#
272461 |
|
02-Oct-2014 |
gjb |
Copy stable/10@r272459 to releng/10.1 as part of the 10.1-RELEASE process.
Approved by: re (implicit) Sponsored by: The FreeBSD Foundation |
#
272322 |
|
30-Sep-2014 |
delphij |
MFC r271493,271688-271689,271696,271854,272139-272143:
Import HyperV Key-Value Pair (KVP) driver and daemon code by Microsoft, many thanks for their continued support of FreeBSD.
While I'm there, also implement a new build knob, WITHOUT_HYPERV to disable building and installing of the HyperV utilities when necessary.
The HyperV utilities are only built for i386 and amd64 targets.
Approved by: re (gjb)
|
#
272152 |
|
26-Sep-2014 |
gjb |
Properly revert r272128.
Approved by: re (implicit) Sponsored by: The FreeBSD Foundation
|
#
272151 |
|
26-Sep-2014 |
gjb |
Revert r272149, which introduces obscure vestiges from the r272128 reversal.
Approved by: re (implicit) Sponsored by: The FreeBSD Foundation
|
#
272149 |
|
25-Sep-2014 |
gjb |
Revert r272128: Though this passes the buildworld test, this fails during installworld with:
make[3]: "/releng/scripts-release/chroots/10/i386/release/etc/devd/Makefile" line 13: Malformed conditional (${MK_HYPERV} != "no")
Approved by: re (implicit) Sponsored by: The FreeBSD Foundation
|
#
272128 |
|
25-Sep-2014 |
delphij |
MFC r271493,271688,271689,271696,271854:
Import HyperV Key-Value Pair (KVP) driver and daemon code by Microsoft, many thanks for their continued support of FreeBSD.
While I'm there, also implement a new build knob, WITHOUT_HYPERV to disable building and installing of the HyperV utilities when necessary.
The HyperV utilities are only built for i386 and amd64 targets.
Approved by: re (gjb)
|
#
269257 |
|
29-Jul-2014 |
des |
MFH (r266114, r266138): upgrade to latest ldns and unbound MFH (r266139-r266143, r266145, r266149, r266150): fix props MFH (r266179, r266180, r266193, r266238, r266777): misc cleanup MFH (r266863): create and use /var/unbound/conf.d MFH (r268839): import unblock-lan-zones patch from upstream MFH (r268840): fix reverse lookups on private networks MFH (r268883): avoid spamming source tree during build
PR: 190739 (for r268883)
|
#
258762 |
|
30-Nov-2013 |
delphij |
MFC r258664:
Create /var/cache with mode 0755 instead of 0750.
This directory is used by many third party applications and having permission 0750 makes it impossible to drop group privileges.
Approved by: re (glebius)
|
#
256281 |
|
10-Oct-2013 |
gjb |
Copy head (r256279) to stable/10 as part of the 10.0-RELEASE cycle.
Approved by: re (implicit) Sponsored by: The FreeBSD Foundation
|
#
255949 |
|
30-Sep-2013 |
des |
Remove BIND.
Approved by: re (gjb)
|
#
255794 |
|
22-Sep-2013 |
des |
Fix indentation.
Approved by: re (blanket)
|
#
255597 |
|
15-Sep-2013 |
des |
Build and install the Unbound caching DNS resolver daemon.
Approved by: re (blanket)
|
#
255243 |
|
05-Sep-2013 |
des |
authpf needs /var/authpf to exist and be writable by group authpf.
|
#
244770 |
|
28-Dec-2012 |
ume |
Fix location of /var/audit/dist and /var/audit/remote. Note that those who did installworld after r243752 should remove wrongly created /var/dist and /var/remote.
Reviewed by: pjd
|
#
243752 |
|
01-Dec-2012 |
rwatson |
Merge a number of changes required to hook up OpenBSM 1.2-alpha2's auditdistd (distributed audit daemon) to the build:
- Manual cross references - Makefile for auditdistd - rc.d script, rc.conf entrie - New group and user for auditdistd; associated aliases, etc.
The audit trail distribution daemon provides reliable, cryptographically protected (and sandboxed) delivery of audit tails from live clients to audit server hosts in order to both allow centralised analysis, and improve resilience in the event of client compromises: clients are not permitted to change trail contents after submission.
Submitted by: pjd Sponsored by: The FreeBSD Foundation (auditdistd)
|
#
219820 |
|
21-Mar-2011 |
jeff |
- Merge in OFED 1.5.3 from projects/ofed/head
|
#
212411 |
|
10-Sep-2010 |
bschmidt |
Create the var/run/wpa_supplicant directory where the wpa_supplicant RC script wants to save a pidfile for each interface.
MFC after: 2 weeks
|
#
200054 |
|
03-Dec-2009 |
cperciva |
Disable SSL renegotiation in order to protect against a serious protocol flaw. [09:15]
Correctly handle failures from unsetenv resulting from a corrupt environment in rtld-elf. [09:16]
Fix permissions in freebsd-update in order to prevent leakage of sensitive files. [09:17]
Approved by: so (cperciva) Security: FreeBSD-SA-09:15.ssl Security: FreeBSD-SA-09:16.rtld Security: FreeBSD-SA-09:17.freebsd-udpate
|
#
161748 |
|
31-Aug-2006 |
cperciva |
Add FreeBSD Update 2.0 client code. The build code is in the projects repository.
Sponsored by: FreeBSD security development fundraiser
|
#
155345 |
|
05-Feb-2006 |
rwatson |
Change group for /var/audit to audit, so that audit review can be delegated to non-administrators.
Obtained from: TrustedBSD Project
|
#
155197 |
|
01-Feb-2006 |
rwatson |
Add /var/audit, mode 750, which will hold audit trail files.
Obtained from: TrustedBSD Project
|
#
148871 |
|
08-Aug-2005 |
cperciva |
Add portsnap to the base system. This is a secure, easy to use, fast, lightweight, and generally good way for users to keep their ports trees up to date.
This is version 0.9.4 from the ports tree (sysutils/portsnap) with the following changes: 1. The experimental pipelined http code is enabled. No seatbelts in -CURRENT. (^_^) 2. The working directory has moved from /usr/local/portsnap to /var/db/portsnap (as discussed on -arch two days ago). 3. Portsnap now fetches a list of mirrors (distributed as DNS SRV records) and selects one randomly. This should help to avoid the uneven loading which plagues the cvsup mirror network. 4. The license is now 2-clause BSD instead of 3-clause BSD. 5. Various incidental changes to make portsnap fit into the base system's build mechanics.
X-MFC-After: 6.0-RELEASE X-MFC-Before: 5.5-RELEASE X-MFC-To: RELENG_6, RELENG_5, ports discussed on: -arch and several other places "yes please" from: simon, remko, flz, Diane Bruce thinks this is a great idea: bsdimp Hopes he didn't forget any files: cperciva
|
#
136552 |
|
15-Oct-2004 |
ru |
Remove a redundant "uname=root".
Forgotten by: dougb
|
#
135875 |
|
28-Sep-2004 |
dougb |
Create a named chroot directory structure in /var/named, and use it by default when named is enabled. Also, improve our default directory layout by creating /var/named/etc/namedb/{master|slave} directories, and use the former for the generated localhost* files.
Rather than using pax to copy device entries, mount devfs in the chroot directory.
There may be some corner cases where things need to be adjusted, but overall this structure has been well tested on a production network, and should serve the needs of the vast majority of users.
UPDATING has instructions on how to do the conversion for those with existing configurations.
|
#
124753 |
|
20-Jan-2004 |
eivind |
Add /var/db/ports/ (support directory necessary for ports that use the new OPTIONS infrastructure)
|
#
123051 |
|
29-Nov-2003 |
ru |
Scheduled sweep using the README guidelines.
Approved by: re (rwatson)
|
#
106403 |
|
04-Nov-2002 |
markm |
Restore /var/games; lots of ports' games use it.
|
#
105515 |
|
20-Oct-2002 |
markm |
Do not build the majority of the games. Remaining are the "utility-like" games and everyone's favourite, fortune(6).
|
#
98883 |
|
26-Jun-2002 |
sheldonh |
Revert previous delta, setting the system immutable flag on /var/empty instead of the user immutable flag, now that mergemaster handles schg directories in its /var/tmp/temproot.
|
#
98873 |
|
26-Jun-2002 |
sheldonh |
Tone down the previous delta: don't set the system immutable flag on /var/empty, because it makes it difficult for mergemaster(8) to remove /var/tmp/temproot/var.
|
#
98772 |
|
24-Jun-2002 |
sheldonh |
The previous delta introduced /var/empty, for use by openssh-portable, which needs an empty directory into which to chroot(2).
Hint to the operator that this directory really _should_ be empty by creating it with mode 0555 and the system immutable flag (schg) set.
Reviewed by: des
|
#
98699 |
|
23-Jun-2002 |
des |
Add /var/empty for the OpenSSH privsep code.
|
#
95144 |
|
20-Apr-2002 |
gshapiro |
In my continuing crusade to make life better for non-sendmail users, avoid the creation of /var/spool/clientmqueue and therefore the need for the smmsp user and group if NO_SENDMAIL is defined. This required breaking out the creation of the directory into a new BSD.sendmail.dist mtree file.
MFC after: 1 week
|
#
90805 |
|
17-Feb-2002 |
gshapiro |
Add /var/spool/clientmqueue for 8.12's non-set-user-ID root mail submission
|
#
86601 |
|
19-Nov-2001 |
ru |
Apply README style guidelines (this time checked).
|
#
86489 |
|
17-Nov-2001 |
guido |
Change mode for var/db/ipf to 0700
|
#
85916 |
|
02-Nov-2001 |
cjc |
Fix a bug I introduced yesterday. People who built world since the previous commit yesterday may wish to check /var/run for junk.
|
#
85848 |
|
01-Nov-2001 |
cjc |
Add a directory in /var/run to store ppp(8) command sockets.
PR: bin/29966 Approved by: brian MFC after: 4
|
#
85530 |
|
26-Oct-2001 |
ache |
Remove /var/spool/uucp subtree, not needed for 'cu'
|
#
85516 |
|
25-Oct-2001 |
ache |
The same unbreakage (0755 -> 0775) for /var/games and subdirs
|
#
85514 |
|
25-Oct-2001 |
ache |
Fix /var/mail, /var/rwho and /var/spool/lock back to 0775 Not sure about other dirs with the same damage (0755) by recent commit.
|
#
85484 |
|
25-Oct-2001 |
ru |
Style these once again.
|
#
85220 |
|
20-Oct-2001 |
darrenr |
Create /var/db/ipf
PR: 27070
|
#
84264 |
|
01-Oct-2001 |
kris |
Put back /var/spool/uucp so it can be used for serial port locking.
|
#
84252 |
|
01-Oct-2001 |
kris |
UUCP removal phase II. These directories are now created by the freebsd-uucp port.
|
#
82191 |
|
23-Aug-2001 |
kuriyama |
Invoke named with privilege of bind:bind. Change pidfile location to /var/run/named/pid.
|
#
80516 |
|
28-Jul-2001 |
markm |
Build standard directory for kerberos 5 (Heimdal) database.
|
#
78822 |
|
26-Jun-2001 |
nik |
Mention the path to the README file in the header comment.
Submitted by: Rich Morin <rdm@cfcl.com>
|
#
72515 |
|
15-Feb-2001 |
ru |
Apparently, people do not listen for a plea to look into the README file before making changes here. Fix them once again.
|
#
71014 |
|
14-Jan-2001 |
dougb |
Move the process of storing entropy from /dev/random and reseeding with it at boot time closer to the way we want it to be in the final version.
* Move the default directory to /var/db/entropy * Run the entropy saving cron job every 11 minutes. This seems to be a better default, although still bikeshed material. * Feed /dev/random some cheesy "entropy" from various commands and files before the disks are mounted. This gives /dev/random a better chance of running without blocking early. * Move the reseeding with previously stored entropy to the point immediately after the disks are mounted. * Make the harvesting script a little safer in regards to the possibility of accidentally overwriting something other than a regular file.
|
#
50472 |
|
27-Aug-1999 |
peter |
$Id$ -> $FreeBSD$
|
#
50296 |
|
24-Aug-1999 |
rgrimes |
This cleans up all the white space errors so that the next commit is easier to understand.
|
#
50203 |
|
23-Aug-1999 |
rgrimes |
Fix script in README to actually work, empty lines produce as much a diff as lines with the wrong stuff on it.
Add references in mtree data files to the README.
|
#
45186 |
|
31-Mar-1999 |
asami |
Explicitly specify mode 755 for /var/db/pkg -- it will be mode 700 otherwise.
|
#
45173 |
|
31-Mar-1999 |
asami |
Add /var/db/pkg.
Submitted by: John Hay <jhay@mikom.csir.co.za>
|
#
41855 |
|
16-Dec-1998 |
peter |
Old nit lying around in a source tree: Slightly optimize the number of uname/gname overrides and /sets.
|
#
39490 |
|
19-Sep-1998 |
obrien |
Simplify these now that default owner is root.wheel.
Partially reviewed by: bde
|
#
39161 |
|
14-Sep-1998 |
obrien |
Change file ownership from bin.bin to root.wheel.
|
#
30036 |
|
01-Oct-1997 |
ache |
/etc/opielocks -> /var/spool/opielocks
|
#
29807 |
|
24-Sep-1997 |
ache |
Disallow o+rwx for /var/games/hackdir hierarchy, it helps to make hack non-setuid back
|
#
29791 |
|
24-Sep-1997 |
ache |
Create missing /var/games/hackdir/save
|
#
28979 |
|
31-Aug-1997 |
eivind |
Change games from setuid games to setgid games.
Reviewed by: maybe@yes.no Obtained from: OpenBSD (mostly deraadt@openbsd.org)
|
#
27755 |
|
29-Jul-1997 |
ache |
Change /var/run owner to root - sendmail can't write sendmail.pid otherwise due to safeopen
|
#
25425 |
|
03-May-1997 |
jkh |
Change group ownership of /var/mail to mail and permission to 0775.
This does *not* instantly make any program which "ensures" mail spool consistency by creating lock files safe in any way since other tools, like mail.local, will be using flock() semantics and any such lock file will simply be ignored. It does, however, allow a lot of things which are currently suid root in order to create such bogus lockfiles to, at least, be bogus at a much lower level of privilege (and this is good). Ultimately, of course, everybody should just use flock.
|
#
23120 |
|
25-Feb-1997 |
mpp |
Larn needs /var/games/larn to exist so that it can create its scorefile. Closes PR# 1944.
|
#
23037 |
|
23-Feb-1997 |
peter |
Revert $FreeBSD$ to $Id$
|
#
21673 |
|
14-Jan-1997 |
jkh |
Make the long-awaited change from $Id$ to $FreeBSD$
This will make a number of things easier in the future, as well as (finally!) avoiding the Id-smashing problem which has plagued developers for so long.
Boy, I'm glad we're not using sup anymore. This update would have been insane otherwise.
|
#
18912 |
|
13-Oct-1996 |
joerg |
Uncomment the "raw" lp entry in /etc/printcap. We start lpd by default, so there's no use in running it without any printer definition in printcap. Also added a bunch of hints about the printer setup, to guide the admin about the printer setup (handbook, "apsfilter"), and a commented-out sample setup for a remote printer.
In the same line, add /var/spool/lpd/output to BSD.var.dist since it is referred to by the "lp" entry in printcap.
|
#
17829 |
|
25-Aug-1996 |
pst |
Fix buffer overrun, and run as nobody
|
#
12388 |
|
19-Nov-1995 |
ache |
Change owner of msgs to daemon, sendmail msgs alias not works in other case, sendmail change itself to daemon.daemon before executing program.
|
#
8571 |
|
17-May-1995 |
rgrimes |
Regenerate these using mtree -cdinx -kuname,gname,mode on a very recently built release after fixing all the wrong directory permissions in that release.
Then use diff -c -b to verify them against the old versions, nothing but new directories added :-). And a lot of alphabetizing done!
|
#
7769 |
|
12-Apr-1995 |
ache |
Fix "at" directories owner
|
#
6412 |
|
14-Feb-1995 |
jkh |
Make /var/yp. Suggested by: se
|
#
2878 |
|
18-Sep-1994 |
rgrimes |
These are mtree generated versions of these files using the new mtree options.
I will be updating these shortly to remove some old stuff and add some new stuff. These currently produce the exact same trees as they did.
|
#
2614 |
|
09-Sep-1994 |
rgrimes |
Secure /var/{backups, crash, and cron} by changing them to mode 750.
Reviewed by: davidg
|
#
2613 |
|
09-Sep-1994 |
rgrimes |
Fix missing .. before phantasia. Caused by incorectly adding a directory, you MUST add the directory name and the .. entry to close the directory.
If you do not understand mtree files, do not modify them, it is very easy to trash someones box with a mistake in here. Especially with regards to .. entries.
|
#
2612 |
|
09-Sep-1994 |
rgrimes |
Add the missing . entries to BSD.*.dist files.
New file BSD.release.dist is used for creating release area top level directories.
|
#
2586 |
|
08-Sep-1994 |
jkh |
Add /var/games/phantasia to list of targets, as per Rod's earlier suggestion. Submitted by: jkh
|
#
1658 |
|
31-May-1994 |
ache |
Mode 0775 for /var/spool/lock
|
#
1648 |
|
31-May-1994 |
ache |
Change /var/spool/uucp/* modes to 0775
|
#
1643 |
|
31-May-1994 |
ache |
Intruduce new group for uucp, gid 66 Change uucp directories group too Change "lock" directory group to "dialer" to allow various dialout applications to access it
|
#
1530 |
|
20-May-1994 |
jkh |
Gordon Burditt <gordon@sneaky.lonestar.org>
Fix ownership of catpages, make ~uucp/uucppublic really public.
|
#
1347 |
|
09-Apr-1994 |
ache |
mail a+rwxt changes backed out
|
#
1340 |
|
06-Apr-1994 |
ache |
Change default permission of /var/mail to 01777, because MUA must have s-bit in other case (security hole). This fix needed for procmail too, because procmail uses NFS-locks in /var/mail directory
|
#
1163 |
|
15-Feb-1994 |
rgrimes |
General cleanup for 1.1 release, mostly add zoneinfo stuff to BSD.usr.dist
|
#
956 |
|
08-Jan-1994 |
ache |
Add /var/at/jobs & /var/at/spool, remove /var/at/past
|
#
949 |
|
05-Jan-1994 |
nate |
Added directories needed for at/atrun
|
#
833 |
|
07-Dec-1993 |
nate |
We've got accounting, might as well have a directory for it.
|
#
273 |
|
10-Aug-1993 |
rgrimes |
Miss spelled backups in BSD.var.dist, should have been backups, was backup.
|
#
250 |
|
07-Aug-1993 |
rgrimes |
Added var/backup for daily scripts
|
#
204 |
|
27-Jul-1993 |
nate |
The updated mtree changed a couple things which required changes in the mtree files.
|
#
144 |
|
19-Jul-1993 |
rgrimes |
Updated BSD.*.dist files to reflect FreeBSD as it is now.
|
#
38 |
|
20-Jun-1993 |
rgrimes |
This commit was generated by cvs2svn to compensate for changes in r37, which included commits to RCS files with non-trunk default branches.
|
#
37 |
|
20-Jun-1993 |
rgrimes |
Initial import of 386BSD 0.1 othersrc/etc
|