| Commit message (Collapse) | Author | Age | Files | Lines |
|
|
|
|
|
|
|
| |
again. This user/group is not required for install* targets, hence do not
add them to CHECK_UIDS/CHECK_GIDS in Makefile.inc1 (no need to annoy
people).
Discussed-on: -current
|
|
|
|
|
| |
Noticed by: dwhite
Approved by: bms(mentor)
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
This adds the former ports registered groups: proxy and authpf as well as
the proxy user. Make sure to run mergemaster -p in oder to complete make
installworld without errors.
This also provides the passive OS fingerprints from OpenBSD (pf.os) and an
example pf.conf.
For those who want to go without pf; it provides a NO_PF knob to make.conf.
__FreeBSD_version will be bumped soon to reflect this and to be able to
change ports accordingly.
Approved by: bms(mentor)
|
|
|
|
| |
Approved by: re@ (scottl)
|
|
|
|
| |
Spotted by: jhb
|
|
|
|
|
|
|
|
|
|
|
| |
configuration. Root privileges override DAC on local file systems and
therefore root does not generally need to be a member of a group to
access files owned by that group. In the NFS case, require explicit
authorization for root to have these privileges.
Leave root in operator for dump/restore broadcast reasons; leave root
in wheel until discrepencies in the "no users in wheel means any user
can su" policy are resolved (possibly indefinitely).
|
|
|
|
|
| |
xten users in their groups explicitly--we pick that up from the gid
field in master.passwd.
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
smmsp - sendmail 8.12 operates as a set-group-ID binary (instead of
set-user-ID). This new user/group will be used for command line
submissions. UID/GID 25 is suggested in the sendmail documentation and has
been adopted by other operating systems such as OpenBSD and Solaris 9.
mailnull - The default value for DefaultUser is now set to the uid and gid
of the first existing user mailnull, sendmail, or daemon that has a
non-zero uid. If none of these exist, sendmail reverts back to the old
behavior of using uid 1 and gid 1. Currently FreeBSD uses daemon for
DefaultUser but I would prefer not to use an account used by other
programs, hence the addition of mailnull. UID/GID 26 has been chosen for
this user.
This was discussed on -arch on October 18-19, 2001.
MFC after: 1 week
|
|
|
|
|
|
|
|
| |
If anybody wants to remove them for some reason, please consider "pop"
removing first.
Approved by: arch discussion from Oct 20
MFC after: 3 days
|
|
|
|
| |
motivated. Currently, it is under dispute.
|
| |
|
| |
|
|
|
|
|
|
|
|
|
|
| |
adjustd inetd.conf to run comsat and ntalk from tty sandbox, and
the (commented out) ident from the kmem sandbox.
Note that it is necessary to give each group access it's own uid to
prevent programs running under a single uid from being able to gdb
or otherwise mess with other programs (with different group perms) running
under the same uid.
|
| |
|
|
|
|
| |
As discussed on cvs-committers
|
| |
|
| |
|
| |
|
|
|
|
| |
This is less likely to collide with site policies.
|
| |
|
| |
|
|
|
|
|
| |
change nobody group entry to 65534
Suggested-by: pst
|
|
|
|
| |
Submitted by: Gene Stark <gene@starkhome.cs.sunysb.edu>
|
| |
|
| |
|
|
|
|
|
| |
pick the uid for the `man' user, since he staked a claim on that, but he'd
better not forget or the make install will break badly! :)
|
| |
|
|
|
|
|
|
|
| |
Subject: failure in /usr/src/etc/group
The /usr/src/etc/group file is missing a colon in the line
"dialer:*:117" at the end.
|
|
|
|
|
| |
0.1 distribution, as they had accounts in the password file with out passwords,
and were in group wheel!
|
|
|