Age | Commit message (Collapse) | Author | |
---|---|---|---|
2009-06-09 | By default, don't accept IPv4 ICMP redirects. This behaviour can be | Stuart Henderson | |
changed with a sysctl, so note it in sysctl.conf. v6 needs further testing following discussions on the tech mailing list; rainer@ points out possible interactions with neighbour discovery which need to be investigated first. "go ahead on the v4 part" deraadt@ | |||
2008-01-05 | Add commented out entries for watchdog timers. If you enable the watchdog | Marc Balmer | |
timeout, either set auto retriggering or start watchdogd(8)... From Mitja Muzenic. ok deraadt. | |||
2008-01-04 | Use consistent capitalization in comments. From mitja@muzenic.net. | Marc Balmer | |
2007-07-25 | document multipath options. | Pierre-Yves Ritschard | |
ok claudio@ | |||
2007-05-29 | put commented out entry for kern.nosuidcoredump=2 in, yes theo & tedu | Henning Brauer | |
2007-02-15 | add two carp(4) sysctl examples: net.inet.carp.preempt=1 and | Reyk Floeter | |
net.inet.carp.log=1. it is so common to enable carp preemption... yes! henning@, ok mpf@ | |||
2007-01-09 | add net.inet6.ip6.mforwarding which was forgotten when the variable was added. | Jun-ichiro itojun Hagino | |
2006-01-28 | mention net.inet.ip.mforwarding. | Brad Smith | |
ok beck@ kettenis@ norby@ | |||
2005-09-30 | correct comment; | Jason McIntyre | |
ok deraadt@ brad@ | |||
2005-09-28 | Enable RFC3390 by default and remove a few compile time options which | Brad Smith | |
can be changed via sysctl's. ok markus@ | |||
2005-09-10 | kern.usercrypto is enabled by default, so commented out entry should | Jason McIntyre | |
show how to disable it; ok deraadt@ | |||
2005-07-19 | Fix grammar. From art@. | Tom Cosgrove | |
2005-04-01 | show that net.inet.etherip.allow can be set here; pr 3972 ckuethe | Theo de Raadt | |
2005-03-26 | encrypt swap by default. cheap, and why not. can be disabled by people | Theo de Raadt | |
who have machines that hit swap a lot. decided after survey of developers, we found that most turned this on. ok various | |||
2004-09-22 | it's net.inet.esp.udpencap and not net.inet.udpencap.enable | Hans-Joerg Hoexer | |
ok ho henning msf | |||
2004-06-26 | Default enable udpencap. Add 'disable' sysctl to sysctl.conf. markus@ ok. | Hakan Olsson | |
2004-02-25 | rfc3390 example; with deraadt@ help. | Federico G. Schwindt | |
2003-08-24 | put emul sysctls in appropriate arch. also fix up the comments. | Ted Unangst | |
problems noted by fgsch@ and deraadt@ | |||
2003-08-23 | commented out emulations. requested by deraadt | Ted Unangst | |
2002-05-31 | ecn is disabled by default, so show the option enabled. | Federico G. Schwindt | |
deraadt@ ok. | |||
2002-05-20 | blob for splassert. | Artur Grabowski | |
suggested by deraadt@. | |||
2002-05-16 | show net.inet.tcp.ecn option | Theo de Raadt | |
2002-02-23 | sysctl kern.usercrypto | Theo de Raadt | |
2001-08-07 | enable ah & esp by default, now that we trust the code more | Theo de Raadt | |
2001-06-27 | IPSec->IPsec (jsyn@nthough.com) | Angelos D. Keromytis | |
2001-06-10 | Since mtu discovery is enabled by default, change line to disable if it's | Federico G. Schwindt | |
uncommented; niels@ theo@ ok. | |||
2000-10-23 | more verbose description | Theo de Raadt | |
2000-09-27 | Remove ipsec-acl | Angelos D. Keromytis | |
2000-09-25 | mtu disc example | Theo de Raadt | |
2000-06-14 | it's vm.swapencrypt.enable now. | Niels Provos | |
2000-05-19 | nfsiod/nfs_client, bye bye | Michael Shalayeff | |
add commented out entry into sysctl.conf for vfs.nfs.iothreads | |||
2000-03-30 | Add a sample commented out net.inet.ip.ipsec-acl=0 entry. | Angelos D. Keromytis | |
2000-01-02 | ipv6 autoconf on hosts (non-routers). | Jun-ichiro itojun Hagino | |
to do this, 1. in sysctl.conf, add these lines: net.inet6.ip6.forwarding=0 net.inet6.ip6.accept_rtadv=1 2. in hostname.foo, add rtsol specifying two or more interfaces with "rtsol" may result in strange behavior - ipv6 spec does not permit multi-interface node to be autoconfig'ed. | |||
1999-12-30 | insert #vm.swapencrypt=1 | Niels Provos | |
1999-12-16 | show ip6.forwarding | Theo de Raadt | |
1999-05-30 | Bad commit (machdep.allowaperture), this already exists in etc.i386 -- | Angelos D. Keromytis | |
obviously a long day :-X | |||
1999-05-30 | Add a commented out machdep.allowaperture=1 line | Angelos D. Keromytis | |
1999-04-11 | Introduce net.inet.{ah,esp}.enable sysctl controls that are off by default. | Niklas Hallqvist | |
If you are going to use either of AH or ESP or both, enable these in /etc/sysctl.conf. Also correct the IPSec debugging sysctl code, it is now named net.inet.ip.encdebug. Some corrected function signatures too. | |||
1998-05-05 | split sysctl.conf into MD and MI parts | Theo de Raadt | |
1998-04-04 | default to console ddb off | Theo de Raadt | |
1998-02-17 | i386 only | Theo de Raadt | |
1998-02-17 | add machdep.allowaperture | Matthieu Herrb | |
1998-02-16 | move fs.posix.setuid to sysctl.conf | Theo de Raadt | |
1998-02-14 | urgh | Theo de Raadt | |
1998-02-06 | more | Theo de Raadt | |
1998-02-05 | ddb sysctl | Theo de Raadt | |
1998-02-05 | introduce /etc/sysctl.conf containing sysctl variables to change at boot time | Theo de Raadt | |