aboutsummaryrefslogtreecommitdiff
path: root/etc
Commit message (Collapse)AuthorAgeFilesLines
* MFC 245107: use full domain namePeter Wemm2013-01-061-1/+1
| | | | Notes: svn path=/stable/6/; revision=245111
* mx1 -> smarthost.ysvPeter Wemm2012-10-151-1/+1
| | | | Notes: svn path=/stable/6/; revision=241587
* Switch freebsd.org nullhost cluster machines from hub to mx1Peter Wemm2012-10-111-1/+1
| | | | Notes: svn path=/stable/6/; revision=241461
* Create the var/run/wpa_supplicant directory where the wpa_supplicantBernhard Schmidt2010-10-011-0/+2
| | | | | | | RC script wants to save a pidfile for each interface. Notes: svn path=/stable/6/; revision=213332
* MFC r210734: Allow starting ipmon if ipnat is enabled but ipfilter is notJilles Tjoelker2010-08-081-1/+1
| | | | | | | | | | | | | (in /etc/rc.conf). This fixes an apparent confusion between test(1) and sh(1) syntax for AND/OR. PR: conf/149036 Submitted by: pluknet Notes: svn path=/stable/6/; revision=211072
* MFC 209286:Doug Barton2010-06-221-2/+3
| | | | | | | Add the AAAA address for i.root-servers.net Notes: svn path=/stable/6/; revision=209451
* MFC 208060:Doug Barton2010-05-1418-31/+31
| | | | | | | | | | Remove trailing white space. No functional changes. Hand-delete trailing ws from rc.subr, rc.d/nsswitch, and rc.d/nfslocking while I'm here. Notes: svn path=/stable/6/; revision=208096
* MFC 207346:Doug Barton2010-05-081-4/+10
| | | | | | | | | | Fix named-checkconf in the situation where named_chroot_autoupdate is NOT set, but named_chrootdir IS set. Remove required_files for named.conf, named-checkconf is enough. Notes: svn path=/stable/6/; revision=207804
* MFC r205121:Jaakko Heinonen2010-03-301-2/+2
| | | | | | | | | | | Use an unique directory name instead of hardcoded /tmp/.diskless. A malicious user could create a file named /tmp/.diskless and cause the script to misbehave. PR: conf/141258 Notes: svn path=/stable/6/; revision=205883
* MFC: Minor changes to force commit these files so new freebsd*.cf files areGregory Neil Shapiro2010-01-312-1/+2
| | | | | | | built to use the new sendmail-8.14.4/cf tree. Notes: svn path=/stable/6/; revision=203312
* MFC r202582:Doug Barton2010-01-221-2/+15
| | | | | | | Update named.conf for documentation IP addresses and domains Notes: svn path=/stable/6/; revision=202820
* MFC r201368:Doug Barton2010-01-151-1/+1
| | | | | | | Update named_flags comment regarding not using it for -u and -c Notes: svn path=/stable/6/; revision=202336
* MFC r201367, r201370:Doug Barton2010-01-151-20/+21
| | | | | | | | Virtualize the location of "the configuration directory" instead of hard-coding it to be /etc/namedb Notes: svn path=/stable/6/; revision=202335
* MFC r200448:Doug Barton2009-12-293-101/+113
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | [Deletion of command= not merged, prerequisite was intentionally not merged] Rename named_precmd to named_prestart to make it more clear and match convention. Move the command_args definition related to -u up into _prestart(). It (and the associated $named_uid value) are only used there, and unlike required_* and pidfile don't need to be used until this stage. Fix a silly bug that would only have affected people who were using the new named_wait or named_auto_forward features, AND had set up an rndc.conf file instead of using the automatically generated rndc.key. For named_conf: Add "-c $named_conf" to command_args if it's not set to the default. If it is set to the default and we're using the base BIND it's not necessary. If we're using BIND from the ports the user is likely to have included it in _flags (due to long necessity for doing so) so don't duplicate that if it's set. Add $named_conf to required_files MFC r200563: The named process needs to have a "working directory" that it can write to. This is specified in "options { directory }" in named.conf. So, create /etc/namedb/working with appropriate permissions, and update the entry in named.conf to match. In addition to specifying the working directory, file and path names in named.conf can be specified relative to the directory listed. However, since that directory is now different from /etc/namedb (where the configuration, zone, rndc.*, and other files are located) further update named.conf to specify all file names with fully qualified paths. Also update the comment about file and path names so users know this should be done for all file/path names in the file. This change will eliminate the 'working directory is not writable' messages at boot time without sacrificing security. It will also allow for features in newer versions of BIND (9.7+) to work as designed. Notes: svn path=/stable/6/; revision=201174
* MFC r200377:Doug Barton2009-12-141-18/+19
| | | | | | | | | Update to the December 12, 2008 version of this file. The one substantive change is to add the IPv6 address of L. The other changes are all CAPS LOCK related. Notes: svn path=/stable/6/; revision=200500
* Add a big honkin' warning about not using DNSSEC with this versionDoug Barton2009-12-111-0/+22
| | | | | | | of BIND. Also point out that it's EOL and give suggestions on upgrading. Notes: svn path=/stable/6/; revision=200394
* Disable SSL renegotiation in order to protect against a seriousColin Percival2009-12-031-1/+1
| | | | | | | | | | | | | | | | | | protocol flaw. [09:15] Correctly handle failures from unsetenv resulting from a corrupt environment in rtld-elf. [09:16] Fix permissions in freebsd-update in order to prevent leakage of sensitive files. [09:17] Approved by: so (cperciva) Security: FreeBSD-SA-09:15.ssl Security: FreeBSD-SA-09:16.rtld Security: FreeBSD-SA-09:17.freebsd-udpate Notes: svn path=/stable/6/; revision=200054
* MFC r196439: typo and caps fixesDoug Barton2009-10-141-3/+3
| | | | Notes: svn path=/stable/6/; revision=198070
* MFC 196478:Doug Barton2009-08-291-0/+7
| | | | | | | | | | | | | | | Prior to the dire warning about values of network_interfaces other than AUTO the biggest mistake users made was leaving lo0 off the list. Since lo0 is effectively mandatory, check for it and add it to the list if it's not there. MFC 196523: Improve the case test to detect the presence of lo0 in the list of network_interfaces. Submitted by: Christoph Mallon <christoph.mallon@gmx.de> Notes: svn path=/stable/6/; revision=196647
* MFC r193197, substitute ypset for ypbind in REQUIRE lines.Doug Barton2009-08-035-5/+5
| | | | Notes: svn path=/stable/6/; revision=196058
* MFC r193119, quotation marks around the value of name=Doug Barton2009-08-033-3/+3
| | | | | | | (i.e., diff reduction to HEAD) Notes: svn path=/stable/6/; revision=196056
* MFC r192210, a whitespace only change in rc.d/named, andDoug Barton2009-08-033-8/+117
| | | | | | | | MFC r192215: named_wait feature, auto-forward feature, add named-checkconf to startup Notes: svn path=/stable/6/; revision=196054
* MFC r181113, -c named_flags example and capitalization fixDoug Barton2009-03-241-2/+2
| | | | Notes: svn path=/stable/6/; revision=190366
* MFC r181114, make sure services and protocols are in the chroot /etcDoug Barton2009-03-241-10/+32
| | | | | | | MFC r188293, improve handling of chroot inside of a jail Notes: svn path=/stable/6/; revision=190365
* MFC r190304: Add the URL for RFC2142Gregory Neil Shapiro2009-03-231-0/+1
| | | | | | | PR: conf/127510 Notes: svn path=/stable/6/; revision=190313
* MFC r181531 to stable/6:Antoine Brodin2009-01-101-6/+3
| | | | | | | | | | | | | Improve periodic/security/550.ipfwlimit a bit: - don't run it if net.inet.ip.fw.verbose = 0 as it is pointless - handle rules without logging limit correctly [1] (those rules show up without logamount in "ipfw -a list") PR: conf/126060 [1] MFC after: 1 month Notes: svn path=/stable/6/; revision=187033
* MFC: Several changes (181760-181762) to allow the "simple" and "client"John Baldwin2008-09-112-29/+41
| | | | | | | | | | firewall configurations to be configured (interfaces and attached networks) from rc.conf rather than requiring users to edit /etc/rc.firewall directly. Approved by: re (kensmith) Notes: svn path=/stable/6/; revision=182940
* MFC r182556: A no-op commit to simulate the effect of a forced commit soGregory Neil Shapiro2008-08-311-1/+0
| | | | | | | the file has a new timestamp as needed for mergemaster. Notes: svn path=/stable/6/; revision=182561
* MFC r182361: Google changed the location of the blacklists again.Gregory Neil Shapiro2008-08-311-1/+1
| | | | Notes: svn path=/stable/6/; revision=182559
* MFC r179073: Specify which INDEX files to build via portsnap.conf.Colin Percival2008-08-311-0/+5
| | | | Notes: svn path=/stable/6/; revision=182498
* MFC r181142, r181145, r181146, r181425, r181427: Add support forColin Percival2008-08-311-0/+7
| | | | | | | "freebsd-update IDS". Notes: svn path=/stable/6/; revision=182497
* Also merge the follow-up commit to r164131.Dag-Erling Smørgrav2008-08-251-12/+0
| | | | Notes: svn path=/stable/6/; revision=182157
* Add {nb,nn}_NO locale directories.Dag-Erling Smørgrav2008-08-252-0/+24
| | | | Notes: svn path=/stable/6/; revision=182156
* MFC: Add support for /etc/sysctl.conf.local.John Baldwin2008-08-071-7/+14
| | | | Notes: svn path=/stable/6/; revision=181383
* MFC r180478, stronger wording to warn users about not using theDoug Barton2008-07-161-7/+13
| | | | | | | query-source option, and a better example. Notes: svn path=/stable/6/; revision=180555
* MFC: Add the mpt_user personality to mpt(4).John Baldwin2008-06-271-0/+4
| | | | Notes: svn path=/stable/6/; revision=180058
* MFC the change from version 1.189, add a space between aDoug Barton2008-06-031-1/+1
| | | | | | | close quote and the closing bracket of a test. Notes: svn path=/stable/6/; revision=179509
* MFC:Maksim Yevmenkin2008-05-301-3/+2
| | | | | | | | | | | Bluetooth SIG is being difficult and keep moving specification documents away from being public accessible. Replace link to the Bluetooth specification document with the document name. Pointed out by: SoftLover < slserg at uic dot tula dot ru > Notes: svn path=/stable/6/; revision=179419
* MFC: Don't require a configuration file. Ntpd will be perfectly happy if there'sFlorent Thoumie2008-05-191-2/+0
| | | | | | | | | none or if the file doesn't exist (there's no ntp.conf in the base install). src/etc/rc.d/ntpd: rev 1.13 -> 1.14 Notes: svn path=/stable/6/; revision=179114
* MFC: Add very limited support for the isc-dhclient. It will almostly certaintlyBrooks Davis2008-05-151-0/+4
| | | | | | | | | | only work if there's just one interface doing dhcp. This version implements the same logic as the version in the PR, but uses pgrep to be less verbose. PR: conf/95905 Notes: svn path=/stable/6/; revision=179006
* MFC:Mike Makonnen2008-05-121-3/+7
| | | | | | | | Fix improper use of checkyesno routine. Noticed by: oliver Notes: svn path=/stable/6/; revision=178964
* MFC:Mike Makonnen2008-05-062-0/+5
| | | | | | | | | | | Add a dummynet_enable knob to go with firewall_enable. If this knob is enabled dummynet(4) is added to the list of required modules. Discussed on: #freebsd-bugbusters (rwatson, trhodes) PR: conf/79196 Notes: svn path=/stable/6/; revision=178810
* MFC rev. 1.328:Mike Makonnen2008-05-061-1/+1
| | | | | | | | | | | | | date: 2008/03/06 14:01:10; author: mtm; state: Exp; lines: +1 -1 The rarpd(8) daemon must be instructed to start on all interfaces or a specific one. Instruct it to listen on all interfaces so that enabling it in rc.conf(5) works "out of the box." PR: conf/121406 Submited by: trasz Notes: svn path=/stable/6/; revision=178808
* MFC: Emit a warning when the network_interfaces variable is not set to AUTO.Brooks Davis2008-05-041-0/+4
| | | | Notes: svn path=/stable/6/; revision=178764
* MFC revs 1.17-1.20, the functional components of which are:Brooks Davis2008-04-151-3/+16
| | | | | | | | | | | | | | | | | | 1.17: Allow the characters .-+/ to appear in ppp profile names by folding them to _ when evaluating ppp_<profile>_nat and ppp_<profile>_mode. Document the per-profile variables. 1.18: Add support for hardwiring ppp sessions to particular devices with new per-profile variables of the form ppp_<profile>_unit. No ppp_unit variable is supported since tying the same unit to more than one profile won't work. PR: conf/121452, conf/122127 Notes: svn path=/stable/6/; revision=178230
* MFC:Maksim Yevmenkin2008-04-152-1/+14
| | | | | | | | | | | | | Add rfcomm_pppd_server rc script to allow start rfcomm_pppd(8) in server mode at boot time. Multiple profiles can be started at the same time. The whole idea is very similar to the ppp rc script. Document Bluetooth knobs in rc.conf(5) Set defaults for the rfcomm_pppd_server rc script Notes: svn path=/stable/6/; revision=178227
* This commit was manufactured by cvs2svn to create branch 'RELENG_6'.cvs2svn2008-04-111-0/+122
| | | | Notes: svn path=/stable/6/; revision=178113
* MFC revision 1.4: Add /boot/devices.hints to the default list of filesColin Percival2008-04-041-1/+1
| | | | | | | which have local modifications merged during upgrading. Notes: svn path=/stable/6/; revision=177929
* MFC:Mike Makonnen2008-03-202-2/+8
| | | | | | | | | | | The check for errors from the mount command did not work as intended because another command (echo) is executed between the mount command and the check. Reported by: Sergey Baturov <sergey@toor.org.ru> Notes: svn path=/stable/6/; revision=177449
* Sync with current merging revs 1.27 and 1.31.Brooks Davis2008-03-121-8/+8
| | | | | | | | | | | | | | | | | | | | 1.27: Use get_if_var() to retrieve interface specific values of dhclient_flags and background_dhclient. This allows interfaces who's names are not valid parts of shell variables and shortens the code. 1.31: When the state of the interface changes rapidly enough there is a race where dhclient is in the process of exiting due to the link going down when the link coming up causes devd to try and start a new one. This results is the link being up, but no dhclient running. Work around this race by checking a second time after a one second delay before refusing to start a dhclient instance due to one already being running. Notes: svn path=/stable/6/; revision=177114
generated by cgit v1.3 (git 2.53.0) at 2026-05-08 22:46:52 +0000