aboutsummaryrefslogtreecommitdiff
path: root/etc
Commit message (Collapse)AuthorAgeFilesLines
* With the fixes to getty handling of non-existent devices a defaultKen Smith2004-10-041-2/+3
| | | | | | | | | | | | install now complains about ttyu0/ttyu1 not existing at boot time. Since users wanting the uart based devices as terminals will need to do something special to get them anyway set it up so a default config doesn't complain. MFC after: 3 days Notes: svn path=/head/; revision=136108
* Install namedb stuff to ${DESTDIR}/var/named/etc/namedb insteadDoug Barton2004-09-301-1/+1
| | | | | | | | | | | of relying on the symlink in ${DESTDIR}/etc/namedb. This is functionally equivalent, but doesn't rely on the symlink to work. Requested by: ru Notes: svn path=/head/; revision=135963
* 1. Update the documentation references, and the warning about setting upDoug Barton2004-09-301-2/+14
| | | | | | | | | | | | authoritative servers. 2. Add an IPv4 listen-on option for 127.0.0.1, which is appropriate for the default use as a local resolver. 3. Add a commented out listen-on-v6 option. Notes: svn path=/head/; revision=135961
* Hide all the devices in the chroot dev except for random and null.Doug Barton2004-09-301-0/+3
| | | | Notes: svn path=/head/; revision=135958
* Correct a trivial typo.Tom Rhodes2004-09-291-1/+1
| | | | Notes: svn path=/head/; revision=135927
* Fixed symlinking /var/named/etc/namedb to /etc/namedb.Ruslan Ermilov2004-09-291-1/+1
| | | | | | | | A second "make distrib-dirs" createed a symlink in /var/namedb/etc/namedb. A third "make distrib-dirs" failed. Notes: svn path=/head/; revision=135926
* Add a statistics-file directiveDoug Barton2004-09-291-0/+1
| | | | Notes: svn path=/head/; revision=135918
* stats goes under /var, not /var/runDoug Barton2004-09-291-0/+1
| | | | Notes: svn path=/head/; revision=135917
* gshapiro assures me that uid bind is not necessary for /etc/namedb,Doug Barton2004-09-291-1/+2
| | | | | | | | | | | | so we'll use the more secure default till I have a chance to prove myself wrong. :) Add a /var/stats directory to be enabled in named.conf. Submitted by: gshapiro Notes: svn path=/head/; revision=135916
* Whitespace only, tabs -> spaces, per READMEDoug Barton2004-09-291-4/+4
| | | | Notes: svn path=/head/; revision=135915
* Give users the ability to load a mac_bsdextended(4) ruleset on boot (defaultsTom Rhodes2004-09-294-1/+214
| | | | | | | | | | to NO of course). Provide a basic ruleset file, rc.bsdextended, but allow the filename to be overridden through rc.conf. Discussed with: rwatson (awhile ago) Notes: svn path=/head/; revision=135912
* Fix some of the more egregious problems with this file:Doug Barton2004-09-281-34/+8
| | | | | | | | | | | | | | | | | | | | | | | | | | | 1. Update text about later BINDs using a pseudo-random, unpriviliged query port for UDP by default. 2. We are now running in a sandbox by default, with a dedicated dump directory, so remove the stale comment. 3. The topology configuration is not for the faint of heart, so remove the commented example. 4. Tighten up some language a bit. 5. s/secondary/slave/ 6. No need for the example about a bind-owned directory for slave zones. 7. Change domain.com to example.com in the example, per RFC 2606. 8. Update the path for slave zones in the example. - Thanks to Scot Hetzel <swhetzel@gmail.com> There is more work to do here, but this is an improvement. Notes: svn path=/head/; revision=135910
* Create a named chroot directory structure in /var/named, and use itDoug Barton2004-09-288-34/+57
| | | | | | | | | | | | | | | | | | | by default when named is enabled. Also, improve our default directory layout by creating /var/named/etc/namedb/{master|slave} directories, and use the former for the generated localhost* files. Rather than using pax to copy device entries, mount devfs in the chroot directory. There may be some corner cases where things need to be adjusted, but overall this structure has been well tested on a production network, and should serve the needs of the vast majority of users. UPDATING has instructions on how to do the conversion for those with existing configurations. Notes: svn path=/head/; revision=135875
* 1. Add much finer granularity to the NO_BIND knobs with the addition of:Doug Barton2004-09-271-0/+14
| | | | | | | | | | | | NO_BIND_DNSSEC, NO_BIND_ETC, NO_BIND_NAMED, and NO_BIND_UTILS. 2. Make creation of directories in /usr/include that are only needed in the WITH_BIND_LIBS case conditional. Reviewed by: ru, des Notes: svn path=/head/; revision=135851
* Remove the directories that are now only installed when the userDoug Barton2004-09-271-14/+0
| | | | | | | defines WITH_BIND_LIBS. Notes: svn path=/head/; revision=135850
* Hook the BIND.* files up to the build.Doug Barton2004-09-271-1/+10
| | | | Notes: svn path=/head/; revision=135849
* Seperate out the optional parts of the include tree that areDoug Barton2004-09-271-0/+22
| | | | | | | only built and installed when the user defines WITH_BIND_LIBS. Notes: svn path=/head/; revision=135848
* Add a file spec to create a chroot directory structure forDoug Barton2004-09-271-0/+32
| | | | | | | | | a BIND name server. This file is not being used yet, but will be soon. Notes: svn path=/head/; revision=135847
* This file is about to get some optional bits, so line up the parts ofDoug Barton2004-09-271-2/+8
| | | | | | | | | | | the FILES variable one line at a time. This should be a whitespace change only. Reviewed by: ru Notes: svn path=/head/; revision=135845
* It's not necessary to create an rndc.key file if the user alreadyDoug Barton2004-09-261-1/+2
| | | | | | | | | has an rndc.conf file. Submitted by: Sergey Mokryshev <mokr@mokr.net> Notes: svn path=/head/; revision=135810
* Create /etc/namedb/bind with owner / group bind and mode 0750.Dag-Erling Smørgrav2004-09-251-0/+2
| | | | Notes: svn path=/head/; revision=135795
* Install the documentation for bind9, and remove the /usr/share/doc/bindDoug Barton2004-09-251-2/+2
| | | | | | | | | directory from mtree while we're at it. Help, advice, and code from: ru, des Notes: svn path=/head/; revision=135778
* Fix two glitches that appear in the non-chroot case. First, if notDoug Barton2004-09-241-1/+3
| | | | | | | | | | | chrooted the pid symlink code should not fire. Also, remove the quotes around the chroot variable in the rndc-confgen invocation so that if not chrooted the command will still succeed. Pointed out by: Sean McNeil <sean@mcneil.com> Notes: svn path=/head/; revision=135777
* For the default FreeBSD install, the file path actually isDoug Barton2004-09-241-1/+1
| | | | | | | | | /var/run/named/pid. This is done so that named can start with -u bind and still dump a pid file in that directory, which is chowned to user bind. Notes: svn path=/head/; revision=135775
* It's named.pid, not named/pid.Dag-Erling Smørgrav2004-09-241-1/+1
| | | | | | | Pointy hat to: dougb@ Notes: svn path=/head/; revision=135757
* Reconnect namedb. While it may not be optimal, our old named.conf fromDag-Erling Smørgrav2004-09-241-2/+0
| | | | | | | BIND 8 is quite usable for BIND 9. Notes: svn path=/head/; revision=135747
* Add ttyu0 as a serial console, as we're using the uart(4) driver on arm.Olivier Houchard2004-09-241-0/+1
| | | | Notes: svn path=/head/; revision=135734
* Fix a comment typo: s/neccessary/necessary/Giorgos Keramidas2004-09-241-1/+1
| | | | Notes: svn path=/head/; revision=135730
* Update to reflect BIND 9 in the base:Doug Barton2004-09-241-16/+17
| | | | | | | | | | | | | | | | | | 1. Making the pid symlink now has to happen after named starts, otherwise it can generate a fatal error. 2. named-xfer is not part of the BIND 9 world. 3. BIND 9 needs a /dev/random in the chroot directory if chrooted. 4. Only the pid file is symlinked now, the ndc socket is BIND 8 only. 5. Create an rndc.key file for the user if one does not exist. This (generally) allows a BIND 8 config file to be used in a BIND 9 world with little or no modification. Notes: svn path=/head/; revision=135703
* Add a note to indicate that the path set in named_pidfile mustDoug Barton2004-09-241-3/+2
| | | | | | | | | also be set in named.conf. Our default named.conf has this already. Update the note for named_symlink_enable to indicate that ndc is gone. Notes: svn path=/head/; revision=135701
* Re-add namedb. I misunderstood what Doug said about using ISC'sDag-Erling Smørgrav2004-09-231-0/+2
| | | | | | | layout: he meant for binaries, not configuration files. Notes: svn path=/head/; revision=135631
* Add a knob 'daily_status_security_diff_flags' controlling theJoseph Koshy2004-09-232-1/+3
| | | | | | | | | | format of the 'diff' output generated during periodic(8) scripts. Submitted by: keramida (script changes) Reviewed by: keramida (man page changes) Notes: svn path=/head/; revision=135591
* Switch from BIND 8 to BIND 9.Dag-Erling Smørgrav2004-09-213-6/+16
| | | | | | | | | Submitted by: (in part) dougb@, trhodes@ Reviewed by: dougb@, trhodes@, re@ MFC after: 5 days Notes: svn path=/head/; revision=135549
* If $dumpdev is set to AUTO, use the first suitable swap partition listedDag-Erling Smørgrav2004-09-201-0/+10
| | | | | | | | | in /etc/fstab, or print an error message if no suitable device was found. MFC after: 4 weeks Notes: svn path=/head/; revision=135525
* Teach swap1 script how to remove added swap devices on system shutdown.Pawel Jakub Dawidek2004-09-171-21/+1
| | | | | | | | | Without this change, if one had a swap-on-mirror configuration, gmirror will rebuild mirror component(s) on boot, because they are dirty (they were open on shutdown). Notes: svn path=/head/; revision=135389
* Change tabs to whitespaces.Gleb Smirnoff2004-09-161-2/+2
| | | | | | | | Noticed by: ru Pointy hat to: glebius Notes: svn path=/head/; revision=135341
* Install netflow includes.Gleb Smirnoff2004-09-161-0/+2
| | | | | | | Approved by: julian (mentor) Notes: svn path=/head/; revision=135339
* We don't have any providers of `beforenetlkm' in FreeBSD. Remove theGiorgos Keramidas2004-09-163-3/+3
| | | | | | | | | dependency to it from our rc.d scripts. Approved by: mtm Notes: svn path=/head/; revision=135306
* Fix requirement of `network' to `NETWORK' because the former isn'tGiorgos Keramidas2004-09-161-1/+1
| | | | | | | | | provided by any rc.d script. Approved by: mtm Notes: svn path=/head/; revision=135305
* Bring back etc/rc.d/ntpdate as requested by scads of people. This isn't aSean Chittenden2004-09-154-3/+40
| | | | | | | | | | | | | | | | | complete backout as the ntpd_sync_on_start etc/rc.conf tunable is still present, though the default is now NO (was YES). Since we're no longer syncing time at startup by default when ntpd is enabled (as was the case 24hrs ago), remove UPDATING entry pointing out that ntpd(1) -g is slower than ntpdate(1). Hopefully ntpd_sync_on_start="YES" can be made the default for -CURRENT after 5.3 is cut. At the very least, this should be set to YES when a user requests to have ntpd enabled via sysinstall(1). Requested by: many Notes: svn path=/head/; revision=135252
* Stop using ntpdate(1) in our startup procedure. Replace ntpdate(1) withSean Chittenden2004-09-141-33/+0
| | | | | | | | | | | | | | | | | calls to ntpd -g. ntpd is noticeably slower than ntpdate, but is also more accurate. This removes the nasty hackery in rc.d/ntpdate that would parse out ntp servers from /etc/ntp.conf (ntpd knows how to read its own config file). By default, ntpd *will* sync with its listed time servers. To turn this off so that ntpd does not sync, ntpd_sync_on_start="NO" can be added to /etc/rc.conf. If ntpd is not enabled (the default), then time is not synced on startup. ntpdate has been depreciated by the ntpd authors for quite some time so this change shouldn't be unexpected. Suggested by: des Approved by: roberto (resident ntp guru) Notes: svn path=/head/; revision=135195
* Stop using ntpdate(1) in our startup proceedure. Replace ntpdate(1) withSean Chittenden2004-09-144-5/+8
| | | | | | | | | | | | | | | | | calls to ntpd -g. ntpd is noticably slower than ntpdate, but is also more accurate. This removes the nasty hackery in rc.d/ntpdate that would parse out ntp servers from /etc/ntp.conf (ntpd knows how to read its own config file). By default, ntpd *will* sync with its listed time servers. To turn this off so that ntpd does not sync, ntpd_sync_on_start="NO" can be added to /etc/rc.conf. If ntpd is not enabled (the default), then time is not synced on startup. ntpdate's use has been depreciated by the ntpd authors for quite some time so this change shouldn't be unexpected. Suggested by: des Approved by: roberto (resident ntp guru) Notes: svn path=/head/; revision=135194
* Bring in some examples (and create space for future work here):Max Laier2004-09-142-1/+3
| | | | | | | | | | | | | | | - Add OpenBSD example rulesets as advertised in etc/pf.conf and pf.conf(5) - Tweak the pointer to fit the FreeBSD default location share/examples/pf - Account for the new directory in BSD.usr.dist (no hier(7) change required as share/examples is an opaque item there). Obtained from: OpenBSD Reminded by: Thomas T. Veldhouse PR: docs/71691 MFC after: 2 days Notes: svn path=/head/; revision=135184
* Update the passive OS fingerprint database from OpenBSD.Max Laier2004-09-141-52/+145
| | | | | | | Obtained from: lcamtuf.coredump.cx (via OpenBSD) Notes: svn path=/head/; revision=135183
* A power failure left the temporary /var/.diskless directoryRuslan Ermilov2004-09-132-2/+2
| | | | | | | | on my system, and since then my /var was always created as MFS which was very surprising. Fix this for /tmp and /var. Notes: svn path=/head/; revision=135163
* Add device driver support for the VIA Networking TechnologiesBill Paul2004-09-101-1/+2
| | | | | | | | | | | | | | | VT6122 gigabit ethernet chip and integrated 10/100/1000 copper PHY. The vge driver has been added to GENERIC for i386, pc98 and amd64, but not to sparc or ia64 since I don't have the ability to test it there. The vge(4) driver supports VLANs, checksum offload and jumbo frames. Also added the lge(4) and nge(4) drivers to GENERIC for i386 and pc98 since I was in the neighborhood. There's no reason to leave them out anymore. Notes: svn path=/head/; revision=135048
* Restore NetBSD SCM ID.David E. O'Brien2004-09-091-1/+1
| | | | | | | Submitted by: delphij@beastie.frontfree.net Notes: svn path=/head/; revision=134995
* Add axe(4) to ethernet-nic-regex.Gleb Smirnoff2004-09-061-3/+3
| | | | | | | | | | PR: conf/71410 Submitted by: Andrew Thompson <thompsa AT thingy.tbd.co.nz> Approved by: julian (mentor) MFC after: 3 days Notes: svn path=/head/; revision=134867
* Hook autofs to the build.Alfred Perlstein2004-09-021-0/+2
| | | | Notes: svn path=/head/; revision=134657
* When an USB keyboard is plugged in to a machine with a builtin keyboard,Brooks Davis2004-09-011-0/+10
| | | | | | | | | | cause the USB keyboard to take over from the builtin one. This means my laptop just works when I'm using it as a desktop. Reviewed by: imp Notes: svn path=/head/; revision=134584
generated by cgit v1.2.3 (git 2.25.1) at 2024-06-06 17:42:03 +0000