summaryrefslogtreecommitdiff
path: root/etc
AgeCommit message (Collapse)Author
2017-04-17skip mtree creation of two include dirs. gcc3 may still use them, butTheo de Raadt
if so gcc3 should create them itself.
2017-04-16Remove /etc/ssl/acme/. We don't need it now that we have a default acme-conf(5)Antoine Jacoutot
that direclty uses /etc/ssl/{,private} by default. Adapt the httpd.conf example accordingly. ok florian@ benno@ millert@
2017-04-15Build full mandoc.db(5) databases by default using makewhatis(8)Ingo Schwarze
without -Q during the build and in weekly(8). According to tests by many developers, makewhatis(8) takes a few minutes at most even on slower hardware like octeon, loongson, ALIX, RPI3, Soekris, cubox, softiron etc., and security(8) is often worse than makewhatis(8). In case this causes excessive weekly(8) run times on even slower (~50 MHz-class) CPUs, consider adding "MAKEWHATISARGS=-Q" to /etc/weekly.local on machines that feel unhappy. OK sthen@ kettenis@ millert@ deraadt@
2017-04-14mark newish phony targets as phony.Marc Espie
okay tb@
2017-04-08- localize the if, file and stat variables which also ensures thatRobert Peichaer
variables are not named like commands. - change test from [] to [[]] OK tb@ halex@
2017-04-07Minimize differences in ifstart() function between netstart andRobert Peichaer
install.sub which makes it easier to spot changes in the future. - comments and formatting - quotes on assignments are not needed (netstart) - remove stray space in test (netstart) - use $file variable with while-loop (netstart) - although valid, instead of i use $i in arithmetic test (install.sub) OK krw@, tb@ Looks good deraadt@
2017-04-07Align comments of ifstart() function in netstart and install.sub.Robert Peichaer
2017-04-07Align comments of stripcom() function in netstart and install.sub.Robert Peichaer
2017-04-04cp -p the bootblocks to RELEASEDIR; ok tbTheo de Raadt
2017-04-01MDT...Theo de Raadt
2017-03-30add signify public keys for syspatch for the current and next releaseRobert Nagy
2017-03-29sync the version of the example package; ok deraadt@Christian Weisgerber
2017-03-25Boot using BIOS from /etc/firmware/vmm-bios by default.Reyk Floeter
Instead of using the internal "vmboot", VMs will now be booted using the external BIOS firmware in /etc/firmware/vmm-bios (which is subject to a LGPLv3 license). Direct booting of OpenBSD kernels or non-default BIOS images is still supported for now using the -b/boot option that is replacing the -k/kernel option. As requested by Theo, vmd(8) fails if neither the default BIOS is found nor a kernel has been specified in the VM configuration. The "vmm" BIOS has to be installed using fw_update(1), which will be done automatically in most cases where the OpenBSD can fetch it after install/upgrade. OK mlarkin@
2017-03-23Don't check for spamd_black twice in rc_pre and rc_start; just do everythingAntoine Jacoutot
in rc_pre. prodded by and ok jmc@, ok halex@
2017-03-22Improve manpage and config file to show the more common use case.Sebastian Benoit
from Nick Holland (nick AT holland-consulting DOT net) ok jmc@ florian@
2017-03-18add user for slaacd(8)Florian Obser
2017-03-17Enable dhcrelay6(8).Rafael Zalamena
ok deraadt@
2017-03-056.2 key for future packagesChristian Weisgerber
2017-03-05bump one more 2016Theo Buehler
2017-03-04fix date and mention installurl way of pkg_addTheo de Raadt
2017-03-046.2 key for future firmwareStuart Henderson
2017-03-04crank to 6.1-betaTheo de Raadt
2017-03-046.2 key for the futureTheo de Raadt
2017-03-02Add a new sysctl machdep.lidaction. The sysctl works as follows:Martin Natano
machdep.lidaction=0 # do nothing machdep.lidaction=1 # suspend machdep.lidaction=2 # hibernate lidsuspend is just an alias for lidaction, so if you change one, the other one will have the same value. The plan is to remove machdep.lidsuspend eventually when people have upgraded their /ets/sysctl.conf. discussed with deraadt, who came up with the new MIB name no objections mlarkin ok stsp halex jcs
2017-02-27Remove support for pkg.conf in light of the consolidation towardsRobert Peichaer
a single configuration file for the OpenBSD repository location. The pkg_* tools now use installurl(5) to find the package repository. NOTE: /etc/installurl only contains a single URL pointing to a mirror. Use the PKG_PATH environment variable to specify more than one package repository. prodded by and OK deraadt@ aja@
2017-02-26Switch to xenodm(1).Matthieu Herrb
Do it now deraadt@
2017-02-23syncStuart Henderson
2017-02-23syncStuart Henderson
2017-02-20syncStuart Henderson
2017-02-17Stop supporting the historical way of starting ypbind(8); that is settingAntoine Jacoutot
'ypbind_flags=""' when domainname is set and /var/yp/binding exists. This can lead to inconsistent behavior at startup since /var may not be mounted yet and /etc/rc's start_daemon() will not start ypbind. A.K.A. make ypbind startup consistent with all other OpenBSD daemons. ok deraadt@
2017-02-12Add /root/.ssh/authorized_keys to /etc/mtree/special so that security(8)Landry Breuil
checks for the correct mode/ownership. prodded by ajacoutot@
2017-02-12As it's done in /etc/skel for new regular users, create an emptyLandry Breuil
/root/.ssh/authorized_keys file with correct permissions (0600 for the file, 0700 for /root/.ssh dir). Since we encourage administrators to use public keys only if they want to access root account via ssh, might aswell make it easier, this will be particularly useful in managed/provisioned environments (think ansible & others). Note that administrators might get an e-mail from security(8) if the file suddenly appears after an update - this is of course expected :) ok tb@ sthen@ rpe@ ajacoutot@
2017-02-11Add an initial miniroot with bootaa64.efi on fat and bsd.rd on ffs.Jonathan Gray
2017-02-06List openfiles-max explicitly in default /etc/login.conf files. Otherwise,Stuart Henderson
raising openfiles-cur above the implicit -max value (1024 on at least the common arch) results in the setting not being applied at all. Earlier version OK tom@ danj@ ajacoutot@ benno@ krw@ beck@, suggestion about openfiles= from millert@ - changes in this version are to use 1024 for -max rather than 512 to avoid changing the existing hard limit, and just use openfiles= for bgpd/unbound where max and cur are the same value.
2017-02-02Use a single chown user:group instead of separate chown and chgrp.Robert Peichaer
OK tb@
2017-01-25+arm64Patrick Wildt
2017-01-24Add /etc/installurl to changelist.Antoine Jacoutot
ok deraadt@ rpe@
2017-01-24Whitespace.Antoine Jacoutot
2017-01-23Interpolate a 'make cleandir' if KEEPKERNELS is set to a non-empty string,Theo Buehler
right before building kernels. This should unbreak 'make release' for people having this setting. ok deraadt
2017-01-23regenMark Kettenis
2017-01-23Add /dev/openprom.Mark Kettenis
2017-01-21Default configuration file: use quotes for all files andSebastian Benoit
give a sensible example for the domain {} section. ok florian
2017-01-19Add the _syspatch user/group: an unprivileged user for syspatch(8) used to fetchAntoine Jacoutot
and verify patches. discussed with deraadt@ rpe@ ok deraadt@
2017-01-11Add empty sysctl.conf for arm64.Patrick Wildt
2017-01-11syncPatrick Wildt
2017-01-11Add support for OpenBSD/arm64.Patrick Wildt
2017-01-05syncStuart Henderson
2016-12-31syncKenji Aoyama
2016-12-31Add xp(4), LUNA's I/O processor entry.Kenji Aoyama
"No problem" deraadt@
2016-12-30resize some of the ramdisks and miniroots that can be larger.Theo de Raadt