| Age | Commit message (Collapse) | Author |
|---|
|
|
|
On a real mailserver, it's too noisy and may be a privacy concern.
On a machine that's not a mailserver, it's pointless.
Besides, Theo points out that running subsystems that potentially
parse untrusted user data daily, at a predictable time, as root
is not a very good idea in the first place.
Suggested by millert@; gilles@ matthieu@ deraadt@ sthen@ agree
|
|
unused for now, but I plan to convert all programs in base to use it in
a future diff. /dev/bpf0 is for compatibility with existing binaries
and is to be removed after a transition period.
ok rpe krw, for the installer part
"Let's see it hit the tree." deraadt
|
|
portmap isn't happy with it as reported by naddy@
|
|
We'll see if something else breaks but it's the right thing to do.
discussed with robert@
|
|
|
|
chance to update the *default* configuration of the important daemons.
Factorize rc.firsttime into a run_upgrade_script() function which takes the
script suffix name as an argument.
i.e. run_upgrade_script sysmerge / run_upgrade_script firsttime
discussed with deraadt@
ok deraadt@ rpe@
|
|
does start as root but does not have a root master process and instead
changed its uid.
reported by deraadt@
|
|
Noted by zhuk@
OK deraadt@
|
|
|
|
It works by adding daemon_rtable=$id in /etc/rc.conf.local.
rcctl(8) support coming in a few and so are the man pages bits.
If you want multiple instances of the same daemon running in different
routing tables, just symlink the original rc.d script.
e.g.
# cd /etc/rc.d && ln -s dhcpd dhcpd42
Then enable your daemons as such in rc.conf.local:
dhcpd_flags=
dhcpd42_flags=
dhcpd42_rtable=42
most work done by Jiri B <jirib@devio.us>; with a few tweaks and simplifications
by yours truly
ok robert@
... should make henning happy ;-)
|
|
daemon_class, daemon_flags, daemon_timeout, daemon_user, pexp
Add "pexp" as a valid variable to _rc_parse_conf() and sort the list while here.
Besides having an easy way to see how a daemon was started exactly, it opens the
door to rdomain/rtable support in rc.d(8). We need to have as much information
on a daemon as possible if we want to target a specific rtable (using -T) and it
also makes it easier to start multiple instances of the same daemon with similar
flags as a different user...
Of course that only works with rc.d scripts *not* overwritting the default rc_*
functions.
Man page tweaks coming later.
discussed with and ok robert@
|
|
order.
with shell script assistance from rpe
|
|
|
|
|
|
|
|
|
|
CUPS wants it to be a symlink, and that is probably the most common
printing system. Bad idea to constantly spam everybody about that!
Antoine already adjusted the file permissions in pkg/cupsd.rc rev. 1.24.
OK ajacoutot@ (print/cups MAINTAINER).
|
|
ok martijn@ semarie@ matthieu@ danj@ benno@
|
|
ok sthen@
|
|
|
|
|
|
|
|
from ian@
|
|
prodded by matthieu@
ok millert@ jung@ sthen@
|
|
|
|
a -reject route can be added. Restores the ability to set an interface route
before daemons are started, lost during the previous simplification.
ok millert mpi
|
|
ok robert@
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
lots of agreement.
|
|
won't complain in the daily(8) mail.
ok ajacoutot@
|
|
Add /var/spool/output/lpd to mtree(1).
This removes the ability for the daemon group to write directly under
/var/spool/output; though no breakage is expected since this directory was only
supposed to contain line printer spooling directories.
ok sthen@
|
|
which was a "better than nothing" measure for 5.9.
Another user to come. Approved by deraadt@ on principle.
thanks sthen@ for checking my lines over.
|
|
Remove machdep.userldt sysctl.
Remove i386_[gs]et_ldt syscall stub from libi386.
Remove i386_[gs]et_ldt regression test.
ok mlarkin@ millert@ guenther@
|
|
|
|
emulations left; ok millert@ deraadt@, jmc@ (man pages)
|
|
creation of maillog as part of the distribution-etc-root-var target
was missed. From Nathanael Rensen
|
|
|
|
|
|
titles (including flags) to distinguish between daemons, this makes it
possible to manage multiple copies of a daemon using the normal infrastructure
by symlinking rc.d scripts to a new name. ok jung@ ajacoutot@,
missed in previous commit noticed after re-checking following report in bgpd.
|
|
titles (including flags) to distinguish between daemons, this makes it
possible to manage multiple copies of a daemon using the normal infrastructure
by symlinking rc.d scripts to a new name. ok jung@ ajacoutot@,
missed in previous commit, problem reported by mxb/alumni/chalmers/se.
|
|
|
|
|
