecore obeyes the
minfree file.
1997-09-21 16:09:48 +00:00
Brian Somers
343c2ee05e Change the not-specified-default for inetd & cron
to "enabled".  This will avoid breaking things for
idiots like me who update /etc/rc without paying
attention and updating rc.conf too.
1997-09-13 21:07:12 +00:00
Brian Somers
edb0d8e9fc Don't redirect "mount -t -o nfs" to null 1997-09-13 09:29:21 +00:00
Joerg Wunsch
8496607b39 Ooops. Wrong branch, back out previous commit. 1997-08-17 15:02:34 +00:00
Joerg Wunsch
8c7ef4f630 MFC: rev 1.125, remove old PID files at startup 1997-08-17 14:58:57 +00:00
Jordan K. Hubbard
082a48e720 Back out ld.so.conf change until the question is resolved. 1997-07-13 13:22:15 +00:00
Jordan K. Hubbard
c0554ac091 Use /etc/ld.so.conf as a library path override, if it exists.
Submitted by:	Hans Zuidam <hans@brandinnovators.com>
1997-07-11 14:52:52 +00:00
Paul Traina
edbecb639b Execute rc.local in a subshell instead of sourcing it.
Requested by:	dima
1997-06-25 11:48:47 +00:00
Dima Ruban
74a12021c0 sh /etc/rc.local -> . /etc/rc.local 1997-06-25 03:12:12 +00:00
Paul Traina
00f2dc9363 Add cron_enable and inetd_enable flags to rc.conf.
WARNING: don't update rc and forget to update rc.conf, or you won't be
able to telnet back into your box after a reboot.
1997-06-18 16:01:19 +00:00
Andrey A. Chernov
0c6294e7a3 Remove /var/run/* now instead of *.pid 1997-06-04 20:02:57 +00:00
Andrey A. Chernov
d17b6a6afa Restore /var/run/*.pid cleaning, gated already moved off the way
and innd store its .pid inside its own directories
1997-06-04 19:20:04 +00:00
Andrey A. Chernov
798e70e0cb Back out /var/run/*.pid cleaning since some programms (like innd)
use .pid to detect crash
1997-06-02 10:21:12 +00:00
Andrey A. Chernov
0d1eba9382 Add rm -f /var/run/*.pid to prevent random process killing due to
picking old .pid file
1997-06-01 23:33:00 +00:00
Jordan K. Hubbard
919d435ace Neaten up some things which were inconsistent, add a few more flags
to things which need them, general cleanup.
Submitted by:	Brian Somers <brian@awfulhak.org>
1997-05-19 07:46:51 +00:00
Jordan K. Hubbard
2e9cf7f041 Use full path to sendmail for security reasons.
Submitted by:	Ollivier Robert <roberto@keltia.freenix.fr>
1997-05-07 12:35:03 +00:00
Jordan K. Hubbard
1218780bd1 Add inetd_flags and way of passing ipfw a configuration file
(if firewall = "somefilename").

Fix typo fixes and URLs which were accidently nuked out of this
file (submitted by: soil@quick.net via PR#3501).

Submitted by:	"Danny J. Zerkel" <dzerkel@phofarm.com>
1997-05-05 07:08:31 +00:00
Andreas Klemm
542bfc7624 re-enabled: . /etc/rc.${arch}
PR:
Reviewed by:	bruce
Submitted by:
Obtained from:
1997-05-04 22:33:17 +00:00
Andreas Klemm
506935935c Fixed sourcing of /etc/etc.${arch}/rc.${arch} on startup.
PR:
Reviewed by:
Submitted by:
Obtained from:
1997-05-04 12:50:33 +00:00
Jordan K. Hubbard
0862a4aff9 Update the etc world from RELENG_2_2 which is now more up-to-date
(gotta get myself -current again, this is a drag).

Also-fixes-problems-noted-by: Wolfgang Helbig & Joerg Wunsch
1997-05-03 11:22:17 +00:00
Jordan K. Hubbard
5dc375bedd Clean up the output a bit. 1997-05-01 05:57:29 +00:00
Jordan K. Hubbard
524a1478c8 Bring in rc file changes from -current. 1997-04-27 03:59:19 +00:00
Guido van Rooij
c6e5e15858 Make a sysconfig variable controlling if teh kernel should accept
nfs requests from non-privileged ports.

Change mountd such that it does never set this variable, but only clears
it when run with -n. Also document this in the man page.
1997-04-09 20:17:15 +00:00
Paul Traina
406fab58af Add portmapflags and syslogd flags.
Reviewed by:	jkh
1997-04-01 01:00:35 +00:00
Joerg Wunsch
48811ae778 Having two knobs until you get a kernel core dump saved is silly.
Leave dumpdev, but kill the savecore variable.  Thus, it's still off
by default, but all you need is enabling dumpdev now.

phk's old argument that savecore might inadvertendly fill up the disk
no longer counts, savecore now correctly obeyes a `minfree' file, and
we ship our systems with such a file that even has a reasonable
default.
1997-03-16 15:26:34 +00:00
Peter Wemm
79403fe300 Revert $FreeBSD$ to $Id$ 1997-02-23 09:21:14 +00:00
Jordan K. Hubbard
525014855b Make sure newly created /var/account/acct file is 0600 mode. 1997-01-16 02:18:37 +00:00
Jordan K. Hubbard
1130b656e5 Make the long-awaited change from $Id$ to $FreeBSD$
This will make a number of things easier in the future, as well as (finally!)
avoiding the Id-smashing problem which has plagued developers for so long.

Boy, I'm glad we're not using sup anymore.  This update would have been
insane otherwise.
1997-01-14 07:20:47 +00:00
Poul-Henning Kamp
6714d73596 Put dmesg.boot in /var/run instead of /var/tmp
Suggested by: joerg & peter
1997-01-02 18:55:26 +00:00
Poul-Henning Kamp
7a0a3ad314 Now that uptimes run into months on a regular basis, I often find myself
wondering what the hw-config of a machine is, and the logs have been
rotated many times since reboot already.

Added:
	/sbin/dmesg > /var/tmp/dmesg.boot
to /etc/rc

2.2 candidate
1997-01-02 16:28:33 +00:00
Joerg Wunsch
ee4466ac87 Extend the set of ptys to chmod at boot time.
Closes PR # conf/1957: not all perms of ptys...

Submitted by:	gurney_j@efn.org (John-Mark Gurney)
1996-12-23 00:32:15 +00:00
Joerg Wunsch
901d09409f Add /usr/local/sbin to the rc $PATH. Things like GateD are located there. 1996-12-19 18:06:35 +00:00
Adam David
ac55eca46c start rpc.statd for nfs_server case.
add warning and commented out line for rpc.lockd
1996-11-13 19:04:31 +00:00
Joerg Wunsch
e58aa098b4 /dev/vn0b is supposed to be a block device, so don't test(1) whether
it's a plain file.

Submitted by:	brian@awfulhak.demon.co.uk (Brian Somers)
1996-11-03 14:41:58 +00:00
Peter Wemm
4579c4e0d4 Update to use the recommended recovery procedure from nvi-1.76.
This is a lot more robust and handles errors a lot better.  It also cleans
up stray, hopeless, or unmodified files rather than leaving them there
forever.
1996-11-01 09:45:51 +00:00
Joerg Wunsch
a07ca43c89 Correct the startup sequence for syslogd:
. crate the symlink for /dev/log if required, then
. remove the old socket (savecore might have already created it
  accidentally), then
. start syslogd.

(Btw., our test(1) misses an option to test for a socket.)
1996-10-28 08:28:02 +00:00
Bill Paul
8d236c1206 Add hooks for rpc.ypxfrd in /etc/sysconfig and /etc/rc. Also change
a couple of benign cases of 'yppasswdd' to 'rpc.yppasswdd.' (Like
rpc.yppasswdd, rpc.ypxfrd should only be run on NIS master servers.)
1996-10-21 20:09:30 +00:00
Peter Wemm
c99f65b4cc Add a -p to the amd invocation, it's not optional since we are expecting
the pid on stdout for /var/run/amd.pid.  The example in sysconfig had
forgotten -p anyway...
1996-10-08 20:02:57 +00:00
Peter Wemm
c42c124eb7 Some tweaks after having run a YP-only system with quotas:
- split the "starting network daemons" in half.
 - The first half starts things necessary to get full name service up.
 - The quota check etc moved from "before network" to after the name
   services are running.  quotacheck does a while(p=getpwent()) which
   isn't real good without YP running...
 - moved rwhod a little later to put it with the other network stuff.
 - deferred inetd a tad so that it's after ldconfig and dev_mkdb,
   otherwise you get logins before you're ready.

Unresolved: named is started before ypserv/ypbind still, but named does
a while(s = getservent()) and while (p=getprotoent()) to suck in the
entire database into memory.  This means you cannot have a "+" in the
/etc/services or /etc/protocols files or you get a long hang at boot.
1996-10-08 20:00:44 +00:00
Warner Losh
b604753497 Fix a possible syntax error in rc when swapfile isn't defined at all.
This can happen when the user is upgrading from an older version and
his/her sysconfig file doesn't have swapfile defined to be NO in it.
1996-09-22 06:36:49 +00:00
Poul-Henning Kamp
0c4c6c1235 Add support for shlibs in /usr/lib/compat that the linker will not find
at compile time, but ldd will at runtime.
1996-09-02 13:10:02 +00:00
Jordan K. Hubbard
d37f8acb71 Add a new "swapfile" variable so that you can add a file as a additional
swap as the system is coming up.
1996-08-21 23:15:37 +00:00