| Age | Commit message (Collapse) | Author |
|---|
|
help, testing & ok rpe
|
|
to /usr/src or /usr/xenocara.
Change /usr/{,x}obj to owner build:wobj with mode 770 and install the
systemwide makefiles before starting a build. The root of the noperm fs
containing DESTDIR should also be owned by build:wobj.
Developers will need to add their users to group wobj to be able to write
to /usr/{,x}obj/.
"push forward" deraadt; testing, input & ok rpe
|
|
The installer will create these directories during install.
So local setups will not get overwritten during upgrades.
idea from and OK deraadt@
with help from and OK tb@
feedback from and no objections halex@
|
|
and de-escalate to $BUILDUSER.
Much help from natano and tb.
|
|
filesystem permissions are required.
requested by deraadt
|
|
down and enforce reasonable permissions for RELEASEDIR.
prodded by and ok deraadt
ok tb
|
|
OK deraadt@
|
|
of the target to the message to be more descriptive.
ok deraadt tb
|
|
when the source tree is not owned by ${BUILDUSER}.
ok deraadt
|
|
ok natano
|
|
- If you start make build as root, everything will be run as root.
Nothing new here. New is, that you can set BUILDUSER=somebody and the
unprived parts will be run as somebody.
- If you start make build with sudo, the unprived parts will be run as
the real user (meaning YOU). You can still set BUILDUSER=somebody and
the uprived parts will run as somebody.
- If you start make build as a normal user it will error out. "I'm sorry
Dave."
Note that DESTDIR must be on partition with the noperm flag set for make
release to work correctly as an unprivileged user.
idea and ok deraadt
input and ok tb ratchov millert
rpe, halex and probably others where part of the conversation to make
this happen, thanks!
|
|
align everyone who is using SUDO builds towards the new strategy.
ok natano
|
|
|
|
it can be worked on in the tree).
ok florian@ deraadt@
|
|
from rpe
|
|
should be owned by root.
ok deraadt
|
|
shortly when we use the hardware thread register in userland
|
|
Discussed with and loved by many.
OK tedu@, tom@, deraadt@.
|
|
|
|
workarounds. Some of them will soon stand in the way of armv7.
Off to the attic you go.
|
|
ok jung@ (some time ago) phessler@
|
|
|
|
about pkg.conf isn't really that helpful and if a big syntax change comes along
well we have current.html.
it was disabled during p2k16 and no one complained so far
discussed with and ok deraadt@
|
|
hppa reverse-stack gives us a valuable test case, but most developers don't
have a 2nd one to proceed further with this.
ok kettenis
|
|
|
|
lots of agreement.
|
|
creation of maillog as part of the distribution-etc-root-var target
was missed. From Nathanael Rensen
|
|
Positive feedback and/or OKs from benno millert jcs aja jasper
|
|
not fixed yet.
|
|
ok mlarkin@
prompted by deraadt@
|
|
discussed with jsg
|
|
ok benno@ requested by tedu@
|
|
|
|
general openssl cnf files install the ikeca.cnf file.
ok sthen@ requested by reyk@
|
|
|
|
Move the one useful bit of information contained in the file ("one
user name per line") to the ftpd(8) manual page where it belongs.
OK deraadt@ sthen@
|
|
The file format is so simple that no example is needed.
All relevant documentation is already available
from the proper place, which is the lpd(8) manual.
Consequently, delete the empty file.
OK millert@ dcoppa@ beck@ deraadt@
|
|
ok deraadt@
|
|
at a time, so a second instance of the daemon is required.
OK mikeb stsp ajacoutot
|
|
requested by several
discussed with deraadt@
|
|
ok deraadt@
|
|
to hook the rc script and modify etc/rc.conf to make it disable by
default. Also add an entry for /etc/radiusd.conf to etc/changelist
and etc/mtree/special.
ok deraadt
|
|
|
|
discussed by deraadt@
|
|
constraint to keep them in check. in the worst case of being on a
dark net, nothing changes.
this is being enabled by default to allow gathering of more operational
information from users. and if the operational heuristics in ntpd can be
suitable refined, this may stay the default into the future. if not, ntpd
will become even more awesome along the way.
with reyk rpe
|
|
Discussed with many and OK ajacoutot@.
|
|
OK deraadt@
|
|
often space-constrained /var filesystem was a historical mistake. There
are big implications for the daemons which assume they won't run out of
space, and this is a first step towards trying to improve the situation.
Move /tmp to the same 7-day expiration rules that /var/tmp had.
vi.recover works just as well as before, except on memory filesystems;
indicating that vi should be repaired to write files into homedirs or
something.
done with rpe
ok many
|
|
|
|
|
