summaryrefslogtreecommitdiffstats
path: root/etc
Commit message (Collapse)AuthorAgeFilesLines
* Summer of Code 2005: improve libalias - part 1 of 2piso2006-09-262-1/+9
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | With the first part of my previous Summer of Code work, we get: -made libalias modular: -support for 'particular' protocols (like ftp/irc/etcetc) is no more hardcoded inside libalias, but it's available through external modules loadable at runtime -modules are available both in kernel (/boot/kernel/alias_*.ko) and user land (/lib/libalias_*) -protocols/applications modularized are: cuseeme, ftp, irc, nbt, pptp, skinny and smedia -added logging support for kernel side -cleanup After a buildworld, do a 'mergemaster -i' to install the file libalias.conf in /etc or manually copy it. During startup (and after every HUP signal) user land applications running the new libalias will try to read a file in /etc called libalias.conf: that file contains the list of modules to load. User land applications affected by this commit are ppp and natd: if libalias.conf is present in /etc you won't notice any difference. The only kernel land bit affected by this commit is ng_nat: if you are using ng_nat, and it doesn't correctly handle ftp/irc/etcetc sessions anymore, remember to kldload the correspondent module (i.e. kldload alias_ftp). General information and details about the inner working are available in the libalias man page under the section 'MODULAR ARCHITECTURE (AND ipfw(4) SUPPORT)'. NOTA BENE: this commit affects _ONLY_ libalias, ipfw in-kernel nat support will be part of the next libalias-related commit. Approved by: glebius Reviewed by: glebius, ru
* Sleep for one second after calling audit -t to give the audit daemon arwatson2006-09-241-0/+1
| | | | | | | | | | | | | | chance to actually terminate the audit service and exit. Otherwise, on an rc.d/auditd restart, the new audit daemon instance may try to start auditing while the previous session is still running. Likewise, this ensures a chance for auditd to terminate the audit trail at system shutdown. Perhaps more ideally, the script would wait synchronously for auditd to exit rather than for an arbitrary but short period of time. MFC after: 3 days Obtained from: TrustedBSD Project
* network_ipv6 also does some interface configuration so require it to runbrooks2006-09-211-1/+1
| | | | | | before starting devd so they don't trip over each other. PR: conf/103428
* Introduce a new method ipv6if which attemptes to figure out if anbrooks2006-09-212-1/+29
| | | | | | | | | | | | | | interface is an IPv6 interface. Use this method to decide if we should attempt to configure an interface with an IPv6 address in pccard_ether. The mechanism pccard_ether uses to do this is unsuited to the task because it assumes the list of interfaces it is passed is the full list of IPv6 interfaces and makes decissions based on that. This is at least a step in the right direction and is probably about as much as we can MFC safely. PR: conf/103428 MFC after: 3 days
* Flushing all IPv4 routes when an interface is removed or unconfiguredbrooks2006-09-202-6/+0
| | | | | | | makes no sense. Remove the undocumented removable_route_flush feature from pccard_ether. X-MFC after: never
* Search the list of up interfaces provided by "ifconfig -ul" instead ofbrooks2006-09-201-5/+7
| | | | | greping for UP in "ifconfig $ifn". This eliminates a dependancy on /usr.
* Add bthidd(8) rc(8) scriptemax2006-09-073-1/+38
| | | | MFC after: 1 month
* Prepare for upcoming bthidd(8) update. Install vkbd(4) header into dev/vkbd.emax2006-09-071-0/+2
| | | | MFC after: 1 month
* Unbreak PowerPC build after addition of powermac_nvram(4powerpc).marcel2006-09-021-0/+6
|
* - Document /conf/diskless_remount in the list of special files.brooks2006-09-011-3/+11
| | | | | | | | | - Note that diskless_remount files may use ".." to support mounts above the root path. - Copy dot files when populating directories from /conf. [1] PR: misc/102724 [1] Submitted by: Attila Nagy <bra at fsn.hu> [1]
* Kill the default phone numbers.ru2006-08-311-6/+3
| | | | Obtained from: OpenBSD
* Re-add lukemftpd. It has: PAM, MAC, per-class nologin files,obrien2006-08-311-0/+2
| | | | login.conf resource limits and features.
* Add FreeBSD Update 2.0 client code. The build code is in the projectscperciva2006-08-313-1/+52
| | | | | | repository. Sponsored by: FreeBSD security development fundraiser
* Comment out lines that use example addresses and example.com names soru2006-08-291-15/+15
| | | | | that local changes can be made more easily (without having to comment these lines, and making the diff more readable).
* The kvm_mkdb(8) is long dead.ru2006-08-293-56/+1
|
* When stopping powerd, set the CPU frequency back to its maximum valuecperciva2006-08-271-0/+7
| | | | | | | (i.e., what it was almost certainly at before powerd was started). Submitted by: R.B. Riddick MFC after: 3 days
* Use ports INDEX-7 instead of INDEX-6dougb2006-08-271-1/+1
| | | | Submitted by: Niclas Zeising <lothrandil@n00b.apagnu.se>
* Add login.conf checking to periodic security scripts. If the login.conf filetrhodes2006-08-253-0/+56
| | | | | | is not UID/GID 0, limits will be ignored and a strange error sent to auth.log. Head nod: ru, rwatson
* Send more Alpha bits to the bin.trhodes2006-08-251-311/+0
|
* Fix example:ru2006-08-221-13/+13
| | | | | | /conf/base/diskless_remount -> /conf/base/etc/diskless_remount MFC after: 3 days
* - Add ypserv to the REQUIRE list.flz2006-08-221-1/+1
| | | | | | | Reported by: David Thompson <dat1965@yahoo.com> Discussed on: -rc (brooks) Approved by: cperciva (mentor, implicit) MFC after: 3 days
* Backout this commit since it breaks startup and some scripts inflz2006-08-222-47/+21
| | | | | | | | | | | | | | | | | certain conditions. I haven't been able to find a better solution yet: - Set a two read-only variables (${prefix} and ${etcdir}). This is especially useful when using /etc/rc.d scripts with third-party software installed from ports. - Fix rc.d/sshd to work with openssh from ports using ${etcdir} instead of hardcoded /etc. - Reflect prefix/etcdir changes in rc.subr.8. src/etc/rc.d/sshd: rev 1.9 -> 1.10 src/etc/rc.subr: rev 1.51 -> 1.52 src/share/man/man8/rc.subr.8: rev 1.11 -> 1.12 Approved by: cperciva (mentor)
* - Remove ramdisk rc.d scripts since they've been replaced by mdconfig{,2}.flz2006-08-223-125/+1
| | | | | | - Update ObsoleteFiles.inc. Approved by: cperciva (mentor)
* Don't try to start interfaces that don't exist.brooks2006-08-181-0/+2
| | | | Reported by: Dominique Goncalves <dominique.goncalves at gmail.com>
* Eliminate header line(s) from ps(1) output instead of skipping over them.yar2006-08-181-5/+2
|
* The ps(1) command is unfriendly to scripts by default becauseyar2006-08-181-3/+4
| | | | | | | | | | it limits the width of its output to the value of $COLUMNS, or what TIOCGWINSZ reports, or 79 columns. We should specify -ww to ps(1) so that it removes the limit and prints lines in full. Otherwise very long command pathnames could be mishandled, e.g., by _find_processes(). MFC after: 1 week
* Make it a little clearer that interface-specific flags aren't additionalbrian2006-08-171-2/+3
| | | | | | | | to specified dhclient flags. Mention background_dhclient_iface. Suggested by: ru
* Add a missing quotebrian2006-08-171-1/+1
| | | | Spotted by: ru
* Add a -p switch to dhclient. The switch tells dhclient to persistbrian2006-08-172-1/+13
| | | | | | | | | | despite the interface link status. Add dhclient_flags_iface and background_dhclient_iface rc.conf options. (where iface is a specific interface). These can be used to give interface specific flags to dhclient. Reviewed by: brooks@
* Allow for setting negative priority (niceness) when $foo_user is non-root.yar2006-08-171-2/+7
| | | | | | | | The order in _doit must be "nice su", not "su nice", for that. In addition, don't ignore the exit status from "cd $foo_chdir". Reviewed by: freebsd-rc (silence) MFC after: 1 week
* Introduce a new function, ifexists and use it to avoid attempting tobrooks2006-08-172-27/+42
| | | | | | | | touch interfaces that don't actually exist in the stop case. In the process move some IPv4 specific code from ifconfig_down to ipv4_down. This should solve problems with ifconfig: error messages on boot when interfaces are renamed.
* Set removable_route_flush to NO be default. It's clearly the wrongbrooks2006-08-161-1/+1
| | | | | | | | thing to do in most (all?) cases and certainly should not be the default now that we're running pccard_ether on all interface creates and destroys. MFC after: 3 days
* Back out 1.272. The LAPIC timer conflicts with C2/3 on various systems,njl2006-08-051-2/+2
| | | | | | and so users get hangs until interrupts are generated another way. We'll have to find a way to make the 2 work together before re-enabling this by default.
* Forgot to add mountlate to the Makefile.des2006-08-041-1/+1
|
* Not allowed to use tabs. The rule that proves the rule. Heh.jb2006-08-031-2/+2
|
* Alphabetical order is probably better.jb2006-08-031-2/+2
|
* Add the library directory where DTrace library scripts live.jb2006-08-031-0/+2
|
* Remove remnants of Alpha.marcel2006-08-022-16/+0
|
* Add device to access and modify Open Firmware NVRAM settings insobomax2006-08-011-0/+2
| | | | | | | | | PowerPC-based Apple's machines and small utility to do it from userland modelled after the similar utility in Darwin/OSX. Only tested on 1.25GHz G4 Mac Mini. MFC after: 1 month
* This script should probably have an enabling variable since it can producemckay2006-07-301-2/+4
| | | | | surprising results. For now, at least make it safe to boot the default kernel when /boot/kernel is already a symlink.
* Add /usr/lib/engines for OpenSSL engines.simon2006-07-291-0/+2
|
* Back out rev. 1.63. It was a poor idea becauseyar2006-07-261-9/+15
| | | | | | | test(1) is built in sh(1) and it always evaluates both sides of -a or -o, unlike && or || in sh(1). Requested by: dougb
* De-uglify messages from the ipfw script.yar2006-07-251-4/+2
|
* Use more rc.subr(8) features.yar2006-07-251-22/+16
| | | | | Skip useless work when ${natd_interface} is unset. Double quote user-supplied vars unless there is a reason not to.
* Avoid extra runs of test(1) by using its built-in logical operations.yar2006-07-251-15/+9
|
* Don't load geom_md.ko if there is no need to.pjd2006-07-252-0/+10
|
* Sync comments around _doit with the code.yar2006-07-251-1/+2
|
* We notify of failures with err or warn.yar2006-07-251-2/+2
| | | | | Messages should end in full stop unless that can lead to confusion.
* Add diagnostics to load_kld().yar2006-07-251-4/+12
|
* Since Alpha support isn't in HEAD anymore, remove Alpha-specificyar2006-07-212-27/+0
| | | | rc.conf(5) knobs, too: osf1_enable, unaligned_print.
OpenPOWER on IntegriCloud