summaryrefslogtreecommitdiff
path: root/etc/rc
AgeCommit message (Collapse)Author
2011-03-23use ssh-keygen -A; ok deraadtKevin Steves
2011-03-17- introduce the INRC environment variable so that rc.subr(8) knows if itRobert Nagy
gets called from rc.local or rc.shutdown - notify the user if a given operation was successfull or not by appending the (ok) or (failed) strings to the end of the daemon name - hide stdout and stdin unless RC_DEBUG=1 is set, otherwise all the function names will be printed out and all output sent to stdin or stdout - since from now on rc.subr is taking care of printing out the daemon names on startup, we don't need to do this from rc.{local,shutdown} anymore brainkilling work done by me and ajacoutot@, ok ajacoutot@
2011-01-14in the most trivial way, request that the kernel arc4random re-key afterTheo de Raadt
we run netstart ok tedu, djm liked it too
2011-01-10talk to /dev/arandom as a single read or write.Theo de Raadt
in particular a single write will result in a single re-key event, rather than 64 writes causing 64 re-keys -- wasting the kernel's time. ok guenther
2010-12-22Consistantly use /dev/arandom for feeding entropy to the kernel.Theo de Raadt
ok kjell otto miod
2010-11-08Don't print 'Null message body; hope that's ok' in the rc output if theAntoine Jacoutot
call to rc.firstime doesn't output anything to mail(1). ok deraadt@ halex@
2010-11-02delete excessive ; useTheo de Raadt
2010-10-26Add a simple 'rc' system to base in order to start/stop/restart/reloadRobert Nagy
services installed by the ports system (for now). It only uses pgrep/pkill to handle these processes. A manual page will come later. 'put it in' deraadt@
2010-10-01start nsd(8); ok deraadtJakob Schlyter
2010-09-06add ssh_host_ecdsa_key to /etc; from Mattieu Baptiste <mattieu.b@gmail.com>Christian Weisgerber
ok deraadt@
2010-07-27Add ldapd to rc and rc.conf. Enable it at boot with ldapd_flags=.Martin Hedenfal
ok deraadt@ gilles@
2010-07-13When cleaning /tmp at boot, run the slower find unconditionally.Stuart Henderson
Previously if the quick rm -rf failed, find was not run, so some files were not removed. Looks good to tedu@.
2010-06-28Add iked to rc/rc.conf, you can enable it on boot with the iked_flags= var.Reyk Floeter
Also copy the generated RSA key for isakmpd into the iked directory; this way we share the same RSA key by default. ok deraadt@ jsg@
2010-04-25Add ldpd(8) to /etc/rc* files.Michele Marchetto
It needs to be started before the routing daemons. In this way every new prefix learnt by them already has a label associated. discussed with and ok'ed by claudio@
2010-04-23start ``aucat -l'' from /etc/rc, unless aucat_flags=NO, which isAlexandre Ratchov
the default setting in rc.conf. ok deraadt
2010-01-04If a /etc/rc.firsttime file exists, run it just once, mailing the output toTheo de Raadt
root. If anyone wants to use this in a siteXX.tgz file, please be sure to *concatenate* to the file -- not replace it -- since the installer is going to be using this file itself. discussed with todd and halex
2009-12-04use mv -f to avoid stopping during wrongly mounted root; sbeyer@reactor.deTheo de Raadt
2009-11-23Move ipsec key creation before isakmpd, and sshd to become the firstTheo de Raadt
of the network daemons so that it can be used if another daemon stops in its tracks. ok claudio markus sthen
2009-08-12change some defaults inside amd itself, so that the rc scripts no longerTheo de Raadt
have to pass those options. this makes amd much easier to restart by hand (though it still remains a nasty daemon do that with) ok millert
2009-08-07- specifically match carp+([0-9]):, not just carp*:. avoids spuriousStuart Henderson
attempts to "ifconfig carp down" noticed by david@. - use non-descriptive variables names rather than $if/$junk to encourage people reading the code to think what it's doing; many of the output lines are not interface names. ok david@
2009-08-05correct indentTheo de Raadt
2009-08-04Don't use grep/cut during shutdown, /usr might not be mounted.Stuart Henderson
Spotted by deraadt@. These were used to bring down carp ifaces cleanly; replace with shell features. ok deraadt@, henning@. "Much mo' better" blambert@.
2009-06-30extra spaces found during inspection of other gooTheo de Raadt
2009-06-30Make syslogd create a socket in /var/www/dev when httpd is enabled in orderRobert Nagy
to make logging to syslog work with php for example. ok deraadt@, henning@
2009-06-03Arla client rename from xfs to nnpfs for later upgrades. Tested on various ↵Janne Johansson
arches. ok todd@ beck@
2009-05-31Make sure xdm is installed before trying to run itAlexander Hall
ok deraadt@
2009-04-17a scrub was hiding here when nfs was enabled. since we want the no-dfHenning Brauer
behaviour here replace by an explicit set reassemble yes no-df. noticed by Valery Masiutsin <val.masutin at gmail dot com>
2009-03-16support for smtpd(8); ok gilles@Jacek Masiulaniec
2009-03-04Don't synchronise carp states in default PF ruleset, these get createdRyan Thomas McBride
on each host and end up conflicting, so they never sync anyways. ok dlg henning
2008-12-11Bump size of isakmpd RSA host key up to 2048 bits to match theChristian Weisgerber
SSH2-RSA size; ok hshoexer@, no objection from miod@
2008-11-27Add bt=YES to /etc/rc.conf.local to start the daemonUwe Stuehler
2008-10-03New option -D to daemonize spamd-setup for early bootup use. This avoidsTheo de Raadt
spamd-setup hanging if there are various (network?) issues and the system not proceeding to multiuser so that this can be debugged. We do not use & for startup in /etc/rc because this makes the spamd-setup a child of the rc scripts after bootup (that is gross) Problem reported in PR 5864, change discussed with beck, ok millert
2008-07-09automatically populate net.inet.(tcp|udp).baddynamic with theDamien Miller
contents of /etc/services so as to avoid randomly allocating source ports that correspond to well-known services. Auto-filling of the baddynamic tables is performed before reading sysctl.conf, so it is still possible to add or subtract ports, or override the autofilling entirely there. Note that this requires a new kernel and /sbin/sysctl. feedback markus@ ok markus@ deraadt@ millert@
2008-06-15start rpc.statd together with rpc.lockdNikolay Sturm
"just get it in" deraadt
2008-06-09Replace nmeattach (which will be removed) with ldattach.Marc Balmer
2008-06-08Deprecate /etc/dhcpd.interfaces. This is made unnecessary by dhcpd_flags.Jason Dixon
ok deraadt@ beck@ reyk@ phessler@
2008-06-02- add a full stop for consistencyJasper Lievisse Adriaanse
ok deraadt@ dlg@
2008-05-07routed is no longer, use ripd instead.Claudio Jeker
2008-02-27Try to load host.random before starting the network, no networkDamien Miller
randomisations (among other things) benefit from it. We still try again after /var has been definitely mounted in case it is on NFS; ok deraadt@
2008-01-31enable snmpd in the buildReyk Floeter
approved by deraadt@, ok thib@
2008-01-16create pflog0 whenever pf is enabled, not just when pflogd_flags!=NOStuart Henderson
fixes spamlogd with pflogd disabled. ok henning
2008-01-09Do not bring up pfsync(4) before the working rulesetMarco Pfatschbacher
has been loaded. Otherwise, states that are received during the initial bulk update mismatch the correct pf-checksum and do not attach to the rules. Problem identified by david@. Fix done in collaboration. OK henning@
2007-12-07hoststated gets renamed to relayd. easier to type, and actually saysTheo de Raadt
what the daemon does - it is a relayer that pays attention to the status of pools of hosts; not a status checkers that happens to do some relaying
2007-11-11-w flag for wsconsctl is deprecated; from Tim van der MolenJason McIntyre
2007-10-15permit tcp 111/2049 at boot too, for tcp nfs mounts; Jim ReesTheo de Raadt
2007-10-08Add the user _ospf6d otherwise the newly imported ospf6d daemon will notEsben Norby
start. ok dlg@
2007-04-25shutdown existing carp interfaces based on ifconfig output, not staticMarc Espie
/etc/*.if files. okay reyk@, deraadt@, krw@...
2007-04-14introduce {fsck,mount}_vnd tools to be able to describe vnd imagesAlexander von Gernler
in /etc/fstab instead of using some weird homegrown scripts. No support for boot time mounting yet, so "noauto" is still needed. original idea from david@ help and discussion todd@ bluhm@ beck@, manpage help jmc@ ok simon@ tedu@ bluhm@ todd@, "looks good" thib@
2007-03-14Allow nmeaattach to start a sensor before starting ntpd. Many modernChris Kuethe
receivers can cold start in the time it takes the boot process to get close to starting ntpd. Even if the gps is not ready or the fix is not valid, at least the sensor has been created; ntpd won't have to wait a few minutes before scanning for the sensor. This makes using GPS as the sole source of time a bit easier. ok deraadt
2007-02-27catch second instance of spamd_grey - thanks millert and jmcBob Beck