Attachment #16717 for bug #30546

View | Details | Raw Unified | Return to bug 30546
Collapse All | Expand All





start_dhcp() {
	stop_dhcp
	if [ `basename ${dhcp_program}` = "dhclient" ]; then
		pidfile="/var/run/dhclient.${interface}.pid"
		dhcp_flags="${dhcp_flags} -pf ${pidfile}"
			dhcp_flags="${dhcp_flags} -pf ${pidfile}"
		fi
		${dhcp_program} ${dhcp_flags} ${interface}
	else
		echo "${dhcp_program}: DHCP client software not available"
	fi
	${dhcp_program} ${dhcp_flags} ${interface}
}

# Suck in the configuration variables




# to setup diskless on the client and the server.
#
if [ -r /etc/rc.diskless1 ]; then
	dlv=`sysctl -n vfs.nfs.diskless_valid 2> /dev/null`
	if [ ${dlv:=0} != 0 ]; then
		. /etc/rc.diskless1
	fi


	rm -f /var/run/log
	echo -n ' syslogd';
	${syslogd_program:-syslogd} ${syslogd_flags}
	;;
esac


	;;
*)
	if [ -e "${dumpdev}" -a -d /var/crash ]; then
		dumpon -v ${dumpdev}
		echo -n 'Checking for core dump: '
		savecore ${savecore_flags} /var/crash
	fi
	;;
esac

# Make shared lib searching a little faster.  Leave /usr/lib first if you
# add your own entries or you may come to grief.
#
ldconfig="ldconfig"
case ${ldconfig_insecure} in
[Yy][Ee][Ss])
	ldconfig="${ldconfig} -i"
	;;
esac
case `objformat` in
elf)
	_LDC=/usr/lib
	for i in ${ldconfig_paths}; do
		if [ -d "${i}" ]; then
			_LDC="${_LDC} ${i}"
		fi
	done
	echo 'ELF ldconfig path:' ${_LDC}
	${ldconfig} -elf ${_LDC}
	;;
esac
	esac

# Legacy aout support for i386 only
case `sysctl -n hw.machine` in
i386)
	# Default the a.out ldconfig path.
	: ${ldconfig_paths_aout=${ldconfig_paths}}
	_LDC=/usr/lib/aout
	for i in ${ldconfig_paths_aout}; do
		if [ -d "${i}" ]; then
			_LDC="${_LDC} ${i}"
		fi
	done
	echo 'a.out ldconfig path:' ${_LDC}
	${ldconfig} -aout ${_LDC}
	;;
esac
fi

# Now start up miscellaneous daemons that don't belong anywhere else
#

[Nn][Oo])
	;;
*)
	echo -n ' inetd';	${inetd_program:-inetd} ${inetd_flags}
	;;
esac


[Nn][Oo])
	;;
*)
	echo -n ' cron';	${cron_program:-cron} ${cron_flags}
	;;
esac

case ${lpd_enable} in
[Yy][Ee][Ss])
	echo -n ' printer';	${lpd_program:-lpd} ${lpd_flags}
	;;
esac

case ${sshd_enable} in
[Yy][Ee][Ss])
	echo -n ' sshd';	${sshd_program:-sshd} ${sshd_flags}
		echo -n ' sshd';
		${sshd_program:-/usr/sbin/sshd} ${sshd_flags}
	fi
	;;
esac

case ${usbd_enable} in
[Yy][Ee][Ss])
	echo -n ' usbd';	usbd ${usbd_flags}
	;;
esac

case ${sendmail_enable} in
[Yy][Ee][Ss])
	echo -n ' sendmail';	sendmail ${sendmail_flags}
	;;
*)
	case ${sendmail_outbound_enable} in
	[Yy][Ee][Ss])
		echo -n ' sendmail'
		sendmail ${sendmail_outbound_flags}
		;;
	*)
		case ${sendmail_outbound_enable} in
		[Yy][Ee][Ss])
			echo -n ' sendmail'
			/usr/sbin/sendmail ${sendmail_outbound_flags}
			;;
		esac
		;;
	esac
	;;
esac

echo '.'





}

mount_md() {
	mount_mfs -s $1 -T qp120at dummy $2
}

# DEBUGGING


mount_md 4096 /etc 0
chkerr $? "MFS mount on /etc"
chmod 755 /etc

cp -Rp /conf/default/etc/* /etc
chkerr $? "cp /conf/default/etc to /etc MFS"

# Allow for override files to replace files in /etc.  Use /conf/*/etc




	if [ -n "$4" ]; then
		bpi="-i $4"
	fi
	mount_mfs -s $1 -T qp120at $bpi dummy $2
}

# If there is a global system configuration file, suck it in.

mount_md ${varsize:=65536} /var 1

echo "+++ populate /var using /etc/mtree/BSD.var.dist"
mtree -deU -f /etc/mtree/BSD.var.dist -p /var

echo "+++ create log files based on the contents of /etc/newsyslog.conf"
LOGFILES=`awk '$1 != "#" { printf "%s ", $1 } ' /etc/newsyslog.conf`
if [ -n "$LOGFILES" ]; then
	touch $LOGFILES
fi

mount -a       # chown and chgrp are in /usr

Lines 85-94 Link Here

(-)rc.firewall (-2 / +2 lines)
85	#	85	#
86	case ${firewall_quiet} in	86	case ${firewall_quiet} in
87	[Yy][Ee][Ss])	87	[Yy][Ee][Ss])
88	fwcmd="/sbin/ipfw -q"	88	fwcmd="ipfw -q"
89	;;	89	;;
90	*)	90	*)
91	fwcmd="/sbin/ipfw"	91	fwcmd="ipfw"
92	;;	92	;;
93	esac	93	esac
94		94

Lines 58-67 Link Here

(-)rc.firewall6 (-2 / +2 lines)
58	#	58	#
59	case ${ipv6_firewall_quiet} in	59	case ${ipv6_firewall_quiet} in
60	[Yy][Ee][Ss])	60	[Yy][Ee][Ss])
61	fw6cmd="/sbin/ip6fw -q"	61	fw6cmd="ip6fw -q"
62	;;	62	;;
63	*)	63	*)
64	fw6cmd="/sbin/ip6fw"	64	fw6cmd="ip6fw"
65	;;	65	;;
66	esac	66	esac
67		67





	# Check for pcvt driver (VT100/VT220 emulator)
	#
	if ispcvt; then
		# No vidcontrol if we are using pcvt
		#
		isdn_screenflags=NO
			isdn_screenflags=NO
		fi
	fi

	case ${isdn_flags} in


	# Start the isdn daemon
	#
	echo -n ' isdnd'
	case ${isdn_fsdev} in
	[Nn][Oo] | '')
		isdnd ${isdn_flags}
		;;
	*)
		# Change vidmode of ${isdn_fsdev}
		#
		case ${isdn_screenflags} in
		[Nn][Oo])
			;;
		*)
			vidcontrol < ${isdn_fsdev} > ${isdn_fsdev} 2>&1 ${isdn_screenflags}
			#
			case ${isdn_screenflags} in
			[Nn][Oo])
				;;
			*)
				if [ -x /usr/sbin/vidcontrol ]; then
					/usr/sbin/vidcontrol < ${isdn_fsdev} > ${isdn_fsdev} 2>&1 ${isdn_screenflags}
				fi
				;;
			esac

			/usr/sbin/isdnd ${isdn_flags} -f -r ${isdn_fsdev} -t ${isdn_ttype}
			;;
		esac

		isdnd ${isdn_flags} -f -r ${isdn_fsdev} -t ${isdn_ttype}
		;;
	esac

	# Start isdntrace
	#
	case ${isdn_trace} in
	[Yy][Ee][Ss])
		echo -n ' isdntrace'
		nohup isdntrace ${isdn_traceflags} >/dev/null 2>&1 &
			nohup /usr/sbin/isdntrace ${isdn_traceflags} >/dev/null 2>&1 &
		fi
		;;
	esac





	# Establish ipfilter ruleset as early as possible (best in
	# addition to IPFILTER_DEFAULT_BLOCK in the kernel config file)
	#
	if ipfstat -i > /dev/null 2>&1; then
		ipfilter_in_kernel=1
	else
		ipfilter_in_kernel=0


		if [ -r "${ipfilter_rules}" ]; then
			echo -n ' ipfilter';
			${ipfilter_program:-ipf -Fa -f} \
			    "${ipfilter_rules}" ${ipfilter_flags}
			case "${ipmon_enable}" in
			[Yy][Ee][Ss])
				echo -n ' ipmon'
				${ipmon_program:-ipmon} ${ipmon_flags}
				;;
			esac
			case "${ipnat_enable}" in
			[Yy][Ee][Ss])
				if [ -r "${ipnat_rules}" ]; then
					echo -n ' ipnat';
				eval ${ipnat_program:-ipnat -CF -f} \
					"${ipnat_rules}" ${ipnat_flags}
				else
					echo -n ' NO IPNAT RULES'

	done

	if [ ! -z "${dhcp_interfaces}" ]; then
		${dhcp_program:-dhclient} ${dhcp_flags} ${dhcp_interfaces}
	fi

	for ifn in ${network_interfaces}; do

			ppp_mode="auto"
		fi

		ppp_command="ppp -quiet -${ppp_mode}"

		# Switch on NAT mode?
		#


	# Initialize IP filtering using ipfw
	#
	if ipfw -q flush > /dev/null 2>&1; then
		firewall_in_kernel=1
	else
		firewall_in_kernel=0

				case ${natd_enable} in
				[Yy][Ee][Ss])
					if [ -n "${natd_interface}" ]; then
						if echo ${natd_interface} |
							egrep -q '^[0-9]+\.[0-9]+\.[0-9]+\.[0-9]+$'; then
							natd_ifarg="-a ${natd_interface}"
						else
							natd_ifarg="-n ${natd_interface}"
						fi

						echo -n ' natd'
						${natd_program:-natd} ${natd_flags} ${natd_ifarg}
					fi
					;;
				esac


	case ${portmap_enable} in
	[Yy][Ee][Ss])
		echo -n ' portmap';	${portmap_program:-portmap} ${portmap_flags}
		;;
	esac


	[Yy][Ee][Ss])
		if [ ! -f /etc/ssh/ssh_host_key ]; then
			echo ' creating ssh RSA host key';
			ssh-keygen -N "" -f /etc/ssh/ssh_host_key
		fi
		if [ ! -f /etc/ssh/ssh_host_dsa_key ]; then
			echo ' creating ssh DSA host key';
			ssh-keygen -d -N "" -f /etc/ssh/ssh_host_dsa_key
		fi
		;;
	esac

Lines 39-45 Link Here

(-)rc.network6 (-1 / +1 lines)
39		39
40	# Initialize IP filtering using ip6fw	40	# Initialize IP filtering using ip6fw
41	#	41	#
42	if /sbin/ip6fw -q flush > /dev/null 2>&1; then	42	if ip6fw -q flush > /dev/null 2>&1; then
43	ipv6_firewall_in_kernel=1	43	ipv6_firewall_in_kernel=1
44	else	44	else
45	ipv6_firewall_in_kernel=0	45	ipv6_firewall_in_kernel=0




### Basic network and firewall/security options: ###
hostname=""			# Set this!
nisdomainname="NO"		# Set to NIS domain if using NIS (or NO).
dhcp_program="dhclient"		# Path to dhcp client program.
dhcp_flags=""			# Additional flags to pass to dhcp client.
firewall_enable="NO"		# Set to YES to enable firewall functionality
firewall_script="/etc/rc.firewall" # Which script to run to set up the firewall

ip_portrange_last="NO"		# Set last dynamically allocated port
ipsec_enable="NO"		# Set to YES to run setkey on ipsec_file
ipsec_file="/etc/ipsec.conf"	# Name of config file for setkey
natd_program="natd"		# path to natd, if you want a different one.
natd_enable="NO"                # Enable natd (if firewall_enable == YES).
natd_interface="fxp0"           # Public interface or IPaddress to use.
natd_flags=""                   # Additional flags for natd.
ipfilter_enable="NO"		# Set to YES to enable ipfilter functionality
ipfilter_program="ipf -Fa -f"	# program and how to specify the rules file,
				# program and how to specify the rules file,
				# see /etc/rc.network (pass1) for details
ipfilter_rules="/etc/ipf.rules"	# rules definition file for ipfilter, see
				# /usr/src/contrib/ipfilter/rules for examples

				# (i.e. compiled into the kernel) to
				# avoid a warning about "already initialized"
ipnat_enable="NO"		# Set to YES for ipnat; needs ipfilter, too!
ipnat_program="ipnat -CF -f"	# program and how to specify rules file
ipnat_rules="/etc/ipnat.rules"	# rules definition file for ipnat
ipnat_flags=""			# additional flags for ipnat
ipmon_enable="NO"		# Set to YES for ipmon; needs ipfilter, too!
ipmon_program="ipmon"		# where the ipfilter monitor program lives
ipmon_flags="-Ds"		# typically "-Ds" or "-D /var/log/ipflog"
tcp_extensions="YES"		# Set to NO to turn off RFC1323 extensions.
log_in_vain="NO"		# YES to log connects to ports w/o listeners.


### Network daemon (miscellaneous) & NFS options: ###
syslogd_enable="YES"		# Run syslog daemon (or NO).
syslogd_program="syslogd"	# path to syslogd, if you want a different one.
syslogd_flags="-s"		# Flags to syslogd (if enabled).
inetd_enable="YES"		# Run the network daemon dispatcher (or NO).
inetd_program="inetd"		# path to inetd, if you want a different one.
inetd_flags="-wW"		# Optional flags to inetd
#
# named.  It may be possible to run named in a sandbox, man security for

nfs_bufpackets="DEFAULT"	# bufspace (in packets) for client (or DEFAULT)
rpc_lockd_enable="NO"		# Run NFS rpc.lockd (*broken!*) if nfs_server.
rpc_statd_enable="YES"		# Run NFS rpc.statd if nfs_server (or NO).
portmap_enable="NO"		# Run the portmapper service (or YES).
portmap_program="portmap"	# path to portmap, if you want a different one.
portmap_flags=""		# Flags to portmap (if enabled).
rpc_ypupdated_enable="NO"	# Run if NIS master and SecureRPC (or NO).
keyserv_enable="NO"		# Run the SecureRPC keyserver (or NO).

pppoed_flags="-P /var/run/pppoed.pid"	# Flags to pppoed (if enabled).
pppoed_interface="fxp0"		# The interface that pppoed runs on.
sshd_enable="NO"                # Enable sshd
sshd_program="sshd"		# path to sshd, if you want a different one.
sshd_flags=""                   # Additional flags for sshd.

### Network Time Services options: ###

ipxrouted_enable="NO"		# Set to YES to run the IPX routing daemon.
ipxrouted_flags=""		# Flags for IPX routing daemon.
arpproxy_all="NO"	       	# replaces obsolete kernel option ARP_PROXYALL.
forward_sourceroute="NO"	# do source routing if gateway_enable is YES
accept_sourceroute="NO"		# accept source routed packets to us

### ATM interface options: ###

#ipv6_route_xxx="fec0:0000:0000:0006:: -prefixlen 64 ::1"
ipv6_gateway_enable="NO"	# Set to YES if this host will be a gateway.
ipv6_router_enable="NO"		# Set to YES to enable an IPv6 routing daemon.
ipv6_router="route6d"		# Name of IPv6 routing daemon.
ipv6_router_flags=""		# Flags to IPv6 routing daemon.
#ipv6_router_flags="-l"		# Example for route6d with only IPv6 site local
				# addrs.

				# IPv6 default router for local subnets.
rtadvd_interfaces=""		# Interfaces rtadvd sends RA packets.
mroute6d_enable="NO"		# Do IPv6 multicast routing.
mroute6d_program="pim6dd"	# Name of IPv6 multicast routing daemon.
					# daemon.
mroute6d_flags=""		# Flags to IPv6 multicast routing daemon.
stf_interface_ipv4addr=""	# Local IPv4 addr for 6to4 IPv6 over IPv4
				# tunneling interface. Specify this entry

##############################################################

cron_enable="YES"	# Run the periodic job daemon.
cron_program="cron" 	# Which cron executable to run (if enabled).
cron_flags="" 		# Which options to pass to the cron daemon.
lpd_enable="NO"		# Run the line printer daemon.
lpd_program="lpd"	# path to lpd, if you want a different one.
lpd_flags=""		# Flags to lpd (if enabled).
usbd_enable="NO"	# Run the usbd daemon.
usbd_flags=""		# Flags to usbd (if enabled).
sendmail_enable="YES"	# Run the sendmail inbound daemon (or NO).
sendmail_flags="-bd -q30m"	# Flags to sendmail (if enabled)
sendmail_outbound_enable="NO"	# Dequeue stuck mail (or YES).
sendmail_outbound_flags="-q30m" # Flags to sendmail (outbound only)
dumpdev="NO"		# Device name to crashdump to (or NO).
savecore_flags=""	# Used if dumpdev is enabled above, and present.
enable_quotas="NO"      # turn on quotas on startup (or NO).
check_quotas="YES"	# Check quotas on startup (or NO).
accounting_enable="NO"	# Turn on process accounting (or NO).

kern_securelevel_enable="NO"	# kernel security level (see init(8)), 
kern_securelevel="-1"	# range: -1..3 ; `-1' is the most insecure
update_motd="YES"	# update version info in /etc/motd (or NO)
start_vinum="NO"	# set to YES to start vinum
unaligned_print="YES"	# print unaligned access warnings on the alpha (or NO).

##############################################################

Return to bug 30546

Lines 58-64 Link Here

(-)rc (-54 / +46 lines)
58	# to setup diskless on the client and the server.	58	# to setup diskless on the client and the server.
59	#	59	#
60	if [ -r /etc/rc.diskless1 ]; then	60	if [ -r /etc/rc.diskless1 ]; then
61	dlv=`/sbin/sysctl -n vfs.nfs.diskless_valid 2> /dev/null`	61	dlv=`sysctl -n vfs.nfs.diskless_valid 2> /dev/null`
62	if [ ${dlv:=0} != 0 ]; then	62	if [ ${dlv:=0} != 0 ]; then
63	. /etc/rc.diskless1	63	. /etc/rc.diskless1
64	fi	64	fi
Lines 365-371 Link Here
365		365
366	rm -f /var/run/log	366	rm -f /var/run/log
367	echo -n ' syslogd';	367	echo -n ' syslogd';
368	${syslogd_program:-/usr/sbin/syslogd} ${syslogd_flags}	368	${syslogd_program:-syslogd} ${syslogd_flags}
369	;;	369	;;
370	esac	370	esac
371		371
Lines 384-392 Link Here
384	;;	384	;;
385	*)	385	*)
386	if [ -e "${dumpdev}" -a -d /var/crash ]; then	386	if [ -e "${dumpdev}" -a -d /var/crash ]; then
387	/sbin/dumpon -v ${dumpdev}	387	dumpon -v ${dumpdev}
388	echo -n 'Checking for core dump: '	388	echo -n 'Checking for core dump: '
389	/sbin/savecore ${savecore_flags} /var/crash	389	savecore ${savecore_flags} /var/crash
390	fi	390	fi
391	;;	391	;;
392	esac	392	esac
Lines 439-480 Link Here
439	# Make shared lib searching a little faster. Leave /usr/lib first if you	439	# Make shared lib searching a little faster. Leave /usr/lib first if you
440	# add your own entries or you may come to grief.	440	# add your own entries or you may come to grief.
441	#	441	#
442	ldconfig="/sbin/ldconfig"	442	ldconfig="ldconfig"
443	case ${ldconfig_insecure} in	443	case ${ldconfig_insecure} in
444	[Yy][Ee][Ss])	444	[Yy][Ee][Ss])
445	ldconfig="${ldconfig} -i"	445	ldconfig="${ldconfig} -i"
446	;;	446	;;
447	esac	447	esac
448	if [ -x /sbin/ldconfig ]; then	448	case `objformat` in
449	case `/usr/bin/objformat` in	449	elf)
450	elf)	450	_LDC=/usr/lib
451	_LDC=/usr/lib	451	for i in ${ldconfig_paths}; do
452	for i in ${ldconfig_paths}; do	452	if [ -d "${i}" ]; then
453	if [ -d "${i}" ]; then	453	_LDC="${_LDC} ${i}"
454	_LDC="${_LDC} ${i}"	454	fi
455	fi	455	done
456	done	456	echo 'ELF ldconfig path:' ${_LDC}
457	echo 'ELF ldconfig path:' ${_LDC}	457	${ldconfig} -elf ${_LDC}
458	${ldconfig} -elf ${_LDC}	458	;;
459	;;	459	esac
460	esac
461		460
462	# Legacy aout support for i386 only	461	# Legacy aout support for i386 only
463	case `sysctl -n hw.machine` in	462	case `sysctl -n hw.machine` in
464	i386)	463	i386)
465	# Default the a.out ldconfig path.	464	# Default the a.out ldconfig path.
466	: ${ldconfig_paths_aout=${ldconfig_paths}}	465	: ${ldconfig_paths_aout=${ldconfig_paths}}
467	_LDC=/usr/lib/aout	466	_LDC=/usr/lib/aout
468	for i in ${ldconfig_paths_aout}; do	467	for i in ${ldconfig_paths_aout}; do
469	if [ -d "${i}" ]; then	468	if [ -d "${i}" ]; then
470	_LDC="${_LDC} ${i}"	469	_LDC="${_LDC} ${i}"
471	fi	470	fi
472	done	471	done
473	echo 'a.out ldconfig path:' ${_LDC}	472	echo 'a.out ldconfig path:' ${_LDC}
474	${ldconfig} -aout ${_LDC}	473	${ldconfig} -aout ${_LDC}
475	;;	474	;;
476	esac	475	esac
477	fi
478		476
479	# Now start up miscellaneous daemons that don't belong anywhere else	477	# Now start up miscellaneous daemons that don't belong anywhere else
480	#	478	#
Lines 483-489 Link Here
483	[Nn][Oo])	481	[Nn][Oo])
484	;;	482	;;
485	*)	483	*)
486	echo -n ' inetd'; ${inetd_program:-/usr/sbin/inetd} ${inetd_flags}	484	echo -n ' inetd'; ${inetd_program:-inetd} ${inetd_flags}
487	;;	485	;;
488	esac	486	esac
489		487
Lines 491-537 Link Here
491	[Nn][Oo])	489	[Nn][Oo])
492	;;	490	;;
493	*)	491	*)
494	echo -n ' cron'; ${cron_program:-/usr/sbin/cron} ${cron_flags}	492	echo -n ' cron'; ${cron_program:-cron} ${cron_flags}
495	;;	493	;;
496	esac	494	esac
497		495
498	case ${lpd_enable} in	496	case ${lpd_enable} in
499	[Yy][Ee][Ss])	497	[Yy][Ee][Ss])
500	echo -n ' printer'; ${lpd_program:-/usr/sbin/lpd} ${lpd_flags}	498	echo -n ' printer'; ${lpd_program:-lpd} ${lpd_flags}
501	;;	499	;;
502	esac	500	esac
503		501
504	case ${sshd_enable} in	502	case ${sshd_enable} in
505	[Yy][Ee][Ss])	503	[Yy][Ee][Ss])
506	if [ -x ${sshd_program:-/usr/sbin/sshd} ]; then	504	echo -n ' sshd'; ${sshd_program:-sshd} ${sshd_flags}
507	echo -n ' sshd';
508	${sshd_program:-/usr/sbin/sshd} ${sshd_flags}
509	fi
510	;;	505	;;
511	esac	506	esac
512		507
513	case ${usbd_enable} in	508	case ${usbd_enable} in
514	[Yy][Ee][Ss])	509	[Yy][Ee][Ss])
515	echo -n ' usbd'; /usr/sbin/usbd ${usbd_flags}	510	echo -n ' usbd'; usbd ${usbd_flags}
516	;;	511	;;
517	esac	512	esac
518		513
519	if [ -r /etc/mail/sendmail.cf ]; then	514	case ${sendmail_enable} in
520	case ${sendmail_enable} in	515	[Yy][Ee][Ss])
		516	echo -n ' sendmail'; sendmail ${sendmail_flags}
		517	;;
		518	*)
		519	case ${sendmail_outbound_enable} in
521	[Yy][Ee][Ss])	520	[Yy][Ee][Ss])
522	echo -n ' sendmail'	521	echo -n ' sendmail'
523	/usr/sbin/sendmail ${sendmail_flags}	522	sendmail ${sendmail_outbound_flags}
524	;;
525	*)
526	case ${sendmail_outbound_enable} in
527	[Yy][Ee][Ss])
528	echo -n ' sendmail'
529	/usr/sbin/sendmail ${sendmail_outbound_flags}
530	;;
531	esac
532	;;	523	;;
533	esac	524	esac
534	fi	525	;;
		526	esac
535		527
536	echo '.'	528	echo '.'
537		529

Lines 48-54 Link Here

(-)rc.network (-13 / +14 lines)
48	# Establish ipfilter ruleset as early as possible (best in	48	# Establish ipfilter ruleset as early as possible (best in
49	# addition to IPFILTER_DEFAULT_BLOCK in the kernel config file)	49	# addition to IPFILTER_DEFAULT_BLOCK in the kernel config file)
50	#	50	#
51	if /sbin/ipfstat -i > /dev/null 2>&1; then	51	if ipfstat -i > /dev/null 2>&1; then
52	ipfilter_in_kernel=1	52	ipfilter_in_kernel=1
53	else	53	else
54	ipfilter_in_kernel=0	54	ipfilter_in_kernel=0
Lines 65-83 Link Here
65		65
66	if [ -r "${ipfilter_rules}" ]; then	66	if [ -r "${ipfilter_rules}" ]; then
67	echo -n ' ipfilter';	67	echo -n ' ipfilter';
68	${ipfilter_program:-/sbin/ipf -Fa -f} \	68	${ipfilter_program:-ipf -Fa -f} \
69	"${ipfilter_rules}" ${ipfilter_flags}	69	"${ipfilter_rules}" ${ipfilter_flags}
70	case "${ipmon_enable}" in	70	case "${ipmon_enable}" in
71	[Yy][Ee][Ss])	71	[Yy][Ee][Ss])
72	echo -n ' ipmon'	72	echo -n ' ipmon'
73	${ipmon_program:-/sbin/ipmon} ${ipmon_flags}	73	${ipmon_program:-ipmon} ${ipmon_flags}
74	;;	74	;;
75	esac	75	esac
76	case "${ipnat_enable}" in	76	case "${ipnat_enable}" in
77	[Yy][Ee][Ss])	77	[Yy][Ee][Ss])
78	if [ -r "${ipnat_rules}" ]; then	78	if [ -r "${ipnat_rules}" ]; then
79	echo -n ' ipnat';	79	echo -n ' ipnat';
80	eval ${ipnat_program:-/sbin/ipnat -CF -f} \	80	eval ${ipnat_program:-ipnat -CF -f} \
81	"${ipnat_rules}" ${ipnat_flags}	81	"${ipnat_rules}" ${ipnat_flags}
82	else	82	else
83	echo -n ' NO IPNAT RULES'	83	echo -n ' NO IPNAT RULES'
Lines 175-181 Link Here
175	done	175	done
176		176
177	if [ ! -z "${dhcp_interfaces}" ]; then	177	if [ ! -z "${dhcp_interfaces}" ]; then
178	${dhcp_program:-/sbin/dhclient} ${dhcp_flags} ${dhcp_interfaces}	178	${dhcp_program:-dhclient} ${dhcp_flags} ${dhcp_interfaces}
179	fi	179	fi
180		180
181	for ifn in ${network_interfaces}; do	181	for ifn in ${network_interfaces}; do
Lines 231-237 Link Here
231	ppp_mode="auto"	231	ppp_mode="auto"
232	fi	232	fi
233		233
234	ppp_command="/usr/sbin/ppp -quiet -${ppp_mode}"	234	ppp_command="ppp -quiet -${ppp_mode}"
235		235
236	# Switch on NAT mode?	236	# Switch on NAT mode?
237	#	237	#
Lines 250-256 Link Here
250		250
251	# Initialize IP filtering using ipfw	251	# Initialize IP filtering using ipfw
252	#	252	#
253	if /sbin/ipfw -q flush > /dev/null 2>&1; then	253	if ipfw -q flush > /dev/null 2>&1; then
254	firewall_in_kernel=1	254	firewall_in_kernel=1
255	else	255	else
256	firewall_in_kernel=0	256	firewall_in_kernel=0
Lines 286-299 Link Here
286	case ${natd_enable} in	286	case ${natd_enable} in
287	[Yy][Ee][Ss])	287	[Yy][Ee][Ss])
288	if [ -n "${natd_interface}" ]; then	288	if [ -n "${natd_interface}" ]; then
289	if echo ${natd_interface} \| \	289	if echo ${natd_interface} \|
290	grep -q -E '^[0-9]+\.[0-9]+\.[0-9]+\.[0-9]+$'; then	290	egrep -q '^[0-9]+\.[0-9]+\.[0-9]+\.[0-9]+$'; then
291	natd_ifarg="-a ${natd_interface}"	291	natd_ifarg="-a ${natd_interface}"
292	else	292	else
293	natd_ifarg="-n ${natd_interface}"	293	natd_ifarg="-n ${natd_interface}"
294	fi	294	fi
295		295
296	echo -n ' natd'; ${natd_program:-/sbin/natd} ${natd_flags} ${natd_ifarg}	296	echo -n ' natd'
		297	${natd_program:-natd} ${natd_flags} ${natd_ifarg}
297	fi	298	fi
298	;;	299	;;
299	esac	300	esac
Lines 518-524 Link Here
518		519
519	case ${portmap_enable} in	520	case ${portmap_enable} in
520	[Yy][Ee][Ss])	521	[Yy][Ee][Ss])
521	echo -n ' portmap'; ${portmap_program:-/usr/sbin/portmap} ${portmap_flags}	522	echo -n ' portmap'; ${portmap_program:-portmap} ${portmap_flags}
522	;;	523	;;
523	esac	524	esac
524		525
Lines 744-754 Link Here
744	[Yy][Ee][Ss])	745	[Yy][Ee][Ss])
745	if [ ! -f /etc/ssh/ssh_host_key ]; then	746	if [ ! -f /etc/ssh/ssh_host_key ]; then
746	echo ' creating ssh RSA host key';	747	echo ' creating ssh RSA host key';
747	/usr/bin/ssh-keygen -N "" -f /etc/ssh/ssh_host_key	748	ssh-keygen -N "" -f /etc/ssh/ssh_host_key
748	fi	749	fi
749	if [ ! -f /etc/ssh/ssh_host_dsa_key ]; then	750	if [ ! -f /etc/ssh/ssh_host_dsa_key ]; then
750	echo ' creating ssh DSA host key';	751	echo ' creating ssh DSA host key';
751	/usr/bin/ssh-keygen -d -N "" -f /etc/ssh/ssh_host_dsa_key	752	ssh-keygen -d -N "" -f /etc/ssh/ssh_host_dsa_key
752	fi	753	fi
753	;;	754	;;
754	esac	755	esac

Lines 21-35 Link Here

(-)pccard_ether (-8 / +4 lines)
21		21
22	start_dhcp() {	22	start_dhcp() {
23	stop_dhcp	23	stop_dhcp
24	if [ -x "${dhcp_program}" ]; then	24	if [ `basename ${dhcp_program}` = "dhclient" ]; then
25	if [ `basename ${dhcp_program}` = "dhclient" ]; then	25	pidfile="/var/run/dhclient.${interface}.pid"
26	pidfile="/var/run/dhclient.${interface}.pid"	26	dhcp_flags="${dhcp_flags} -pf ${pidfile}"
27	dhcp_flags="${dhcp_flags} -pf ${pidfile}"
28	fi
29	${dhcp_program} ${dhcp_flags} ${interface}
30	else
31	echo "${dhcp_program}: DHCP client software not available"
32	fi	27	fi
		28	${dhcp_program} ${dhcp_flags} ${interface}
33	}	29	}
34		30
35	# Suck in the configuration variables	31	# Suck in the configuration variables

Lines 63-69 Link Here

(-)rc.diskless1 (-3 / +3 lines)
63	}	63	}
64		64
65	mount_md() {	65	mount_md() {
66	/sbin/mount_mfs -s $1 -T qp120at dummy $2	66	mount_mfs -s $1 -T qp120at dummy $2
67	}	67	}
68		68
69	# DEBUGGING	69	# DEBUGGING
Lines 99-107 Link Here
99		99
100	mount_md 4096 /etc 0	100	mount_md 4096 /etc 0
101	chkerr $? "MFS mount on /etc"	101	chkerr $? "MFS mount on /etc"
102	/bin/chmod 755 /etc	102	chmod 755 /etc
103		103
104	/bin/cp -Rp /conf/default/etc/* /etc	104	cp -Rp /conf/default/etc/* /etc
105	chkerr $? "cp /conf/default/etc to /etc MFS"	105	chkerr $? "cp /conf/default/etc to /etc MFS"
106		106
107	# Allow for override files to replace files in /etc. Use /conf/*/etc	107	# Allow for override files to replace files in /etc. Use /conf/*/etc

Lines 40-46 Link Here

(-)rc.diskless2 (-4 / +4 lines)
40	if [ -n "$4" ]; then	40	if [ -n "$4" ]; then
41	bpi="-i $4"	41	bpi="-i $4"
42	fi	42	fi
43	/sbin/mount_mfs -s $1 -T qp120at $bpi dummy $2	43	mount_mfs -s $1 -T qp120at $bpi dummy $2
44	}	44	}
45		45
46	# If there is a global system configuration file, suck it in.	46	# If there is a global system configuration file, suck it in.
Lines 56-67 Link Here
56	mount_md ${varsize:=65536} /var 1	56	mount_md ${varsize:=65536} /var 1
57		57
58	echo "+++ populate /var using /etc/mtree/BSD.var.dist"	58	echo "+++ populate /var using /etc/mtree/BSD.var.dist"
59	/usr/sbin/mtree -deU -f /etc/mtree/BSD.var.dist -p /var	59	mtree -deU -f /etc/mtree/BSD.var.dist -p /var
60		60
61	echo "+++ create log files based on the contents of /etc/newsyslog.conf"	61	echo "+++ create log files based on the contents of /etc/newsyslog.conf"
62	LOGFILES=`/usr/bin/awk '$1 != "#" { printf "%s ", $1 } ' /etc/newsyslog.conf`	62	LOGFILES=`awk '$1 != "#" { printf "%s ", $1 } ' /etc/newsyslog.conf`
63	if [ -n "$LOGFILES" ]; then	63	if [ -n "$LOGFILES" ]; then
64	/usr/bin/touch $LOGFILES	64	touch $LOGFILES
65	fi	65	fi
66		66
67	mount -a # chown and chgrp are in /usr	67	mount -a # chown and chgrp are in /usr

Lines 40-51 Link Here

(-)rc.isdn (-29 / +21 lines)
40		40
41	# Check for pcvt driver (VT100/VT220 emulator)	41	# Check for pcvt driver (VT100/VT220 emulator)
42	#	42	#
43	if [ -x /usr/sbin/ispcvt ]; then	43	if ispcvt; then
44	if /usr/sbin/ispcvt; then	44	# No vidcontrol if we are using pcvt
45	# No vidcontrol if we are using pcvt	45	#
46	#	46	isdn_screenflags=NO
47	isdn_screenflags=NO
48	fi
49	fi	47	fi
50		48
51	case ${isdn_flags} in	49	case ${isdn_flags} in
Lines 56-93 Link Here
56		54
57	# Start the isdn daemon	55	# Start the isdn daemon
58	#	56	#
59	if [ -x /usr/sbin/isdnd ]; then	57	echo -n ' isdnd'
60	echo -n ' isdnd'	58	case ${isdn_fsdev} in
61	case ${isdn_fsdev} in	59	[Nn][Oo] \| '')
62	[Nn][Oo] \| '')	60	isdnd ${isdn_flags}
63	/usr/sbin/isdnd ${isdn_flags}	61	;;
		62	*)
		63	# Change vidmode of ${isdn_fsdev}
		64	#
		65	case ${isdn_screenflags} in
		66	[Nn][Oo])
64	;;	67	;;
65	*)	68	*)
66	# Change vidmode of ${isdn_fsdev}	69	vidcontrol < ${isdn_fsdev} > ${isdn_fsdev} 2>&1 ${isdn_screenflags}
67	#
68	case ${isdn_screenflags} in
69	[Nn][Oo])
70	;;
71	*)
72	if [ -x /usr/sbin/vidcontrol ]; then
73	/usr/sbin/vidcontrol < ${isdn_fsdev} > ${isdn_fsdev} 2>&1 ${isdn_screenflags}
74	fi
75	;;
76	esac
77
78	/usr/sbin/isdnd ${isdn_flags} -f -r ${isdn_fsdev} -t ${isdn_ttype}
79	;;	70	;;
80	esac	71	esac
81	fi	72
		73	isdnd ${isdn_flags} -f -r ${isdn_fsdev} -t ${isdn_ttype}
		74	;;
		75	esac
82		76
83	# Start isdntrace	77	# Start isdntrace
84	#	78	#
85	case ${isdn_trace} in	79	case ${isdn_trace} in
86	[Yy][Ee][Ss])	80	[Yy][Ee][Ss])
87	if [ -x /usr/sbin/isdntrace ]; then	81	echo -n ' isdntrace'
88	echo -n ' isdntrace'	82	nohup isdntrace ${isdn_traceflags} >/dev/null 2>&1 &
89	nohup /usr/sbin/isdntrace ${isdn_traceflags} >/dev/null 2>&1 &
90	fi
91	;;	83	;;
92	esac	84	esac
93		85

Lines 41-47 Link Here

(-)defaults/rc.conf (-20 / +18 lines)
41	### Basic network and firewall/security options: ###	41	### Basic network and firewall/security options: ###
42	hostname="" # Set this!	42	hostname="" # Set this!
43	nisdomainname="NO" # Set to NIS domain if using NIS (or NO).	43	nisdomainname="NO" # Set to NIS domain if using NIS (or NO).
44	dhcp_program="/sbin/dhclient" # Path to dhcp client program.	44	dhcp_program="dhclient" # Path to dhcp client program.
45	dhcp_flags="" # Additional flags to pass to dhcp client.	45	dhcp_flags="" # Additional flags to pass to dhcp client.
46	firewall_enable="NO" # Set to YES to enable firewall functionality	46	firewall_enable="NO" # Set to YES to enable firewall functionality
47	firewall_script="/etc/rc.firewall" # Which script to run to set up the firewall	47	firewall_script="/etc/rc.firewall" # Which script to run to set up the firewall
Lines 53-65 Link Here
53	ip_portrange_last="NO" # Set last dynamically allocated port	53	ip_portrange_last="NO" # Set last dynamically allocated port
54	ipsec_enable="NO" # Set to YES to run setkey on ipsec_file	54	ipsec_enable="NO" # Set to YES to run setkey on ipsec_file
55	ipsec_file="/etc/ipsec.conf" # Name of config file for setkey	55	ipsec_file="/etc/ipsec.conf" # Name of config file for setkey
56	natd_program="/sbin/natd" # path to natd, if you want a different one.	56	natd_program="natd" # path to natd, if you want a different one.
57	natd_enable="NO" # Enable natd (if firewall_enable == YES).	57	natd_enable="NO" # Enable natd (if firewall_enable == YES).
58	natd_interface="fxp0" # Public interface or IPaddress to use.	58	natd_interface="fxp0" # Public interface or IPaddress to use.
59	natd_flags="" # Additional flags for natd.	59	natd_flags="" # Additional flags for natd.
60	ipfilter_enable="NO" # Set to YES to enable ipfilter functionality	60	ipfilter_enable="NO" # Set to YES to enable ipfilter functionality
61	ipfilter_program="/sbin/ipf -Fa -f"	61	ipfilter_program="ipf -Fa -f" # program and how to specify the rules file,
62	# program and how to specify the rules file,
63	# see /etc/rc.network (pass1) for details	62	# see /etc/rc.network (pass1) for details
64	ipfilter_rules="/etc/ipf.rules" # rules definition file for ipfilter, see	63	ipfilter_rules="/etc/ipf.rules" # rules definition file for ipfilter, see
65	# /usr/src/contrib/ipfilter/rules for examples	64	# /usr/src/contrib/ipfilter/rules for examples
Lines 67-77 Link Here
67	# (i.e. compiled into the kernel) to	66	# (i.e. compiled into the kernel) to
68	# avoid a warning about "already initialized"	67	# avoid a warning about "already initialized"
69	ipnat_enable="NO" # Set to YES for ipnat; needs ipfilter, too!	68	ipnat_enable="NO" # Set to YES for ipnat; needs ipfilter, too!
70	ipnat_program="/sbin/ipnat -CF -f" # program and how to specify rules file	69	ipnat_program="ipnat -CF -f" # program and how to specify rules file
71	ipnat_rules="/etc/ipnat.rules" # rules definition file for ipnat	70	ipnat_rules="/etc/ipnat.rules" # rules definition file for ipnat
72	ipnat_flags="" # additional flags for ipnat	71	ipnat_flags="" # additional flags for ipnat
73	ipmon_enable="NO" # Set to YES for ipmon; needs ipfilter, too!	72	ipmon_enable="NO" # Set to YES for ipmon; needs ipfilter, too!
74	ipmon_program="/sbin/ipmon" # where the ipfilter monitor program lives	73	ipmon_program="ipmon" # where the ipfilter monitor program lives
75	ipmon_flags="-Ds" # typically "-Ds" or "-D /var/log/ipflog"	74	ipmon_flags="-Ds" # typically "-Ds" or "-D /var/log/ipflog"
76	tcp_extensions="YES" # Set to NO to turn off RFC1323 extensions.	75	tcp_extensions="YES" # Set to NO to turn off RFC1323 extensions.
77	log_in_vain="NO" # YES to log connects to ports w/o listeners.	76	log_in_vain="NO" # YES to log connects to ports w/o listeners.
Lines 108-117 Link Here
108		107
109	### Network daemon (miscellaneous) & NFS options: ###	108	### Network daemon (miscellaneous) & NFS options: ###
110	syslogd_enable="YES" # Run syslog daemon (or NO).	109	syslogd_enable="YES" # Run syslog daemon (or NO).
111	syslogd_program="/usr/sbin/syslogd" # path to syslogd, if you want a different one.	110	syslogd_program="syslogd" # path to syslogd, if you want a different one.
112	syslogd_flags="-s" # Flags to syslogd (if enabled).	111	syslogd_flags="-s" # Flags to syslogd (if enabled).
113	inetd_enable="YES" # Run the network daemon dispatcher (or NO).	112	inetd_enable="YES" # Run the network daemon dispatcher (or NO).
114	inetd_program="/usr/sbin/inetd" # path to inetd, if you want a different one.	113	inetd_program="inetd" # path to inetd, if you want a different one.
115	inetd_flags="-wW" # Optional flags to inetd	114	inetd_flags="-wW" # Optional flags to inetd
116	#	115	#
117	# named. It may be possible to run named in a sandbox, man security for	116	# named. It may be possible to run named in a sandbox, man security for
Lines 147-154 Link Here
147	nfs_bufpackets="DEFAULT" # bufspace (in packets) for client (or DEFAULT)	146	nfs_bufpackets="DEFAULT" # bufspace (in packets) for client (or DEFAULT)
148	rpc_lockd_enable="NO" # Run NFS rpc.lockd (broken!) if nfs_server.	147	rpc_lockd_enable="NO" # Run NFS rpc.lockd (broken!) if nfs_server.
149	rpc_statd_enable="YES" # Run NFS rpc.statd if nfs_server (or NO).	148	rpc_statd_enable="YES" # Run NFS rpc.statd if nfs_server (or NO).
150	portmap_enable="NO" # Run the portmapper service (or NO).	149	portmap_enable="NO" # Run the portmapper service (or YES).
151	portmap_program="/usr/sbin/portmap" # path to portmap, if you want a different one.	150	portmap_program="portmap" # path to portmap, if you want a different one.
152	portmap_flags="" # Flags to portmap (if enabled).	151	portmap_flags="" # Flags to portmap (if enabled).
153	rpc_ypupdated_enable="NO" # Run if NIS master and SecureRPC (or NO).	152	rpc_ypupdated_enable="NO" # Run if NIS master and SecureRPC (or NO).
154	keyserv_enable="NO" # Run the SecureRPC keyserver (or NO).	153	keyserv_enable="NO" # Run the SecureRPC keyserver (or NO).
Lines 162-168 Link Here
162	pppoed_flags="-P /var/run/pppoed.pid" # Flags to pppoed (if enabled).	161	pppoed_flags="-P /var/run/pppoed.pid" # Flags to pppoed (if enabled).
163	pppoed_interface="fxp0" # The interface that pppoed runs on.	162	pppoed_interface="fxp0" # The interface that pppoed runs on.
164	sshd_enable="NO" # Enable sshd	163	sshd_enable="NO" # Enable sshd
165	sshd_program="/usr/sbin/sshd" # path to sshd, if you want a different one.	164	sshd_program="sshd" # path to sshd, if you want a different one.
166	sshd_flags="" # Additional flags for sshd.	165	sshd_flags="" # Additional flags for sshd.
167		166
168	### Network Time Services options: ###	167	### Network Time Services options: ###
Lines 200-206 Link Here
200	ipxrouted_enable="NO" # Set to YES to run the IPX routing daemon.	199	ipxrouted_enable="NO" # Set to YES to run the IPX routing daemon.
201	ipxrouted_flags="" # Flags for IPX routing daemon.	200	ipxrouted_flags="" # Flags for IPX routing daemon.
202	arpproxy_all="NO" # replaces obsolete kernel option ARP_PROXYALL.	201	arpproxy_all="NO" # replaces obsolete kernel option ARP_PROXYALL.
203	forward_sourceroute="NO" # do source routing (only if gateway_enable is set to "YES")	202	forward_sourceroute="NO" # do source routing if gateway_enable is YES
204	accept_sourceroute="NO" # accept source routed packets to us	203	accept_sourceroute="NO" # accept source routed packets to us
205		204
206	### ATM interface options: ###	205	### ATM interface options: ###
Lines 236-242 Link Here
236	#ipv6_route_xxx="fec0:0000:0000:0006:: -prefixlen 64 ::1"	235	#ipv6_route_xxx="fec0:0000:0000:0006:: -prefixlen 64 ::1"
237	ipv6_gateway_enable="NO" # Set to YES if this host will be a gateway.	236	ipv6_gateway_enable="NO" # Set to YES if this host will be a gateway.
238	ipv6_router_enable="NO" # Set to YES to enable an IPv6 routing daemon.	237	ipv6_router_enable="NO" # Set to YES to enable an IPv6 routing daemon.
239	ipv6_router="/usr/sbin/route6d" # Name of IPv6 routing daemon.	238	ipv6_router="route6d" # Name of IPv6 routing daemon.
240	ipv6_router_flags="" # Flags to IPv6 routing daemon.	239	ipv6_router_flags="" # Flags to IPv6 routing daemon.
241	#ipv6_router_flags="-l" # Example for route6d with only IPv6 site local	240	#ipv6_router_flags="-l" # Example for route6d with only IPv6 site local
242	# addrs.	241	# addrs.
Lines 256-263 Link Here
256	# IPv6 default router for local subnets.	255	# IPv6 default router for local subnets.
257	rtadvd_interfaces="" # Interfaces rtadvd sends RA packets.	256	rtadvd_interfaces="" # Interfaces rtadvd sends RA packets.
258	mroute6d_enable="NO" # Do IPv6 multicast routing.	257	mroute6d_enable="NO" # Do IPv6 multicast routing.
259	mroute6d_program="/usr/sbin/pim6dd" # Name of IPv6 multicast routing	258	mroute6d_program="pim6dd" # Name of IPv6 multicast routing daemon.
260	# daemon.
261	mroute6d_flags="" # Flags to IPv6 multicast routing daemon.	259	mroute6d_flags="" # Flags to IPv6 multicast routing daemon.
262	stf_interface_ipv4addr="" # Local IPv4 addr for 6to4 IPv6 over IPv4	260	stf_interface_ipv4addr="" # Local IPv4 addr for 6to4 IPv6 over IPv4
263	# tunneling interface. Specify this entry	261	# tunneling interface. Specify this entry
Lines 312-330 Link Here
312	##############################################################	310	##############################################################
313		311
314	cron_enable="YES" # Run the periodic job daemon.	312	cron_enable="YES" # Run the periodic job daemon.
315	cron_program="/usr/sbin/cron" # Which cron executable to run (if enabled).	313	cron_program="cron" # Which cron executable to run (if enabled).
316	cron_flags="" # Which options to pass to the cron daemon.	314	cron_flags="" # Which options to pass to the cron daemon.
317	lpd_enable="NO" # Run the line printer daemon.	315	lpd_enable="NO" # Run the line printer daemon.
318	lpd_program="/usr/sbin/lpd" # path to lpd, if you want a different one.	316	lpd_program="lpd" # path to lpd, if you want a different one.
319	lpd_flags="" # Flags to lpd (if enabled).	317	lpd_flags="" # Flags to lpd (if enabled).
320	usbd_enable="NO" # Run the usbd daemon.	318	usbd_enable="NO" # Run the usbd daemon.
321	usbd_flags="" # Flags to usbd (if enabled).	319	usbd_flags="" # Flags to usbd (if enabled).
322	sendmail_enable="YES" # Run the sendmail inbound daemon (or NO).	320	sendmail_enable="YES" # Run the sendmail inbound daemon (or NO).
323	sendmail_flags="-bd -q30m" # Flags to sendmail (as a server)	321	sendmail_flags="-bd -q30m" # Flags to sendmail (if enabled)
324	sendmail_outbound_enable="NO" # Dequeue stuck mail (or YES).	322	sendmail_outbound_enable="NO" # Dequeue stuck mail (or YES).
325	sendmail_outbound_flags="-q30m" # Flags to sendmail (outbound only)	323	sendmail_outbound_flags="-q30m" # Flags to sendmail (outbound only)
326	dumpdev="NO" # Device name to crashdump to (or NO).	324	dumpdev="NO" # Device name to crashdump to (or NO).
327	savecore_flags="" # Used if dumpdev is enabled above, and present.	325	savecore_flags="" # Used if dumpdev is enabled above, and present.
328	enable_quotas="NO" # turn on quotas on startup (or NO).	326	enable_quotas="NO" # turn on quotas on startup (or NO).
329	check_quotas="YES" # Check quotas on startup (or NO).	327	check_quotas="YES" # Check quotas on startup (or NO).
330	accounting_enable="NO" # Turn on process accounting (or NO).	328	accounting_enable="NO" # Turn on process accounting (or NO).
Lines 343-349 Link Here
343	kern_securelevel_enable="NO" # kernel security level (see init(8)),	341	kern_securelevel_enable="NO" # kernel security level (see init(8)),
344	kern_securelevel="-1" # range: -1..3 ; `-1' is the most insecure	342	kern_securelevel="-1" # range: -1..3 ; `-1' is the most insecure
345	update_motd="YES" # update version info in /etc/motd (or NO)	343	update_motd="YES" # update version info in /etc/motd (or NO)
346	start_vinum="NO" # set to YES to start vinum	344	start_vinum="NO" # set to YES to start vinum
347	unaligned_print="YES" # print unaligned access warnings on the alpha (or NO).	345	unaligned_print="YES" # print unaligned access warnings on the alpha (or NO).
348		346
349	##############################################################	347	##############################################################