diff options
| author | asomers <asomers@FreeBSD.org> | 2016-07-11 23:15:54 +0000 |
|---|---|---|
| committer | asomers <asomers@FreeBSD.org> | 2016-07-11 23:15:54 +0000 |
| commit | a7b76a49acd928cba2803900befb7ce8fbb46183 (patch) | |
| tree | 7a32ee04cc3b3923a5bc3b944953cfebd456f0ea /etc | |
| parent | 65e2b038d7f481c2a49d1dac4b06c0f2e803f34f (diff) | |
| download | FreeBSD-src-a7b76a49acd928cba2803900befb7ce8fbb46183.zip FreeBSD-src-a7b76a49acd928cba2803900befb7ce8fbb46183.tar.gz | |
MFC r300356
Better document security_show_{success,info,badconfig} in /etc/periodic.conf
periodic(8) already handles the security_show_{success,info,badconfig}
variables correctly. However, those variables aren't explicitly set in
/etc/defaults/periodic.conf or anywhere else, which suggests to the user
that they shouldn't be used.
etc/defaults/periodic.conf
Explicitly set defaults for security_show_{success,info,badconfig}
usr.sbin/periodic/periodic.sh
Update usage string
usr.sbin/periodic/periodic.8
Minor man page updates
One thing I'm _not_ doing is recommending setting security_output to
/var/log/security.log or adding that file to /etc/newsyslog.conf, because
periodic(8) would create it with default permissions, usually 644, and
that's probably a bad idea.
Diffstat (limited to 'etc')
| -rw-r--r-- | etc/defaults/periodic.conf | 4 |
1 files changed, 4 insertions, 0 deletions
diff --git a/etc/defaults/periodic.conf b/etc/defaults/periodic.conf index e21e241..db62520 100644 --- a/etc/defaults/periodic.conf +++ b/etc/defaults/periodic.conf @@ -225,6 +225,10 @@ monthly_local="/etc/monthly.local" # Local scripts # Security options +security_show_success="YES" # scripts returning 0 +security_show_info="YES" # scripts returning 1 +security_show_badconfig="NO" # scripts returning 2 + # These options are used by the security periodic(8) scripts spawned in # daily and weekly 450.status-security. security_status_logdir="/var/log" # Directory for logs |
