summaryrefslogtreecommitdiff
path: root/etc/rc.securelevel
blob: f740e13e97b18d304d07df9a4473813027a9b412 (plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
#	$OpenBSD: rc.securelevel,v 1.6 1998/01/16 14:05:45 niklas Exp $
#
# site-specific startup actions, daemons, and other things which
# can be done BEFORE your system goes into securemode.  For actions
# which should be done AFTER your system has gone into securemode
# please see /etc/rc.local

# This is the desired security level
# XXX
# XXX it is not really acceptable to put this value in a configuration
# XXX file, because locking it down requires immutability on about
# XXX 5 files instead of 2 (the kernel and init)
# XXX
securelevel=1

echo 'starting pre-securelevel services:'

# Use traditional BSD semantics with chown(2)
#echo 'Enabling traditional BSD chown(2) semantics.'
#sysctl -w fs.posix.setuid=0 >/dev/null 2>&1

# To run an accellerated X server when securelevel > 0 we must use /dev/ap.
# NOTE: modload will panic your kernel if the booted kernel is not /bsd.
#if [ -x /sbin/modload -a -x /usr/lkm/apinstall -a -r /usr/lkm/ap.o ]; then
#	echo 'Installing XFree86 aperture driver.'
#	rm -f /usr/lkm/ap
#	modload -o /usr/lkm/ap -p /usr/lkm/apinstall -e ap /usr/lkm/ap.o
#fi

echo -n 'starting pre-securelevel daemons:'

# Former ntpd versions was called xntpd, change the ntpd references below
# to xntpd if you run such a version.
#if [ -x /usr/local/sbin/ntpd ]; then
#       /usr/local/sbin/tickadj -Aq
#       echo -n ' ntpd';       /usr/local/sbin/ntpd
#fi

echo '.'