| Age | Commit message (Collapse) | Author |
|---|
|
|
|
confused a few people
ok eric@
|
|
recipient, the local domain is assumed. this was correctly handled at the
smtp level, but headers were not updated to reflect that.
issue experienced by several people, fix tested by ajacoutot@ and I
ok eric@
|
|
They are not supposed to be exposed.
ok gilles@
|
|
Don't fetch SHA256 twice when we are updating from the same repo.
Better output.
Simplify extract_set (becomes extract_sets and deal with all sets at once).
Make sure we cannot pass -s xetcXX and/or -x etcXX.
Bring consistency in condition evaluations.
Drop some unused variables.
with inputs from rpe@
|
|
will cause the parent process to wake up unnecessarily at runtime
ok eric@
|
|
|
|
never heard about it, it was to bypass the routing tables, not available
for IPv6 and we're going to always use the routing tables soon.
ok florian@, man pages ok jmc@
|
|
is only implemented for IPv4. Just remove it.
Tested by and ok florian@
|
|
ok florian@
|
|
in there.
|
|
|
|
distribution-etc-root-var target; otherwise mtree(8) can fail.
issue reported and debugged by deraadt@
ok sthen@
|
|
all processes from waking up every second
|
|
|
|
command for npppctl(8) to monitor PPP session start/stop events.
|
|
assert is disabled by compile time, the function returns immediatly on that
condition.
|
|
a user authentication is succeeded in case the authentication config option
has `username-suffix' and 'strip-atmark-realm' is yes. Delete
`username-prefix' from authentication setting. This config option was
mis-leading and useless.
|
|
Framed-IP-Address. acct_framed_ip_address should be used for that purpose.
|
|
|
|
|
|
support in 2007 (Windows Vista); requires MD4, which will be removed.
ok sthen@
|
|
|
|
|
|
and use it as the default location for the DNSSEC root key. Update default
config for this location.
With this, the only step required to enable DNSSEC validation is to
uncomment these default config entries and restart:
#module-config: "validator iterator"
#auto-trust-anchor-file: "/var/unbound/db/root.key"
There is no longer a requirement to run unbound-anchor manually to
update the root key. The rc.d script will take care of updates at boot,
and Unbound will manage the file itself at runtime.
Test with "dig test.dnssec-or-not.net txt @127.0.0.1" or similar.
|
|
information for people writing nginx configuration.
- remove commented-out "ssl_protocols SSLv3 TLSv1" line; nginx default is
"SSLv3 TLSv1 TLSv1.1 TLSv1.2", so uncommenting this line removes desirable
protocols
ok robert@
|
|
ok sthen@ rpe@
|
|
sendmail.8 note by jmc
|
|
|
|
--
Sync timestamp changes for inodes of special files to disk as late
as possible (when the inode is reclaimed). Temporarily only do
this if option UFS_LAZYMOD configured and softupdates aren't enabled.
UFS_LAZYMOD is intentionally left out of /sys/conf/options.
This is mainly to avoid almost useless disk i/o on battery powered
machines. It's silly to write to disk (on the next sync or when the
inode becomes inactive) just because someone hit a key or something
wrote to the screen or /dev/null.
--
Made lazy syncing of timestamps for special files non-optional.
--
Also, include support in 'pstat -v' to display the IN_LAZYMOD flag.
ok tedu@ millert@
|
|
this hardware alive is becoming increasingly difficult, and I should heed the
message sent by the three disks which have died on me over the last few days.
Noone sane will mourn these ports anyway. So long, and thanks for the fish.
|
|
(and if you're wondering about the unused extra parameter, this is
designed to allow a new makewhatis that shares more code with pkg_create)
|
|
|
|
us time and if the sets are signed we can assume they are legit (yes, I am
an assumer).
|
|
block of code to run on both father&child sides, thus making our system
more useful around pipes...
Also zap two "my $_" on while(<>) to prepare for new perl.
|
|
creating temporary files.
for checking, use the "embedded sig" format to avoid writing to two
distinct pipes from the same process (tedu@ reluctantly agrees)
|
|
Previously "arp -V 1 -d 10.0.0.1" would hang forever since while the
target rdomain was passed in the rtm, the AF_ROUTE socket was always
created in the rdomain 0. Due to the logic in route_input (rtsock.c)
route socket's rdomain is compared against the target rdomain of the
request and reply is generated only when they match. In our case
rdomains were different which cased arp(8) to hang waiting for the
reply that would never be sent.
ok deraadt
|
|
data twice.
From rivo nurges ris _AT_ estpak _DOT_ ee, thanks!
OK sthen
|
|
OK benno
|
|
While there drop the !nflag check as it's never called with nflag set,
simplify the code a bit and adapt style from traceroute.
OK benno
|
|
OK benno
|
|
only if we have at least one unreachable; from traceroute
OK benno
|
|
OK lteo, benno
|
|
set rcvhlim to zero.
OK lteo, benno
|
|
traceroute does.
Immediatly reclaim -l flag to print hop limit of received pkg like
traceroute does.
OK benno
|
|
|
|
|
|
tree results in one-true-ppp not coming into existance. This code is
essentially un-audited and quite dangerous.
ok claudio sthen
|
|
/cgi-bin SCRIPT_NAME doesn't cut it. The spec says: "The SCRIPT_NAME
variable MUST be set to a URL path". Use SCRIPT_FILENAME which can be
an absolute filesystem path for these cases and fall back to using
SCRIPT_NAME if SCRIPT_FILENAME is not present.
Details how to handle this worked out by jturner and sthen.
Based on an erlier diff by jturner.
Tested by jturner
OK jturner, sthen
|
|
|
