Age | Commit message (Collapse) | Author | |
---|---|---|---|
2014-07-09 | do locatedb as part of the build process | Marc Espie | |
"works for me" deraadt@ | |||
2014-07-09 | Update the default relayd.conf with the new filtering grammar. | Reyk Floeter | |
OK benno@ | |||
2014-07-09 | I hate eval. Apart from when it's really needed. | Alexander Hall | |
Eval'ing constant expressions is not such a case. "...fine with me" krw@ | |||
2014-07-09 | Add a daemon_timeout variable for rc_wait(). | Antoine Jacoutot | |
It represents the maximum time in seconds to wait for the start, stop and reload actions to return. Defaults to "30". No default behavior is changed. ok beck@ sthen@ jasper@ giovanni@ | |||
2014-07-09 | White spaces. | Antoine Jacoutot | |
2014-07-02 | don't clear tmux session sockets in daily(8)'s tmp cleanup, from Rafael Zalamena | Stuart Henderson | |
ok schwarze@ | |||
2014-06-25 | ensure rc.d/nsd uses a correct exit code as per rc.subr(8); reported by | Stuart Henderson | |
Ben Lovett, simpler diff from aja@ | |||
2014-06-10 | Add ed25519 ssh host keys to /etc/mtree/special. | Todd C. Miller | |
From inframare at arachnogoat dot com; OK deraadt@ sthen@ | |||
2014-06-09 | add cron_flags which seemed to have been forgotten here. | Jasper Lievisse Adriaanse | |
ok aja@ dcoppa@ | |||
2014-06-06 | replace sendmail with smtpd in a comment | Gilles Chehade | |
reported by Scott McEachern <scott@blackstaff.ca> ok deraadt@ and todd@ | |||
2014-05-26 | remove /usr/src. avoids useless whining from daily security mail. | Alexander Hall | |
ok landry@ ajacoutot@ | |||
2014-05-22 | update nosuidcoredump example. mentioned by stefan wollny | Ted Unangst | |
2014-05-09 | wording improvements; David Vasek | Theo de Raadt | |
2014-05-08 | regen | Miod Vallat | |
2014-05-08 | Remove irrelevant devices from the ramdisk target; spotted by deraadt | Miod Vallat | |
2014-05-07 | pass daemon_flags to nsd-control when used to check/reload/stop nsd, | Stuart Henderson | |
the only useful option here is to specify an alternative config path, which must be used for these operations as well as for startup. | |||
2014-05-06 | don't give people bad ideas about pool_debug | Ted Unangst | |
2014-04-29 | tedu ~/.klogin | David Coppa | |
ok henning@ deraadt@ | |||
2014-04-28 | re-add _ppp for npppd here as well; ok ajacoutot | Okan Demirmen | |
2014-04-27 | Get back "_ppp" user and "_ppp" group. From now they will be solely | YASUOKA Masahiko | |
used by npppd. ok deraadt | |||
2014-04-25 | Redirecting stderr to /dev/null suppresses all errors. Instead use | Alexander Bluhm | |
the new status=none feature to make dd quiet. OK halex@ | |||
2014-04-24 | jmc spotted more ruptime tentacles | Ted Unangst | |
2014-04-24 | rm rwhod tentacles | Ted Unangst | |
2014-04-24 | regen | Kenji Aoyama | |
2014-04-24 | Add pcex{mem,io} entries to MAKEDEV. | Kenji Aoyama | |
ok miod@ | |||
2014-04-23 | Remove krb5 bits from rc(8). | Antoine Jacoutot | |
ok reyk@ | |||
2014-04-22 | Remove the kerberos login methods. | Reyk Floeter | |
ok henning@ | |||
2014-04-22 | Remove kerberosV, it is not special anymore. | Reyk Floeter | |
ok henning@ | |||
2014-04-22 | Remove kerberosV from etc/ | Reyk Floeter | |
ok deraadt@ guenther@ | |||
2014-04-21 | remove rshd example; ok sthen | Okan Demirmen | |
2014-04-21 | Bye bye *hosts.equiv. | Antoine Jacoutot | |
ok deraadt@ | |||
2014-04-20 | hosts.equiv is a ghost from bsd past | Ted Unangst | |
2014-04-19 | stop "advertising" disabling pmtud and window size increasing | Henning Brauer | |
very rarely if ever needed any more. we should not trick people into thinking they are impoving sth doing so, it's rather the opposite these days. ok claudio | |||
2014-04-19 | use "!received-on any" to absolutely ensure that we're not forwarding | Henning Brauer | |
carp, rpc or nfs traffic in the initial ruleset active during network startup for a short time (or a much longer time if /etc/pf.conf is screwed up). ok phessler | |||
2014-04-18 | Switch to the new makewhatis(8)/apropos(1)/whatis(1) combo. | Ingo Schwarze | |
"commit the switch now" espie@ "go for it" deraadt@ See the apropos(1) manual for a description of what's new. On machines where you want the full functionality, run "sudo makewhatis" and put "MAKEWHATISARGS=' '" into weekly.local(8). Otherwise, when upgrading via source, run "sudo makewhatis -Q". | |||
2014-04-11 | Move build machinery for libcrypto from libssl/crypto to libcrypto, as well | Miod Vallat | |
as configuration files; split manpages and .pc files between libcrypto and libssl. No functional change, only there to make engineering easier, and libcrypto sources are still found in libssl/src/crypto at the moment. ok reyk@, also discussed with deraadt@ beck@ and the usual crypto suspects. | |||
2014-04-03 | regen | Miod Vallat | |
2014-04-03 | Add wskbd nodes to the bsd.rd /dev posse; allows kbd -l to work as intended | Miod Vallat | |
in the install media. Reported by Donovan Watteau | |||
2014-04-02 | Fix syntax error in commented out local-zone entry. OK sthen@ | Todd C. Miller | |
2014-03-30 | increase size of iso media (try 2) | Theo de Raadt | |
2014-03-30 | increase size of iso media | Theo de Raadt | |
2014-03-27 | do not keep hoststat and purgestat, they are pointing to the sendmail | Gilles Chehade | |
executable and will not serve any purpose with smtpd by default ok jmc@ tedu@ | |||
2014-03-26 | end experimental login.conf template support. one file per machine. | Ted Unangst | |
ok deraadt millert | |||
2014-03-24 | sum -> cksum, ok deraadt | Stuart Henderson | |
2014-03-24 | okan reminds me hosts.allow lived here too | Ted Unangst | |
2014-03-24 | Stop monitoring apache files. | Antoine Jacoutot | |
ok florian@ jung@ sthen@ | |||
2014-03-24 | Add /var/unbound/dev/log, it isn't needed for initial startup because Unbound | Stuart Henderson | |
opens the log before chrooting, but this handles the case where syslogd is restarted during Unbound's runtime. | |||
2014-03-23 | Remove commented-out module-config line, it is already set to "validator | Stuart Henderson | |
iterator" by default. Pointed out by Patrik Lundin. | |||
2014-03-21 | Add nginx default log files to the rotation. | Antoine Jacoutot | |
ok jung@ stephan@ tweaks and ok sthen@ | |||
2014-03-21 | Install a /var/unbound/db directory, writable by the _unbound daemon, | Stuart Henderson | |
and use it as the default location for the DNSSEC root key. Update default config for this location. With this, the only step required to enable DNSSEC validation is to uncomment these default config entries and restart: #module-config: "validator iterator" #auto-trust-anchor-file: "/var/unbound/db/root.key" There is no longer a requirement to run unbound-anchor manually to update the root key. The rc.d script will take care of updates at boot, and Unbound will manage the file itself at runtime. Test with "dig test.dnssec-or-not.net txt @127.0.0.1" or similar. |