Commit Graph

77 Commits

Author SHA1 Message Date
Matthew Dillon
5bbcf5a4e0 Remove sysctl's from rc.conf, there seems to be a concensus that
rc.conf should only contain simple ops.  We still keep the conf_dir
    override, however, and this will be used when rc.conf is run from
    /etc/rc in a diskless configuration.
1999-01-26 07:32:59 +00:00
Matthew Dillon
5ab0c62f95 Commit first rc.diskless startup plus modifications to rc.conf and Makefile
to make it work.  NOTE!  Uses new kern.conf_dir sysctl.
1999-01-25 18:24:46 +00:00
Greg Lehey
f10d3a9382 Add hooks for starting vinum at boot time. Set the variable
vinum_slices to the names of all slices (block device) which are under
the control of vinum.  The configuration will be read in from each in
turn, starting with the most recently updated.

Reviewed-by:   jkh
1999-01-17 03:32:07 +00:00
Joerg Wunsch
8a173970c1 Add some special hooks for sppp(4) interfaces. In addition to the
normal ifconfig stuff, one might need to pass down authentication
parameters for them.

This is closely tied to Hellmuth's impending rc patches for ISDN, but
sppp can also be used separately (thus it doesn't go directly into the
planned ISDN section of rc.conf).

Reviewed by:	hm
1999-01-13 17:32:37 +00:00
Hellmuth Michaelis
49c3b47aae Integrate the ISDN subsystem into the /etc/rc framework
Reviewed by: Joerg Wunsch
1999-01-13 08:20:55 +00:00
Nick Hibma
69a90ca3df Added starting of usbd 1999-01-10 22:06:22 +00:00
Jordan K. Hubbard
a306e6b50e back out previous commit - it's only part of the required process so
we might as well automate both steps at once and just leave this off
by default.

Pointed out by:		Steve Kargl <sgk@troutmask.apl.washington.edu>
1999-01-09 01:17:41 +00:00
Jordan K. Hubbard
4c581c3b33 Sneakily make linux=YES by default and hope that nobody notices. 1999-01-08 23:47:28 +00:00
Jordan K. Hubbard
539fb1799a Allow rwhod to take flags.
PR:		7705
Submitted by:	Johan Karlsson <k@numeri.campus.luth.se>
1999-01-03 22:19:23 +00:00
Jordan K. Hubbard
96d5e20872 Update comment for saver variable now that its changed its function
(and list of available values) somewhat.
1998-12-27 23:00:18 +00:00
Dag-Erling Smørgrav
64bec931fc List the warp screensaver along with the others. 1998-12-27 22:04:12 +00:00
Matthew Dillon
eb127873d5 Take bind out of sandbox and run it as root again, but leave support
mechanisms ('bind' user and group) in place so the feature can be easily
    turned on.  There were too many complaints.  The security(1) man
    page will be created/updated to include the appropriate info.
1998-12-19 07:25:56 +00:00
Guy Helmer
dc1ab7da41 Document securelevel 3.
PR:		docs/8674
1998-12-16 17:14:16 +00:00
Matthew Dillon
d27356d803 Reviewed by: cvs-current
Commit changes to rc and rc.local, removing the remaining minimal
    functionality of rc.local into rc and commenting it out of rc.local
    prior to the deletion of rc.local from the CVS tree.
1998-12-12 23:04:21 +00:00
Matthew Dillon
128272b8c5 Reviewed by: freebsd-current, freebsd-security
Adjust rc.conf to run named in sandbox, adjust mtree to add /etc/namedb/s
    subdirectory (user bind, group bind) to hold secondaries, adjust
    comments in named.conf to reflect new secondary scheme.  (Note that
    core read-only zone files are left owned by root, increasing security even
    more).
1998-12-01 21:36:33 +00:00
Mike Smith
22d30a8a1b Don't suggest that NO is allowed here; you use "0" or "" to turn the cache
off.
Submitted by:	jdp
1998-11-25 21:16:43 +00:00
Mike Smith
cda43ef612 Implement the nfs_access_cache variable, allowing us to set the timeout for
the NFS client's ACCESS cache.
1998-11-15 20:30:04 +00:00
Dag-Erling Smørgrav
b354705227 Remove all references to tickadj(8) from rc, rc.conf and rc.conf.5.
Disable building tickadj(8) by removing util from SUBDIR in the xntpd
Makefile. Note that the sources are still there and tickadj can still
be built and installed by doing:

# cd /usr/src/usr.sbin/xntpd/util
# make all install

There are enough references to tickadj in e.g. the xntpd documentation
(not to mention the sysctl variables it uses etc.) that I don't feel
up to implementing the final solution right now.

Kinda-approved-by:	phk
1998-10-08 18:47:30 +00:00
Poul-Henning Kamp
7d5c779c86 Here are some scripts and man pages for configuring HARP ATM
interfaces.

Reviewed by:	phk
Submitted by:	Mike Spengler <mks@networkcs.com>
1998-10-06 19:24:31 +00:00
Jordan K. Hubbard
2a31c441b4 I'm not sure how/when router_enable got set to YES, but it doesn't
seem right to me.
Noticed by:	jkb
1998-09-23 04:42:02 +00:00
John Polstra
34908526f4 Fix up the boot-time ldconfig handling to deal with dual object
file formats.  I have added a new rc.conf variable ${ldconfig_paths_aout}
which is like ${ldconfig_paths}, but only for a.out shared libraries.

On a "standard" ELF system, the ELF ldconfig path is taken from
${ldconfig_paths}, while the a.out ldconfig path is taken from
${ldconfig_paths_aout}.

On a not-yet-converted a.out system, only the a.out ldconfig path
is set, and it is taken from ${ldconfig_paths_aout}.  If that
variable is unset, /etc/rc defaults it to the value of ${ldconfig_paths},
on the assumption that the system's "/etc/rc.conf" file hasn't been
updated.
1998-09-16 05:42:38 +00:00
Joseph Koshy
61a4defd54 Turn off replies to ICMP echo requests for broadcast and multicast
addresses by default.

Add a knob "icmp_bmcastecho" to "rc.network" to allow this
behaviour to be controlled from "rc.conf".

Document the controlling sysctl variable "net.inet.icmp.bmcastecho"
in sysctl(3).

Reviewed by: dg, jkh
Reminded on -hackers by: Steinar Haug <sthaug@nethelp.no>
1998-09-15 10:49:03 +00:00
Poul-Henning Kamp
e5d237d4b9 tcp_extensions now only applies to RFC1323 1998-09-06 08:20:11 +00:00
Jordan K. Hubbard
c60f090882 Turn tcp_extentions off by default. They sometimes cause pain. 1998-09-04 23:37:24 +00:00
Brian Somers
de2d57a4b1 Cosmetic MF2.2: Add a missing (commented) parenthesis. 1998-08-10 19:53:22 +00:00
Jordan K. Hubbard
a022a6fe56 Use a default blanktime (otherwise it shows up as "NO" in sysinstall's menus). 1998-06-23 03:09:26 +00:00
Joseph Koshy
f3df0653bf Add rc.conf option to set kernel security level and modify "/etc/rc" to
use this.

Requested by: max, andreas

Note: This change just provides a convenient way to exercise existing
functionality.  Whether `kern.securelevel' is effective in increasing
system security is another issue, and one that has been well thrashed
out in the lists.
1998-06-22 06:34:12 +00:00
Masafumi Max NAKANE
b5d6d28e62 Give a reasonable default value (-p /var/run/xntpd.pid) to xntpd_flags. 1998-05-12 10:50:46 +00:00
Andreas Klemm
90f94d55c1 Overlooked, that newer naming convention is xxx_program instead of xxx_prog.
So changed it to ntpdate_program and xntpd_program.
Backout last change, now we have again named_program, sorry.
1998-05-06 17:36:16 +00:00
Andreas Klemm
a8f00855a1 Add variables for the ntpdate and xntpd program, you might want
to run the binaries from the new ntp v4 port.
1998-05-05 21:14:27 +00:00
Peter Wemm
e48cb40581 Update the named hooks. 1998-05-04 05:26:46 +00:00
Peter Wemm
732aba2af7 Don't give examples or use the depreciated usage to nfsd
PR: 5635
1998-05-01 13:45:04 +00:00
Poul-Henning Kamp
4cb3dec38f Jean-Simon Pendry's paper on amd refers to the use of "ypcat -k"
against the "master map" to get the list of mount point/amd map
correspondences, and using that list as command-line arguments to start
amd.

When I tried to do this with the existing /etc/rc* scripts, I found that
I couldn't do this by modifying only /etc/rc.conf:  that file gets
sourced very early by /etc/rc, well before any networking functionality
is present, let alone NIS.  Further, I wasn't able to figure out a way
to use various levels & types of quoting to defer evaluation of the
string to a point subsequent to NIS initialization.

As a result, I resorted to hacking /etc/rc.network -- but I did it in a
way that ought to be reasonably general, and avoid breakage for anyone
else.

PR:		6387
Reviewed by:	phk
Submitted by:	David Wolfskill <dhw@whistle.com>
1998-04-26 06:32:13 +00:00
Brian Somers
252ba33d3c Add natd support.
PR:		6339
Submitted by:	cdillon@wolves.k12.mo.us
1998-04-18 10:27:19 +00:00
Mark Murray
c1d639d22f Enable the SecureRPC bits in rc.conf, if the Administrator wants them. 1998-04-12 09:47:43 +00:00
Andrey A. Chernov
0c168a81b5 Cosmetique changes in vidcontrol all screens knob 1998-04-02 15:33:49 +00:00
Andrey A. Chernov
1d060622ba Implement vidcontrol knob which allows to set passed flags/modes
for all virtual screens (via for loop)
1998-04-02 15:17:52 +00:00
Jordan K. Hubbard
115748d91d Allow rarpd to be started from rc.conf
PR:		5457
Submitted by:	Andre Albsmeier <andre.albsmeier@mchp.siemens.de>
1998-03-09 08:50:30 +00:00
Jordan K. Hubbard
bb6531b760 New moused flag.
Submitted by:	Kazutaka YOKOTA <yokota@zodiac.mech.utsunomiya-u.ac.jp>
1998-03-07 09:02:08 +00:00
Justin M. Seger
e5dc597fd2 Use tabs instead of spaces in saver line. 1998-02-17 03:05:32 +00:00
Guido van Rooij
75e7ccb83d Add 2 new rc.conf variables:
forward_sourceroute : controls setting of existing net.inet.ip.sourceroute
accept_sourceroute : control setting of new net.inet.ip.accept_sourceroute
1998-02-16 19:21:32 +00:00
Garrett Wollman
0da25c39b2 Add an additional `named_program' variable so that we can easily choose
between 4.9.6 and the port of 8.x.
1998-02-01 00:20:56 +00:00
Steve Price
e8f5e3e6b2 Add a ldconfig_paths variable that specifies the shared library paths
to be given to ldconfig(8).

PR:		5178
Submitted by:	Evan Champion <evanc@synapse.net>
1997-12-27 19:46:54 +00:00
Jordan K. Hubbard
e9c1434e68 typo fix.
PR:		5289
Submitted by:	Studded@dal.net
1997-12-14 12:30:59 +00:00
Steve Price
390200d554 Resurrect a modified version of the /tmp clearing code from rev 1.119.
Enable this by setting clear_tmp_enable in rc.conf to YES.  Beware
there can be serious side-effects of enabling this, so use at you own
risk.

PR:		misc/4982, misc/5054
1997-11-16 12:52:17 +00:00
Sean Eric Fagan
5a583f9c34 Allow the system to be configured to pass "-n" to kerberos and
kadmind or not; also, only run kadmind on a non-slave server.  Man
page for rc.conf is also updated.

Reviewed by:	Mark Murray
1997-11-07 20:45:48 +00:00
John Polstra
fd04609162 Add "mrouted_flags". It has been referenced by rc.network for a
long time.
1997-10-31 01:58:53 +00:00
Jordan K. Hubbard
68e65026ff MF22: Minor cosmetic tweak. 1997-10-18 10:11:04 +00:00
Warner Losh
e70858e0c4 Make mountd use -r by default. Hopefully this will cut down the number
of complaints that FreeBSD's mountd doesn't allow mounting of swap files
for OSes like SunOS, NetBSD and OpenBSD.
Submitted by:   Joerg Wunsch
1997-10-12 20:37:20 +00:00
Jordan K. Hubbard
fd11beef2e reference rc.conf(5) instead of a bogus rc.conf(8)
Submitted by:	"Vanill I. Shu" <vanilla@MinJe.com.TW>
1997-10-12 01:00:19 +00:00