| Commit message (Collapse) | Author | Age | Files | Lines |
| |
|
|
|
|
|
|
|
|
|
|
|
|
| |
I noticed on a system at home that restarting named(8) causes the
/var/named/dev mount to be moved to the bottom of the mount list,
because it gets remounted. When I received the daily security email this
morning, I was quite amazed to see that the security report listed the
differences, while it was nothing out of the ordinary.
If we just throw the `mount -p' output through sort(1), we'll only
receive notifications about changes to mounts if something has really
changed.
|
|
|
|
|
|
|
|
| |
control over the result of buildworld and installworld; this especially
helps packaging systems such as nanobsd
Reviewed by: various (posted to arch)
MFC after: 1 month
|
|
|
|
|
|
|
|
|
| |
- don't run it if net.inet.ip.fw.verbose = 0 as it is pointless
- handle rules without logging limit correctly [1]
(those rules show up without logamount in "ipfw -a list")
PR: conf/126060 [1]
MFC after: 1 month
|
|
|
|
|
|
|
|
| |
of the message, such as:
Jun 30 10:49:21 rogue sshd[17553]: Invalid user iceman from 127.0.0.1
PR: conf/124569
Submitted by: Taku <taku@tekipaki.jp>
|
|
|
|
|
|
|
| |
PR: misc/122069
Submitted by: taku@tekipaki.jp
MFC after: 3 days
Approved by: imp (mentor, implicit trivial change).
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
find | sort. As a bonus, this simplifies the logic considerably. Also
remove the bogus "overruning the args to ls" comment and the corresponding
"-n 20" argument to xargs; the whole point with xargs is precisely that it
knows how large the argument list can safely get.
Note that the first run of the updated script may hypotheticall produce
false positives due to differences between find's and sort's sorting
algorithm. I haven't seen this during testing, but others might.
MFC after: 2 weeks
|
|
|
|
|
|
|
|
| |
the rejected mail reports to tally the rejects per blacklist without
providing details about individual sender hosts. The default configuration
keeps the reports in their original form.
MFC after: 1 week
|
| |
|
|
|
|
| |
Pointed out by: Henrik Brix Anders
|
|
|
|
|
|
| |
PR: conf/112604
Submitted by: Oliver Fromme
MFC after: 1 month
|
|
|
|
| |
Submitted by: des
|
|
|
|
|
|
|
|
|
|
| |
bad or illegal. This prevents matching on systems that
have a name that matches the query.
PR: conf/107560
Submitted by: Christian Laursen <cfsl at pil dot dk>
MFC after: 3 days
Approved by: imp (mentor)
|
|
|
|
|
|
|
|
| |
of the depricated one.
PR: conf/108611
Submitted by: TAOKA Fumiyoshi <fmysh at iijmio-mail dot jp>
Approved by: imp (mentor)
|
|
|
|
|
| |
by revision 1.6) works again. This fix is already in RELENG_6, but was
never committed to HEAD.
|
| |
|
|
|
|
|
|
| |
is not UID/GID 0, limits will be ignored and a strange error sent to auth.log.
Head nod: ru, rwatson
|
|
|
|
|
|
| |
PR: conf/96658
Submitted by: James Snow
MFC after: 1 week
|
|
|
|
|
| |
Since ipfw2 now does dual-stack, statistics for IPv6 come from the ipfw
scripts as well.
|
|
|
|
|
| |
PR: conf/93472
MFC after: 3
|
|
|
|
|
|
|
|
|
| |
other programs
PR: conf/70973
Submitted by: Ryan Sommers" <ryans@gamersimpact.com>
Approved by: philip (mentor)
MFC after: 3 days
|
|
|
|
|
|
| |
and gconcat(8) devices, respectively.
Approved by: rwatson (mentor)
|
|
|
|
|
|
|
| |
PR: conf/92299
Submitted by: Petr Rehor <prehor@gmail.com>
Approved by: philip (mentor)
MFC after: 3 days
|
|
|
|
| |
Submitted by: brueffer
|
| |
|
|
|
|
|
|
|
|
|
|
| |
Simplify the shell scripting a bit, and remove a useless grep | sed
The problem was pointed out by the PR, and I used part of the solution
suggested there, but the semantics changed again for 9.2.x -> 9.3.x.
PR: conf/74228
Submitted by: Jeremy Chadwick <freebsd@jdc.parodius.com>
|
|
|
|
|
|
|
|
| |
until we realize if ipfw(4) ever used.
PR: bin/85970
Submitted by: Andre Albsmeier
MFC after: 3 days
|
| |
|
|
|
|
|
|
|
| |
'^>', in order to catch both normal and unified diffs.
Problem reported by: volker at vwsoft dot com via -stable
MFC after: 3 days
|
|
|
|
|
|
|
|
|
|
| |
rule itself, not in verbose_limit sysctl. [1]
- Do check rules, even if verbose_limit is set 0. Rules may have
their own log limits.
PR: conf/77929
Submitted by: Andriy Gapon [1]
Reviewed by: matteo
|
|
|
|
|
| |
PR: conf/35242
Submitted by: Annihilator <annihilator.c@usa.net>
|
|
|
|
| |
Approved by: grehan (mentor)
|
|
|
|
|
| |
Reviewed by: brian, ru
MFC after: 1 week
|
|
|
|
|
|
|
| |
As there are no tabs in maillog, reduce the expression so that only spaces
are used.
Problem raised by: Leif Neland root at internet dot dk
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
reject. For example:
Checking for rejected mail hosts:
48 getherbalnow.info (451... resolve)
46 absorb.com (451... resolve)
4 tgmart01.codns.com (553... exist)
3 kali.com.cn (451... resolve)
2 genie.com (451... resolve)
1 zv.qy (553... exist)
1 zd.hinet.hr (553... exist)
....
The bit in parenthesis is the reject code and the last word on the line -
enough to give the admin a better chance of seeing real problems (hopefully!).
While I'm here, remove the "<" at the start of rejects coming from "from"
addresses without a name@ part.
I had to rewrite the patch given by the submitter as this script has been
sed'ified (used to be perl) and I think the reject code is useful....
PR: 17377
Idea from: root at ns dot internet dot dk
MFC after: 7 days
|
|
|
|
|
|
| |
This also trims extraneous commas from domain names.
MFC after: 7 days
|
|
|
|
| |
OK'ed by: core
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
packet counts by pf(4).
This adds a ``daily_status_security_pfdenied_enable'' variable to
periodic.conf, which defaults to ``YES'' as the matching IPF(W) versions.
The output will look like this (line wrapped):
pf denied packets:
> block drop log on rl0 proto tcp all [ Evaluations: 504986 Packets: 0
Bytes: 0 States: 0 ]
> block drop log on rl0 all [ Evaluations: 18559 Packets: 427 Bytes: 140578
States: 0 ]
Submitted by: clive (thanks a lot!)
MFC after: 2 weeks
|
|
|
|
|
|
|
| |
format of the 'diff' output generated during periodic(8) scripts.
Submitted by: keramida (script changes)
Reviewed by: keramida (man page changes)
|
|
|
|
|
|
|
| |
This is particularly convenient on a cluster of machines to prevent
having to rebuild the INDEX file on each.
Reviewed by: portmgr
|
|
|
|
|
| |
PR: misc/50154
Submitted by: Kimura Fuyuki <fuyuki@hadaly.org>
|
| |
|
|
|
|
|
|
|
|
| |
be properly mailwrapper'ed.
PR: conf/60676
Submitted by: Colin Percival <cperciva@daemonology.net>, maxim
MFC after: 4 days
|
| |
|
| |
|
|
|
|
|
|
| |
of providing a template manually.
Submitted by: Lars Eggert <larse@isi.edu>
|
|
|
|
|
| |
Reported by: mdodd
Pointy hat to: jhb
|
|
|
|
|
|
|
| |
removing the related 220.backup-distfile script and associatd periodic.conf
entry.
Discussed with: obrien
|