summaryrefslogtreecommitdiff
path: root/etc/rc
AgeCommit message (Collapse)Author
2008-12-11Bump size of isakmpd RSA host key up to 2048 bits to match theChristian Weisgerber
SSH2-RSA size; ok hshoexer@, no objection from miod@
2008-11-27Add bt=YES to /etc/rc.conf.local to start the daemonUwe Stuehler
2008-10-03New option -D to daemonize spamd-setup for early bootup use. This avoidsTheo de Raadt
spamd-setup hanging if there are various (network?) issues and the system not proceeding to multiuser so that this can be debugged. We do not use & for startup in /etc/rc because this makes the spamd-setup a child of the rc scripts after bootup (that is gross) Problem reported in PR 5864, change discussed with beck, ok millert
2008-07-09automatically populate net.inet.(tcp|udp).baddynamic with theDamien Miller
contents of /etc/services so as to avoid randomly allocating source ports that correspond to well-known services. Auto-filling of the baddynamic tables is performed before reading sysctl.conf, so it is still possible to add or subtract ports, or override the autofilling entirely there. Note that this requires a new kernel and /sbin/sysctl. feedback markus@ ok markus@ deraadt@ millert@
2008-06-15start rpc.statd together with rpc.lockdNikolay Sturm
"just get it in" deraadt
2008-06-09Replace nmeattach (which will be removed) with ldattach.Marc Balmer
2008-06-08Deprecate /etc/dhcpd.interfaces. This is made unnecessary by dhcpd_flags.Jason Dixon
ok deraadt@ beck@ reyk@ phessler@
2008-06-02- add a full stop for consistencyJasper Lievisse Adriaanse
ok deraadt@ dlg@
2008-05-07routed is no longer, use ripd instead.Claudio Jeker
2008-02-27Try to load host.random before starting the network, no networkDamien Miller
randomisations (among other things) benefit from it. We still try again after /var has been definitely mounted in case it is on NFS; ok deraadt@
2008-01-31enable snmpd in the buildReyk Floeter
approved by deraadt@, ok thib@
2008-01-16create pflog0 whenever pf is enabled, not just when pflogd_flags!=NOStuart Henderson
fixes spamlogd with pflogd disabled. ok henning
2008-01-09Do not bring up pfsync(4) before the working rulesetMarco Pfatschbacher
has been loaded. Otherwise, states that are received during the initial bulk update mismatch the correct pf-checksum and do not attach to the rules. Problem identified by david@. Fix done in collaboration. OK henning@
2007-12-07hoststated gets renamed to relayd. easier to type, and actually saysTheo de Raadt
what the daemon does - it is a relayer that pays attention to the status of pools of hosts; not a status checkers that happens to do some relaying
2007-11-11-w flag for wsconsctl is deprecated; from Tim van der MolenJason McIntyre
2007-10-15permit tcp 111/2049 at boot too, for tcp nfs mounts; Jim ReesTheo de Raadt
2007-10-08Add the user _ospf6d otherwise the newly imported ospf6d daemon will notEsben Norby
start. ok dlg@
2007-04-25shutdown existing carp interfaces based on ifconfig output, not staticMarc Espie
/etc/*.if files. okay reyk@, deraadt@, krw@...
2007-04-14introduce {fsck,mount}_vnd tools to be able to describe vnd imagesAlexander von Gernler
in /etc/fstab instead of using some weird homegrown scripts. No support for boot time mounting yet, so "noauto" is still needed. original idea from david@ help and discussion todd@ bluhm@ beck@, manpage help jmc@ ok simon@ tedu@ bluhm@ todd@, "looks good" thib@
2007-03-14Allow nmeaattach to start a sensor before starting ntpd. Many modernChris Kuethe
receivers can cold start in the time it takes the boot process to get close to starting ntpd. Even if the gps is not ready or the fix is not valid, at least the sensor has been created; ntpd won't have to wait a few minutes before scanning for the sensor. This makes using GPS as the sole source of time a bit easier. ok deraadt
2007-02-27catch second instance of spamd_grey - thanks millert and jmcBob Beck
2007-02-27spamd_grey=YES should really be spamd_black=NOBob Beck
as disscussed with jmc and millert. ok millert@
2007-02-27Flag day for spamd -Bob Beck
1) config files move to /etc/mail 2) -g option goes away in spamd-setup and spamd - greylisting is now the default 3) option change to spamd, -b addr becomes -l addr. 4) -b option in spamd-setup and spamd to turn on old blacklisting mode. Man page shortly to be flensed to make this easier to explain ok deraadt@ millert@
2007-02-02- add a new "accounting" variable (default to NO) to enable accoutingAntoine Jacoutot
(if the file /var/account/acct does not exist it will be created) ok mk@
2007-01-31link hoststated to the builds.Pierre-Yves Ritschard
ok miod@, henning@
2007-01-06remove acpid references. ok gwk@, steven@, grange@ and janus@.Matthieu Herrb
2006-11-28Move isakmpd's auto-generated public key, local.pub, into /etc/isakmpdRyan Thomas McBride
This makes it readable by unprivileged uses, simplifying configuration, and there is no reason for it to be secret. ok msf deraadt hshoexer
2006-11-16when pf and pflogd are enabled, do a "ifconfig pflog0 create" early.Henning Brauer
rc checks pflog0 existance before starting pflogd0, pbly to not print an error message on pflog-less kernels... ugh. ok mcbride
2006-11-06duh -- on first boot, do not build the host.random file twice; ok djmTheo de Raadt
2006-10-29Add the _ripd user and startup stuff.Esben Norby
ok claudio@
2006-09-27Add ifstated(8) startup bits.Marco Pfatschbacher
OK deraadt@, henning@, mcbride@
2006-09-01Switch boot order: isakmpd starts before sasyncd.Marco Pfatschbacher
If a user is running sasyncd, start isakmpd with -S. In this mode isakmpd starts off passsive and doesn't delete SA's on shutdown. OK ho@, hshoexer@, deraadt@
2006-08-29increase the carp demotion counter by 128 instead of 1 while rc runs.Henning Brauer
you do not want a machine that is in the middle of rc and does not have all network daemons (that possibly increase the carp demotion counter further) to become master just because the other one lost 2 bgp sessions or similar for other daemons (esp sasyncd) and as such has a demotion count of >1. ok mcbride mpf deraadt
2006-08-04remove redundant comments; noted by mpf; ok deraadt, millertMarkus Friedl
2006-06-02Add sasyncd to rc / rc.conf.Ryan Thomas McBride
ok deraadt@ cloder@
2006-06-02Carp demotion interlock. Prevents carp from preempting until the system isRyan Thomas McBride
booted, allowing for daemons to sync with peers before we take over. ok deraadt@ mpf@ moritz@
2006-06-01Hook dhcrelay(8) into the startup process.Esben Norby
ok henning@
2006-06-01add all the goo to hook dvmrp into the systemEsben Norby
ok derradt@
2006-05-29revert vfs.nfs.privport sysctl, broke a few architecturesAnil Madhavapeddy
requested by deraadt@
2006-05-28Add support for NFS mounts to be from non-reserved ports:Anil Madhavapeddy
- new sysctl vfs.nfs.privport to require NFS mount requests to be on reserved ports when set to 1 (the default). - mountd now automatically sets the sysctl depending on the -n flag. - add mountd_flags to rc.conf to enable the -n flag at boot. deraadt@ ok
2006-03-27add hostapd to rc/rc.conf glueReyk Floeter
suggested and ok by kettenis@
2006-03-22As the isakmpd fifo race is fixed, hook ipsecctl to rc.Hans-Joerg Hoexer
ok naddy@ todd@
2006-03-14move wsconsctl up earlier, so that any key changes made can be usedTheo de Raadt
to (for instance) interrupt dhclient with a ^C instead of a 'CAPS-LOCK C' from e@molioner.dk checked by matthieu
2006-03-12Use the new -s flag to mount the /usr and /var partitions. AvoidsOtto Moerbeek
doubly mounted mfs partitions. Also, at the end of the mount dance, try mount all partitions, not just nfs partitions. Handles a case where local paritition mounted inside a nfs partition where not mounted by rc (/usr on nfs with a local /usr/obj, for example). ok deraadt@ henning@
2006-01-12configure mixers late; obsd@enop.org 4970Theo de Raadt
2005-11-30Change "starting rpc daemons" to "starting initial daemons" as weTom Cosgrove
also start ntpd at this time. discussed with jmc@; ok deraadt@
2005-11-16add new ftp-proxy startup bitsCamiel Dobbelaar
ok henning beck
2005-10-31add bits for watchdogd startup, PR4540 Michael Knudsen <e@molioner.dk>Henning Brauer
but I put it at a different place, watchdogd is really not a network daemon
2005-09-22split ypserv & ypbind startup; ypserv does not depend on you being aTheo de Raadt
client; from amh@POBOX.COM
2005-09-19change printed line from `printer' to `lpd'; deraadt@ ok.Federico G. Schwindt