1
0
mirror of https://git.FreeBSD.org/src.git synced 2024-12-18 10:35:55 +00:00
Commit Graph

224 Commits

Author SHA1 Message Date
John Polstra
e9edb38551 Add an rc.conf knob "ldconfig_insecure" to disable ldconfig's
security checks.  Set the default to NO, i.e., secure.

Submitted by:	Maxime Henrion <mhenrion@cybercable.fr>
2000-08-11 03:26:30 +00:00
Brian Somers
3ebdf3366d Improve purgedir():
Fix leading & trailing space handling

  Suggested by: ben

  Handle files beginning with - correctly
  Don't follow symlinks (cd /var/spool/lock; ln -s /. horror)
2000-08-09 09:23:30 +00:00
Brian Somers
440972bd2b Don't use find(1) before nfs filesystems have been mounted as
it lives in /usr/bin.  Instead, locate files manually.

Note, only *files* under /var/spool/lock are now deleted rather
than everything that's not a directory.  I think this is more
correct, but if anyone disagrees please feel free to change it.

Problem pointed out by: bde
2000-08-08 13:30:27 +00:00
Sheldon Hearn
ae193fb45b If the initial attempt to write ${entropy_file} to /dev/random fails
and the randomdev.ko module is not resident, try to load the module and
perform the write again.

Reviewed by:	markm
2000-07-24 13:40:41 +00:00
Sheldon Hearn
7a414e32d7 Improve on previous commit:
Don't inhibit the trailing newline for entropy-related messages.
Try harder to save the seed file on shutdown.

Reviewed by:	markm
2000-07-17 13:39:48 +00:00
Mark Murray
b74aa5644c Add entropy caching. With this, some entropy is cached at shutdown
time, and this is used to reseed the random number generator at
boot time.

NOTE - this has no hope of working if you halt(); you need to
execute rc.shutdown to get the entropy stash.
2000-07-17 12:28:58 +00:00
Brian Somers
60b2dc71d9 Don't attempt to rm directories under /var/spool/lock. 2000-06-08 08:57:35 +00:00
Jeroen Ruigrok van der Werven
615f500a83 Sanitise NFS fs mounting for /usr NFS mounts.
Submitted by:	Doug Barton <DougB@gorean.org>
Reviewed by:	bde
2000-05-29 12:31:26 +00:00
David Nugent
dbd73b6bb2 Pedantic change: "reboot" -> "boot" 2000-05-11 06:31:59 +00:00
Sheldon Hearn
f66e7afa28 Add to defaults/rc.conf a new function source_rc_confs which rc
scripts may use to source safely overrides in ${rc_conf_files}
files.

This protects users who insist on the bad practice of copying
/etc/defaults/rc.conf to /etc/rc.conf from a recursive loop
that exhausts available file descriptors.

Several people have expressed interest in breaking this function
out into its own shell script.  Anyone who wants to embark on
such an undertaking would do well to study the attributed PR.

PR:		17595
Reported by:	adrian
Submitted by:	Doug Barton <Doug@gorean.org>
2000-04-27 08:43:49 +00:00
Dan Moschuk
b4479f319e s/grep/grep -q
Submitted by: ru
2000-03-27 16:36:25 +00:00
Dan Moschuk
8e5649e4ab Only tell the user that we're Mounting NFS file systems when we have NFS
file systems to mount.

PR: 17594
Submitted by: Doug Barton <Doug@gorean.org>
2000-03-25 16:17:53 +00:00
Mark Murray
20fb384ee0 Get the order of things right; the keys need to be generated
early to allow entropy to replenish.
sshd must start late to catch the full effects of ldconfig.
2000-02-28 19:54:06 +00:00
Yoshinobu Inoue
0908c83946 Add IPv6 configuration scripts.
Initial version created by, and kindly much tested by:
	bmah@CA.Sandia.GOV (Bruce A. Mah)

Approved by: jkh

Reviewed by: bmah@CA.Sandia.GOV (Bruce A. Mah),
	Ollivier Robert <roberto@keltia.freenix.fr>
Obtained from: KAME project
2000-02-23 18:05:58 +00:00
Nick Sayer
3ca9ee77a9 /dev/vn0b is a character device now.
Approved by:	jkh
2000-02-03 06:06:36 +00:00
Brian Feldman
ab80d6fabc This is another in Martin Blapp's N-series of mount-related cleanups :)
Changes are:
 - rpc.umntall is called at the right places now in /etc/rc*
 - rpc.umntall timeout has been lowered from two days (too high) to one
 - verbose messages in rpc.umntall have been clarified
 - kill double entries in /var/db/mounttab when rpc.umntall is invoked
 - ${early_nfs_mounts} has been removed from /etc/rc
 - patched mount(8) -p to print different pass/dump values for ufs filesystems.
   (last patch recieved from dan <bugg@bugg.strangled.net>)

Submitted by:	Martin Blapp <mbr@imp.ch>, dan <bugg@bugg.strangled.net>
2000-01-15 14:28:14 +00:00
Peter Wemm
a519749105 Third try.. Avoid filenames with spaces in them.
PR:		15937
Pointed out by:	Koga Youichirou <y-koga@jp.FreeBSD.org>
2000-01-06 14:27:37 +00:00
Peter Wemm
857dc42503 Missed a filename variable quote in rc 2000-01-05 09:19:27 +00:00
Peter Wemm
57c96870e6 Quote arguments in vi recover script.
PR:		15901
Submitted by:	KOJIMA Hajime <kjm@rins.ryukoku.ac.jp>
2000-01-05 08:17:18 +00:00
Peter Wemm
7ad20304af Remove kvm_mkdb as it isn't installed anymore. libkvm asks directly
via kldsym(2), and crash dumps use nlist directly (and always have).
1999-12-27 07:43:07 +00:00
David E. O'Brien
ad7e21c510 Install sendmail.cf into /etc/mail.
The current offical Sendmail Inc. version uses /var/mail/ and when we upgrade
our repository to that version, we will get the change.  It is best to make
the path change in 4.0-R (which may not have the latest Sendmail Inc. version,
than to change in mid-4.x stream when we may upgrade.

Ok'ed by:	Peter (quite a while ago)
1999-12-19 22:05:32 +00:00
Andrey A. Chernov
3999be82fa Call rpc.umntall only if nfs_client_enable, hang occurse otherwise 1999-11-30 03:34:01 +00:00
Matthew Dillon
a69497d73f Finish up umntall support. init now passed an argument to the
rundown script 'reboot' or 'single'.  ISO support (which never
    worked) has been removed from mount_nfs.  mount_nfs and umount
    now use mounttab, which allows umntall to work properly.  The
    rc scripts now call umntall as appropriate.

Submitted by:	Martin Blapp <mb@imp.ch>
1999-11-22 04:23:11 +00:00
Andrey A. Chernov
08221ae7d5 Add network pass4 - after all local (/usr/local/etc/rc.d f.e.)
daemons started. Move log_in_vain option there. It is needed to avoid
lot of connections to port 80 logged on production WWW server prior
Apache started from /usr/local/etc/rc.d
1999-11-17 22:38:02 +00:00
Nick Sayer
011afabb7a Slight reordering of /etc/rc order: It now goes
...
recover vi
msgs/bounds
update MOTD
rc.{arch}
rc.devfs
rc.local
$local.startup
securelevel

The motive behind this is to delay rc.{arch} as long as possible,
as it loads the screensaver, which kills the splash screen.
But at the same time, it can't be done after rc.devfs, as
that might depend on arch specific actions. rc.local and local.startup
also should come after these, and securelevel must be last of all.
1999-09-24 06:49:00 +00:00
Joseph Koshy
8e814a064f Remove the "vinum_drives" rc.conf knob. According to Greg <grog@lemis.com>
this is no longer the right way to start Vinum unless you are doing some
kind of maintenance, and that's not the sort of thing that would go into
rc.conf.
1999-09-22 06:31:32 +00:00
Sheldon Hearn
321704296f Apply a consistent style to most of the etc scripts. Particularly, use
case instead of test where appropriate, since case allows case is a sh
builtin and (as a side-effect) allows case-insensitivity.

Changes discussed on freebsd-hackers.

Submitted by:	Doug Barton <Doug@gorean.org>
1999-09-13 15:44:20 +00:00
Ollivier Robert
2a87314062 This fix adds checking for the existance of the /var/msgs
directory before attempting to create the bounds file.

PR:		bin/13184
Submitted by:	"Stephen J. Roznowski" <sjr@home.net>
1999-09-12 18:13:11 +00:00
Warner Losh
8b2bfd893a Remove all non-file like things in /var/tmp/vi.recover on reboot. 1999-08-30 03:34:46 +00:00
Peter Wemm
9b7a44a60e $Id$ -> $FreeBSD$ 1999-08-27 23:37:10 +00:00
Sheldon Hearn
b68adff6b7 Style clean-up:
* All variables are now embraced: ${foo}

	* All comparisons against some value now take the form:
	  [ "${foo}" ? "value" ]
	  where ? is a comparison operator

	* All empty string tests now take the form:
	  [ -z "${foo}" ]

	* All non-empty string tests now take the form:
	  [ -n "${foo}" ]

Submitted by:	jkh
1999-08-25 16:01:45 +00:00
Peter Wemm
b39c728a8d Perhaps I should have looked at the whole file rather than just the delta.
Use -eq rather than -ne.

Obtained from: OpenBSD (millert, etc/rc rev 1.104)
1999-08-06 06:22:43 +00:00
Peter Wemm
855f92eae0 I don't think `customify' is a real word. 1999-08-06 06:20:19 +00:00
Peter Wemm
f837ca75aa Don't use /tmp/_motd in the aftermath of the chflags(2) revelations.
Obtained from: OpenBSD (millert etc/rc rev 1.102 and hugh)
1999-08-06 06:16:06 +00:00
Warner Losh
3ee2311670 Clear flags on psuedo terminals before trying to chmod and chown them. 1999-08-02 05:42:44 +00:00
Sheldon Hearn
c99115f476 Don't allow users to prevent the updating of /etc/motd on machines for
which /tmp is not mounted in MFS, clear_tmp_enable="NO" and
update_motd="YES".

PR:	10005
Submitted by:	Anton Voronin <anton@urc.ac.ru>
1999-06-21 15:59:42 +00:00
Brian Somers
78adc7a560 Ignore the quota.user and quota.group files rather than the
``quotas'' file when cleaning /tmp.
1999-06-01 10:47:53 +00:00
Martin Cracauer
65089737f4 Break lines to be < 80 chars.
Submitted by:	BDE
1999-04-02 09:35:34 +00:00
Greg Lehey
6f16baa899 Add variable start_vinum. If set to YES, it will start vinum and
automagically find all the partitions.  This is to be preferred to the
somewhat emetic usage of vinum_slices and the equally obnoxious 'vinum
read' command.
1999-04-02 07:15:44 +00:00
Martin Cracauer
c5df07777c Use new -T switch to turn on immediate interruptibilty in shell
scripts. Also, the ugly 'echo -n' hack to prevent sh from a wrong
optimization isn't needed anymore.
1999-04-01 13:30:29 +00:00
Warner Losh
a780977066 Add two features:
log_in_vain:
	log_in_vain turns on logging for packets to ports for which
	there is no listener.
    rc.sysctl:
	A generic way to set sysctl values.  It reads /etc/syslog.conf
	and sets values based on that.  No /etc/syslog.conf has been
	checked in yet, and I've not added this to the makefile yet
	until I get more feedback.

Reviewed by: -current, -hackers and bde especially
1999-03-28 20:36:03 +00:00
Bill Fumerola
61bf4caf49 Split check_quotas into check_quotas and enable_quotas
enable_quotas - use quotas on your system
check_quotas - check for violations on startup

By assuming that a system was neat and without violation before it booted
we can skip a long (and at that point needless) process.

Submitted by:	Alex Perel <veers@disturbed.net>
1999-03-17 04:00:04 +00:00
Dag-Erling Smørgrav
cae59b3d6a Fix bogons in previous commit. 1999-03-14 20:26:39 +00:00
Dag-Erling Smørgrav
3e03255dd1 Chown the pty device nodes back to root:tty. 1999-03-14 03:20:22 +00:00
James FitzGibbon
1dd418124c Add ${lpd_program} and ${portmap_program} as variables in rc.conf, with
suitable defaults pointing to the FreeBSD-shipped versions.  This will allow
for easier integration of third-party replacements for these daemons.
Reviewed by: Several members of -committers
1999-03-11 16:17:24 +00:00
Jordan K. Hubbard
ef6caa5169 Correct various mentions of rc.conf 1999-02-13 05:30:49 +00:00
Jordan K. Hubbard
9c63624e6f Use /etc/defaults/rc.conf everywhere, falling back to /etc/rc.conf
as necessary (for half-assed upgrades).
1999-02-10 18:08:16 +00:00
Matthew Dillon
e4715b9359 Revamp rc.diskless. Split into rc.diskless1 and rc.diskless2. provide
more opportunities for overriding.  Clean up /etc/rc ( remove conf_dir,
    remove startup mount special cases, remove other special cases )
1999-02-09 17:17:18 +00:00
Matthew Dillon
89b71b3d69 Get rid of $conf_dir 1999-02-09 05:20:46 +00:00
Greg Lehey
ea7994c074 Change variable name vinum_slices to vinum_drives to match the variable
we set in rc.conf.

Background: the `vinum read' command has changed.  For a short period
of time, it required the names of the slices on which vinum was
stored.  Now it requires the names of the drives.
1999-01-31 04:28:51 +00:00