head 1.193; access; symbols netbsd-8-3-RELEASE:1.166.6.3 netbsd-9-4-RELEASE:1.181.2.1 netbsd-10-0-RELEASE:1.192.2.1 netbsd-10-0-RC6:1.192.2.1 netbsd-10-0-RC5:1.192.2.1 netbsd-10-0-RC4:1.192.2.1 netbsd-10-0-RC3:1.192.2.1 netbsd-10-0-RC2:1.192.2.1 netbsd-10-0-RC1:1.192.2.1 netbsd-10:1.192.0.2 netbsd-10-base:1.192 netbsd-9-3-RELEASE:1.181.2.1 cjep_sun2x-base1:1.190 cjep_sun2x:1.190.0.4 cjep_sun2x-base:1.190 cjep_staticlib_x-base1:1.190 netbsd-9-2-RELEASE:1.181.2.1 cjep_staticlib_x:1.190.0.2 cjep_staticlib_x-base:1.190 netbsd-9-1-RELEASE:1.181.2.1 phil-wifi-20200421:1.181 phil-wifi-20200411:1.181 is-mlppp:1.181.0.4 is-mlppp-base:1.181 phil-wifi-20200406:1.181 netbsd-8-2-RELEASE:1.166.6.1 netbsd-9-0-RELEASE:1.181 netbsd-9-0-RC2:1.181 netbsd-9-0-RC1:1.181 phil-wifi-20191119:1.181 netbsd-9:1.181.0.2 netbsd-9-base:1.181 phil-wifi-20190609:1.181 netbsd-8-1-RELEASE:1.166.6.1 netbsd-8-1-RC1:1.166.6.1 pgoyette-compat-merge-20190127:1.168.2.5 pgoyette-compat-20190127:1.179 pgoyette-compat-20190118:1.179 pgoyette-compat-1226:1.179 pgoyette-compat-1126:1.179 pgoyette-compat-1020:1.178 pgoyette-compat-0930:1.174 pgoyette-compat-0906:1.172 netbsd-7-2-RELEASE:1.157.4.1 pgoyette-compat-0728:1.172 netbsd-8-0-RELEASE:1.166 phil-wifi:1.170.0.2 phil-wifi-base:1.170 pgoyette-compat-0625:1.170 netbsd-8-0-RC2:1.166 pgoyette-compat-0521:1.168 pgoyette-compat-0502:1.168 pgoyette-compat-0422:1.168 netbsd-8-0-RC1:1.166 pgoyette-compat-0415:1.168 pgoyette-compat-0407:1.168 pgoyette-compat-0330:1.168 pgoyette-compat-0322:1.168 pgoyette-compat-0315:1.168 netbsd-7-1-2-RELEASE:1.157.4.1 pgoyette-compat:1.168.0.2 pgoyette-compat-base:1.168 netbsd-7-1-1-RELEASE:1.157.4.1 matt-nb8-mediatek:1.166.0.10 matt-nb8-mediatek-base:1.166 perseant-stdc-iso10646:1.166.0.8 perseant-stdc-iso10646-base:1.166 netbsd-8:1.166.0.6 netbsd-8-base:1.166 prg-localcount2-base3:1.166 prg-localcount2-base2:1.166 prg-localcount2-base1:1.166 prg-localcount2:1.166.0.4 prg-localcount2-base:1.166 pgoyette-localcount-20170426:1.166 bouyer-socketcan-base1:1.166 pgoyette-localcount-20170320:1.166 netbsd-7-1:1.157.4.1.0.6 netbsd-7-1-RELEASE:1.157.4.1 netbsd-7-1-RC2:1.157.4.1 netbsd-7-nhusb-base-20170116:1.157.4.1 bouyer-socketcan:1.166.0.2 bouyer-socketcan-base:1.166 pgoyette-localcount-20170107:1.166 netbsd-7-1-RC1:1.157.4.1 pgoyette-localcount-20161104:1.165 netbsd-7-0-2-RELEASE:1.157.4.1 localcount-20160914:1.165 netbsd-7-nhusb:1.157.4.1.0.4 netbsd-7-nhusb-base:1.157.4.1 pgoyette-localcount-20160806:1.165 pgoyette-localcount-20160726:1.165 pgoyette-localcount:1.165.0.2 pgoyette-localcount-base:1.165 netbsd-7-0-1-RELEASE:1.157.4.1 netbsd-7-0:1.157.4.1.0.2 netbsd-7-0-RELEASE:1.157.4.1 netbsd-7-0-RC3:1.157.4.1 netbsd-7-0-RC2:1.157 netbsd-7-0-RC1:1.157 netbsd-5-2-3-RELEASE:1.120.2.4 netbsd-5-1-5-RELEASE:1.120.2.4 netbsd-6-0-6-RELEASE:1.151.2.2 netbsd-6-1-5-RELEASE:1.151.2.2 netbsd-7:1.157.0.4 netbsd-7-base:1.157 yamt-pagecache-base9:1.157 yamt-pagecache-tag8:1.150.4.3 netbsd-6-1-4-RELEASE:1.151.2.2 netbsd-6-0-5-RELEASE:1.151.2.2 tls-earlyentropy:1.157.0.2 tls-earlyentropy-base:1.157 riastradh-xf86-video-intel-2-7-1-pre-2-21-15:1.157 riastradh-drm2-base3:1.157 netbsd-6-1-3-RELEASE:1.151.2.2 netbsd-6-0-4-RELEASE:1.151.2.2 netbsd-5-2-2-RELEASE:1.120.2.4 netbsd-5-1-4-RELEASE:1.120.2.4 netbsd-6-1-2-RELEASE:1.151.2.2 netbsd-6-0-3-RELEASE:1.151.2.2 netbsd-5-2-1-RELEASE:1.120.2.4 netbsd-5-1-3-RELEASE:1.120.2.4 netbsd-6-1-1-RELEASE:1.151.2.2 riastradh-drm2-base2:1.156 riastradh-drm2-base1:1.156 riastradh-drm2:1.156.0.2 riastradh-drm2-base:1.156 netbsd-6-1:1.151.2.2.0.4 netbsd-6-0-2-RELEASE:1.151.2.2 netbsd-6-1-RELEASE:1.151.2.2 netbsd-6-1-RC4:1.151.2.2 netbsd-6-1-RC3:1.151.2.2 agc-symver:1.156.0.4 agc-symver-base:1.156 netbsd-6-1-RC2:1.151.2.2 netbsd-6-1-RC1:1.151.2.2 yamt-pagecache-base8:1.156 netbsd-5-2:1.120.2.4.0.10 netbsd-6-0-1-RELEASE:1.151.2.2 yamt-pagecache-base7:1.154 netbsd-5-2-RELEASE:1.120.2.4 netbsd-5-2-RC1:1.120.2.4 matt-nb6-plus-nbase:1.151.2.2 yamt-pagecache-base6:1.154 netbsd-6-0:1.151.2.2.0.2 netbsd-6-0-RELEASE:1.151.2.2 netbsd-6-0-RC2:1.151.2.1 tls-maxphys:1.153.0.2 tls-maxphys-base:1.157 matt-nb6-plus:1.151.2.1.0.2 matt-nb6-plus-base:1.151.2.2 netbsd-6-0-RC1:1.151.2.1 yamt-pagecache-base5:1.151 yamt-pagecache-base4:1.151 netbsd-6:1.151.0.2 netbsd-6-base:1.151 netbsd-5-1-2-RELEASE:1.120.2.4 netbsd-5-1-1-RELEASE:1.120.2.4 yamt-pagecache-base3:1.150 yamt-pagecache-base2:1.150 yamt-pagecache:1.150.0.4 yamt-pagecache-base:1.150 cherry-xenmp:1.150.0.2 cherry-xenmp-base:1.150 bouyer-quota2-nbase:1.143 bouyer-quota2:1.143.0.2 bouyer-quota2-base:1.143 matt-mips64-premerge-20101231:1.143 matt-nb5-mips64-premerge-20101231:1.120.2.4 matt-nb5-pq3:1.120.2.4.0.8 matt-nb5-pq3-base:1.120.2.4 netbsd-5-1:1.120.2.4.0.6 netbsd-5-1-RELEASE:1.120.2.4 netbsd-5-1-RC4:1.120.2.4 matt-nb5-mips64-k15:1.120.2.4 netbsd-5-1-RC3:1.120.2.4 netbsd-5-1-RC2:1.120.2.4 netbsd-5-1-RC1:1.120.2.4 netbsd-5-0-2-RELEASE:1.120.2.4 matt-nb5-mips64-premerge-20091211:1.120.2.4 matt-premerge-20091211:1.138 matt-nb5-mips64-u2-k2-k4-k7-k8-k9:1.120.2.4 matt-nb4-mips64-k7-u2a-k9b:1.120.2.4 matt-nb5-mips64-u1-k1-k5:1.120.2.4 matt-nb5-mips64:1.120.2.4.0.4 netbsd-5-0-1-RELEASE:1.120.2.4 jym-xensuspend-nbase:1.129 netbsd-5-0:1.120.2.4.0.2 netbsd-5-0-RELEASE:1.120.2.4 netbsd-5-0-RC4:1.120.2.4 netbsd-5-0-RC3:1.120.2.3 netbsd-5-0-RC2:1.120.2.3 jym-xensuspend:1.127.0.2 jym-xensuspend-base:1.129 netbsd-5-0-RC1:1.120.2.2 netbsd-5:1.120.0.2 netbsd-5-base:1.120 matt-mips64-base2:1.120 matt-mips64:1.114.0.12 netbsd-4-0-1-RELEASE:1.109.2.1 wrstuden-revivesa-base-3:1.119 wrstuden-revivesa-base-2:1.119 wrstuden-fixsa-newbase:1.109.2.1 wrstuden-revivesa-base-1:1.119 yamt-pf42-base4:1.118 yamt-pf42-base3:1.118 hpcarm-cleanup-nbase:1.115 yamt-pf42-baseX:1.115 yamt-pf42-base2:1.115 wrstuden-revivesa:1.115.0.4 wrstuden-revivesa-base:1.119 yamt-pf42:1.115.0.2 yamt-pf42-base:1.115 mjf-devfs2:1.114.0.10 mjf-devfs2-base:1.120 keiichi-mipv6-nbase:1.114 keiichi-mipv6:1.114.0.8 keiichi-mipv6-base:1.114 matt-armv6-nbase:1.114 matt-armv6-prevmlocking:1.114 wrstuden-fixsa-base-1:1.109.2.1 netbsd-4-0:1.109.2.1.0.2 netbsd-4-0-RELEASE:1.109.2.1 cube-autoconf:1.114.0.6 cube-autoconf-base:1.114 netbsd-4-0-RC5:1.109.2.1 netbsd-4-0-RC4:1.109.2.1 netbsd-4-0-RC3:1.109.2.1 netbsd-4-0-RC2:1.109 netbsd-4-0-RC1:1.109 matt-armv6:1.114.0.4 matt-armv6-base:1.114 matt-mips64-base:1.114 hpcarm-cleanup:1.114.0.2 hpcarm-cleanup-base:1.114 netbsd-3-1-1-RELEASE:1.92.2.2 netbsd-3-0-3-RELEASE:1.92.2.1 wrstuden-fixsa:1.109.0.4 wrstuden-fixsa-base:1.109.2.1 abandoned-netbsd-4-base:1.104 abandoned-netbsd-4:1.104.0.2 netbsd-3-1:1.92.2.2.0.2 netbsd-3-1-RELEASE:1.92.2.2 netbsd-3-0-2-RELEASE:1.92.2.1 netbsd-3-1-RC4:1.92.2.2 netbsd-3-1-RC3:1.92.2.2 netbsd-3-1-RC2:1.92.2.2 netbsd-3-1-RC1:1.92.2.2 netbsd-4:1.109.0.2 netbsd-4-base:1.109 chap-midi-nbase:1.101 netbsd-3-0-1-RELEASE:1.92.2.1 chap-midi:1.101.0.2 chap-midi-base:1.101 netbsd-3-0:1.92.2.1.0.2 netbsd-3-0-RELEASE:1.92.2.1 netbsd-3-0-RC6:1.92.2.1 netbsd-3-0-RC5:1.92 netbsd-3-0-RC4:1.92 netbsd-3-0-RC3:1.92 netbsd-3-0-RC2:1.92 netbsd-3-0-RC1:1.92 netbsd-2-0-3-RELEASE:1.88.2.3 netbsd-2-1:1.88.2.3.0.4 netbsd-2-1-RELEASE:1.88.2.3 netbsd-2-1-RC6:1.88.2.3 netbsd-2-1-RC5:1.88.2.3 netbsd-2-1-RC4:1.88.2.3 netbsd-2-1-RC3:1.88.2.3 netbsd-2-1-RC2:1.88.2.3 netbsd-2-1-RC1:1.88.2.3 netbsd-2-0-2-RELEASE:1.88.2.3 netbsd-3:1.92.0.2 netbsd-3-base:1.92 netbsd-2-0-1-RELEASE:1.88.2.3 netbsd-2:1.88.2.3.0.2 netbsd-2-base:1.88.2.3 netbsd-2-0-RELEASE:1.88.2.3 netbsd-2-0-RC5:1.88.2.3 netbsd-2-0-RC4:1.88.2.3 netbsd-2-0-RC3:1.88.2.3 netbsd-2-0-RC2:1.88.2.3 netbsd-2-0-RC1:1.88.2.3 netbsd-2-0:1.88.0.2 netbsd-2-0-base:1.88 netbsd-1-6-PATCH002-RELEASE:1.61.2.5 netbsd-1-6-PATCH002:1.61.2.5 netbsd-1-6-PATCH002-RC4:1.61.2.5 netbsd-1-6-PATCH002-RC3:1.61.2.4 netbsd-1-6-PATCH002-RC2:1.61.2.4 netbsd-1-6-PATCH002-RC1:1.61.2.4 netbsd-1-6-PATCH001:1.61.2.3 netbsd-1-6-PATCH001-RELEASE:1.61.2.3 netbsd-1-6-PATCH001-RC3:1.61.2.3 netbsd-1-6-PATCH001-RC2:1.61.2.3 netbsd-1-6-PATCH001-RC1:1.61.2.3 fvdl_fs64_base:1.75 netbsd-1-6-RELEASE:1.61.2.2 netbsd-1-6-RC3:1.61.2.2 netbsd-1-6-RC2:1.61.2.2 netbsd-1-6-RC1:1.61.2.2 netbsd-1-6:1.61.0.2 netbsd-1-6-base:1.61 netbsd-1-5-PATCH003:1.32.2.7 netbsd-1-5-PATCH002:1.32.2.6 netbsd-1-5-PATCH001:1.32.2.6 netbsd-1-5-RELEASE:1.32.2.3 netbsd-1-5-BETA2:1.32.2.3 netbsd-1-5-BETA:1.32.2.3 netbsd-1-4-PATCH003:1.23 netbsd-1-5-ALPHA2:1.32.2.3 netbsd-1-5:1.32.0.2 netbsd-1-5-base:1.32 minoura-xpg4dl:1.31.0.2 minoura-xpg4dl-base:1.31 netbsd-1-4-PATCH002:1.23 wrstuden-devbsize-19991221:1.28 wrstuden-devbsize:1.25.0.2 wrstuden-devbsize-base:1.28 comdex-fall-1999:1.26.0.2 comdex-fall-1999-base:1.26 netbsd-1-4-PATCH001:1.23 netbsd-1-4-RELEASE:1.23 netbsd-1-4:1.23.0.2 netbsd-1-4-base:1.23 netbsd-1-3-PATCH003:1.12.2.3 netbsd-1-3-PATCH003-CANDIDATE2:1.12.2.3 netbsd-1-3-PATCH003-CANDIDATE1:1.12.2.3 netbsd-1-3-PATCH003-CANDIDATE0:1.12.2.3 netbsd-1-3-PATCH002:1.12.2.3 netbsd-1-3-PATCH001:1.12.2.3 netbsd-1-3-RELEASE:1.12.2.3 netbsd-1-3-BETA:1.12.2.3 netbsd-1-3:1.12.0.2 netbsd-1-3-base:1.12; locks; strict; comment @# @; 1.193 date 2023.06.30.21.44.09; author riastradh; state Exp; branches; next 1.192; commitid VzjSdoI2MyM6c1vE; 1.192 date 2022.02.20.14.43.39; author alnsn; state Exp; branches 1.192.2.1; next 1.191; commitid D2wfVVWJYinmMmtD; 1.191 date 2022.02.20.10.49.17; author alnsn; state Exp; branches; next 1.190; commitid OTVMKdAOciSWtltD; 1.190 date 2021.01.15.15.18.32; author riastradh; state Exp; branches; next 1.189; commitid AB7iZwphrolqRPDC; 1.189 date 2021.01.15.15.17.08; author riastradh; state Exp; branches; next 1.188; commitid teAAnA9vavD8QPDC; 1.188 date 2021.01.10.23.24.26; author riastradh; state Exp; branches; next 1.187; commitid nvjdXwWVOKPFFeDC; 1.187 date 2020.09.11.12.20.01; author wiz; state Exp; branches; next 1.186; commitid mSRXugeFJnYkVCnC; 1.186 date 2020.09.11.12.01.59; author kim; state Exp; branches; next 1.185; commitid r8MxPeibcHF1PCnC; 1.185 date 2020.07.15.17.55.34; author leot; state Exp; branches; next 1.184; commitid FHe1cO1tii5UDcgC; 1.184 date 2020.07.15.16.52.48; author jruoho; state Exp; branches; next 1.183; commitid CHtddabWeB0jicgC; 1.183 date 2020.07.15.16.46.11; author jruoho; state Exp; branches; next 1.182; commitid wcF1yOniTQ9dgcgC; 1.182 date 2020.06.24.10.30.43; author jruoho; state Exp; branches; next 1.181; commitid 444wVln22FwZQsdC; 1.181 date 2019.06.03.06.04.20; author msaitoh; state Exp; branches 1.181.2.1; next 1.180; commitid 33o7JpxOkfc0PHpB; 1.180 date 2019.05.11.19.31.03; author maxv; state Exp; branches; next 1.179; commitid jcEOXkXQLMTD1PmB; 1.179 date 2018.10.20.08.47.03; author wiz; state Exp; branches; next 1.178; commitid 6a3FkETHNtilZFWA; 1.178 date 2018.10.19.14.11.12; author martin; state Exp; branches; next 1.177; commitid hA07DbGMF32MNzWA; 1.177 date 2018.10.01.11.16.04; author uwe; state Exp; branches; next 1.176; commitid NcDH2gXcnAilqfUA; 1.176 date 2018.10.01.07.11.27; author wiz; state Exp; branches; next 1.175; commitid zzD4BdPOqC7q4eUA; 1.175 date 2018.09.30.10.38.05; author martin; state Exp; branches; next 1.174; commitid LrSlBmI9KtwCe7UA; 1.174 date 2018.09.23.09.21.00; author maxv; state Exp; branches; next 1.173; commitid fUeLhhIySPPg2dTA; 1.173 date 2018.09.23.07.24.20; author maxv; state Exp; branches; next 1.172; commitid kns031ao2KOAocTA; 1.172 date 2018.07.27.15.31.02; author roy; state Exp; branches; next 1.171; commitid ZcdSR31MshmMWMLA; 1.171 date 2018.07.13.21.46.58; author maya; state Exp; branches; next 1.170; commitid 2O4Fo5lMrgebu1KA; 1.170 date 2018.06.22.19.35.25; author maya; state Exp; branches 1.170.2.1; next 1.169; commitid vG5YTiUQVkQLqjHA; 1.169 date 2018.06.22.19.08.28; author maya; state Exp; branches; next 1.168; commitid ycDBitHWR5EihjHA; 1.168 date 2018.01.09.09.17.52; author wiz; state Exp; branches 1.168.2.1; next 1.167; commitid HtpDcUzcPaEUhbmA; 1.167 date 2018.01.09.03.31.12; author christos; state Exp; branches; next 1.166; commitid nhHsbnoK9vzLm9mA; 1.166 date 2016.12.17.07.44.59; author maya; state Exp; branches 1.166.6.1; next 1.165; commitid fnBVetpqyGx0fjyz; 1.165 date 2015.12.27.08.43.51; author wiz; state Exp; branches 1.165.2.1; next 1.164; commitid ADgXNeyn9cVX0zOy; 1.164 date 2015.12.27.02.42.33; author christos; state Exp; branches; next 1.163; commitid OGehnYsy8dKW0xOy; 1.163 date 2015.10.12.12.07.24; author wiz; state Exp; branches; next 1.162; commitid AElRCoynjMSfAOEy; 1.162 date 2015.10.09.19.49.25; author plunky; state Exp; branches; next 1.161; commitid V748bwy8LC0detEy; 1.161 date 2015.07.09.11.38.05; author wiz; state Exp; branches; next 1.160; commitid 5sZwOf5LfJqwtBsy; 1.160 date 2015.07.09.10.24.27; author roy; state Exp; branches; next 1.159; commitid m5EPr5ht2sU94Bsy; 1.159 date 2015.03.30.11.01.53; author wiz; state Exp; branches; next 1.158; commitid 70WstDQsBPDmwCfy; 1.158 date 2015.03.30.10.58.37; author chopps; state Exp; branches; next 1.157; commitid A0XuevQL4pvguCfy; 1.157 date 2014.01.15.11.42.43; author apb; state Exp; branches 1.157.4.1; next 1.156; commitid szotrtFcMPu9Rclx; 1.156 date 2013.01.13.19.56.13; author wiz; state Exp; branches; next 1.155; 1.155 date 2013.01.13.18.47.58; author prlw1; state Exp; branches; next 1.154; 1.154 date 2012.10.02.09.18.59; author roy; state Exp; branches; next 1.153; 1.153 date 2012.07.04.20.53.30; author jdf; state Exp; branches 1.153.2.1; next 1.152; 1.152 date 2012.06.03.21.42.47; author joerg; state Exp; branches; next 1.151; 1.151 date 2012.01.08.04.01.12; author dholland; state Exp; branches 1.151.2.1; next 1.150; 1.150 date 2011.06.01.11.06.36; author jruoho; state Exp; branches 1.150.4.1; next 1.149; 1.149 date 2011.06.01.11.03.27; author jruoho; state Exp; branches; next 1.148; 1.148 date 2011.05.27.11.15.17; author wiz; state Exp; branches; next 1.147; 1.147 date 2011.05.27.09.28.42; author plunky; state Exp; branches; next 1.146; 1.146 date 2011.03.18.16.21.46; author jruoho; state Exp; branches; next 1.145; 1.145 date 2011.03.08.07.44.39; author snj; state Exp; branches; next 1.144; 1.144 date 2011.03.08.07.40.37; author snj; state Exp; branches; next 1.143; 1.143 date 2010.04.20.12.09.05; author wiz; state Exp; branches; next 1.142; 1.142 date 2010.04.19.12.59.36; author jruoho; state Exp; branches; next 1.141; 1.141 date 2010.03.20.11.23.37; author wiz; state Exp; branches; next 1.140; 1.140 date 2010.03.19.20.07.00; author jruoho; state Exp; branches; next 1.139; 1.139 date 2010.03.19.19.17.54; author jruoho; state Exp; branches; next 1.138; 1.138 date 2009.10.24.11.22.48; author reed; state Exp; branches; next 1.137; 1.137 date 2009.09.30.18.17.22; author apb; state Exp; branches; next 1.136; 1.136 date 2009.09.14.12.37.08; author wiz; state Exp; branches; next 1.135; 1.135 date 2009.09.14.12.05.12; author apb; state Exp; branches; next 1.134; 1.134 date 2009.09.11.19.47.27; author wiz; state Exp; branches; next 1.133; 1.133 date 2009.09.11.18.17.04; author apb; state Exp; branches; next 1.132; 1.132 date 2009.09.03.20.06.39; author apb; state Exp; branches; next 1.131; 1.131 date 2009.07.25.21.21.20; author wiz; state Exp; branches; next 1.130; 1.130 date 2009.07.25.16.20.11; author mbalmer; state Exp; branches; next 1.129; 1.129 date 2009.04.10.16.18.04; author joerg; state Exp; branches; next 1.128; 1.128 date 2009.03.27.09.11.36; author hannken; state Exp; branches; next 1.127; 1.127 date 2009.01.04.12.10.30; author apb; state Exp; branches 1.127.2.1; next 1.126; 1.126 date 2008.12.20.17.17.05; author wiz; state Exp; branches; next 1.125; 1.125 date 2008.12.20.13.20.58; author isaki; state Exp; branches; next 1.124; 1.124 date 2008.12.11.15.44.23; author wiz; state Exp; branches; next 1.123; 1.123 date 2008.12.11.13.55.17; author mishka; state Exp; branches; next 1.122; 1.122 date 2008.11.12.12.35.53; author ad; state Exp; branches; next 1.121; 1.121 date 2008.11.11.00.18.48; author reed; state Exp; branches; next 1.120; 1.120 date 2008.09.20.12.12.38; author apb; state Exp; branches 1.120.2.1; next 1.119; 1.119 date 2008.06.18.09.06.26; author yamt; state Exp; branches; next 1.118; 1.118 date 2008.05.30.07.41.42; author wiz; state Exp; branches; next 1.117; 1.117 date 2008.05.30.02.29.37; author mrg; state Exp; branches; next 1.116; 1.116 date 2008.05.29.15.38.35; author joerg; state Exp; branches; next 1.115; 1.115 date 2008.04.15.11.17.48; author plunky; state Exp; branches 1.115.2.1 1.115.4.1; next 1.114; 1.114 date 2007.05.15.19.47.43; author elad; state Exp; branches 1.114.10.1; next 1.113; 1.113 date 2007.03.18.15.53.54; author plunky; state Exp; branches; next 1.112; 1.112 date 2007.02.04.08.19.26; author elad; state Exp; branches; next 1.111; 1.111 date 2006.12.23.09.12.35; author wiz; state Exp; branches; next 1.110; 1.110 date 2006.12.04.03.52.26; author rpaulo; state Exp; branches; next 1.109; 1.109 date 2006.10.13.21.21.47; author wiz; state Exp; branches 1.109.2.1 1.109.4.1; next 1.108; 1.108 date 2006.10.10.03.24.51; author reed; state Exp; branches; next 1.107; 1.107 date 2006.09.10.15.45.56; author plunky; state Exp; branches; next 1.106; 1.106 date 2006.08.22.17.01.54; author christos; state Exp; branches; next 1.105; 1.105 date 2006.08.13.09.03.23; author plunky; state Exp; branches; next 1.104; 1.104 date 2006.07.30.00.18.09; author wiz; state Exp; branches 1.104.2.1; next 1.103; 1.103 date 2006.07.26.11.14.55; author tron; state Exp; branches; next 1.102; 1.102 date 2006.06.19.15.44.44; author gdamore; state Exp; branches; next 1.101; 1.101 date 2006.04.30.15.37.44; author wiz; state Exp; branches; next 1.100; 1.100 date 2006.04.30.15.28.34; author rpaulo; state Exp; branches; next 1.99; 1.99 date 2006.03.27.10.07.07; author ghen; state Exp; branches; next 1.98; 1.98 date 2006.02.09.23.19.39; author wiz; state Exp; branches; next 1.97; 1.97 date 2005.11.24.19.32.35; author wiz; state Exp; branches; next 1.96; 1.96 date 2005.11.24.17.28.46; author rpaulo; state Exp; branches; next 1.95; 1.95 date 2005.11.19.19.59.24; author elad; state Exp; branches; next 1.94; 1.94 date 2005.09.17.19.39.48; author wiz; state Exp; branches; next 1.93; 1.93 date 2005.09.17.19.32.11; author elad; state Exp; branches; next 1.92; 1.92 date 2004.07.22.03.44.12; author atatat; state Exp; branches 1.92.2.1; next 1.91; 1.91 date 2004.07.15.10.45.33; author wiz; state Exp; branches; next 1.90; 1.90 date 2004.07.15.03.47.18; author atatat; state Exp; branches; next 1.89; 1.89 date 2004.07.15.03.29.55; author atatat; state Exp; branches; next 1.88; 1.88 date 2004.01.15.09.14.54; author jmmv; state Exp; branches 1.88.2.1; next 1.87; 1.87 date 2004.01.14.21.51.18; author jmmv; state Exp; branches; next 1.86; 1.86 date 2004.01.12.05.25.39; author uebayasi; state Exp; branches; next 1.85; 1.85 date 2004.01.12.04.40.00; author uebayasi; state Exp; branches; next 1.84; 1.84 date 2003.12.02.13.14.28; author wiz; state Exp; branches; next 1.83; 1.83 date 2003.10.26.08.11.51; author wiz; state Exp; branches; next 1.82; 1.82 date 2003.10.26.07.58.44; author martti; state Exp; branches; next 1.81; 1.81 date 2003.06.27.22.33.19; author wiz; state Exp; branches; next 1.80; 1.80 date 2003.04.06.15.24.09; author wiz; state Exp; branches; next 1.79; 1.79 date 2003.04.02.19.19.18; author wiz; state Exp; branches; next 1.78; 1.78 date 2003.04.02.18.26.53; author atatat; state Exp; branches; next 1.77; 1.77 date 2003.03.10.22.47.44; author wiz; state Exp; branches; next 1.76; 1.76 date 2003.02.25.10.35.15; author wiz; state Exp; branches; next 1.75; 1.75 date 2002.12.18.19.29.26; author wiz; state Exp; branches; next 1.74; 1.74 date 2002.12.04.22.59.51; author martin; state Exp; branches; next 1.73; 1.73 date 2002.11.29.19.11.45; author wiz; state Exp; branches; next 1.72; 1.72 date 2002.11.26.12.25.53; author grant; state Exp; branches; next 1.71; 1.71 date 2002.11.25.08.07.04; author grant; state Exp; branches; next 1.70; 1.70 date 2002.11.25.08.06.37; author grant; state Exp; branches; next 1.69; 1.69 date 2002.10.25.21.00.45; author wiz; state Exp; branches; next 1.68; 1.68 date 2002.10.02.15.26.29; author wiz; state Exp; branches; next 1.67; 1.67 date 2002.08.29.10.45.17; author wiz; state Exp; branches; next 1.66; 1.66 date 2002.08.27.14.16.02; author takemura; state Exp; branches; next 1.65; 1.65 date 2002.08.26.17.46.58; author abs; state Exp; branches; next 1.64; 1.64 date 2002.07.08.16.15.35; author atatat; state Exp; branches; next 1.63; 1.63 date 2002.06.17.06.47.59; author lukem; state Exp; branches; next 1.62; 1.62 date 2002.06.15.02.00.06; author lukem; state Exp; branches; next 1.61; 1.61 date 2002.05.19.01.01.34; author lukem; state Exp; branches 1.61.2.1; next 1.60; 1.60 date 2002.04.29.10.27.14; author lukem; state Exp; branches; next 1.59; 1.59 date 2002.04.29.05.56.25; author lukem; state Exp; branches; next 1.58; 1.58 date 2002.04.18.12.13.07; author lukem; state Exp; branches; next 1.57; 1.57 date 2002.03.27.08.53.43; author lukem; state Exp; branches; next 1.56; 1.56 date 2002.03.21.23.14.03; author lukem; state Exp; branches; next 1.55; 1.55 date 2002.03.01.16.52.04; author mrg; state Exp; branches; next 1.54; 1.54 date 2002.02.25.04.23.20; author lukem; state Exp; branches; next 1.53; 1.53 date 2002.02.24.13.00.41; author lukem; state Exp; branches; next 1.52; 1.52 date 2002.02.11.10.19.58; author martti; state Exp; branches; next 1.51; 1.51 date 2002.01.21.15.55.36; author wiz; state Exp; branches; next 1.50; 1.50 date 2002.01.21.15.40.55; author lukem; state Exp; branches; next 1.49; 1.49 date 2001.09.08.01.29.07; author wiz; state Exp; branches; next 1.48; 1.48 date 2001.08.18.19.50.20; author ad; state Exp; branches; next 1.47; 1.47 date 2001.06.17.01.14.15; author lukem; state Exp; branches; next 1.46; 1.46 date 2001.04.25.08.53.31; author mjl; state Exp; branches; next 1.45; 1.45 date 2001.04.09.16.39.31; author wiz; state Exp; branches; next 1.44; 1.44 date 2001.04.04.11.13.44; author wiz; state Exp; branches; next 1.43; 1.43 date 2001.02.24.14.07.22; author mrg; state Exp; branches; next 1.42; 1.42 date 2001.01.11.17.56.17; author itojun; state Exp; branches; next 1.41; 1.41 date 2001.01.03.17.54.05; author itojun; state Exp; branches; next 1.40; 1.40 date 2000.11.17.10.14.20; author lukem; state Exp; branches; next 1.39; 1.39 date 2000.10.01.06.04.43; author lukem; state Exp; branches; next 1.38; 1.38 date 2000.08.11.02.39.27; author thorpej; state Exp; branches; next 1.37; 1.37 date 2000.08.11.02.25.52; author itojun; state Exp; branches; next 1.36; 1.36 date 2000.08.08.19.01.03; author lukem; state Exp; branches; next 1.35; 1.35 date 2000.07.26.06.34.47; author lukem; state Exp; branches; next 1.34; 1.34 date 2000.07.03.07.16.04; author enami; state Exp; branches; next 1.33; 1.33 date 2000.06.20.16.48.21; author itojun; state Exp; branches; next 1.32; 1.32 date 2000.06.13.16.33.18; author itojun; state Exp; branches 1.32.2.1; next 1.31; 1.31 date 2000.02.13.07.47.27; author itojun; state Exp; branches 1.31.2.1; next 1.30; 1.30 date 2000.02.11.03.14.02; author itojun; state Exp; branches; next 1.29; 1.29 date 2000.02.05.17.02.44; author itojun; state Exp; branches; next 1.28; 1.28 date 99.11.29.01.40.34; author itojun; state Exp; branches; next 1.27; 1.27 date 99.11.23.08.12.22; author lukem; state Exp; branches; next 1.26; 1.26 date 99.09.28.14.52.33; author bouyer; state Exp; branches; next 1.25; 1.25 date 99.09.03.14.36.43; author itojun; state Exp; branches 1.25.2.1; next 1.24; 1.24 date 99.07.03.03.29.30; author itojun; state Exp; branches; next 1.23; 1.23 date 99.03.24.17.29.07; author mellon; state Exp; branches; next 1.22; 1.22 date 99.03.18.20.30.22; author is; state Exp; branches; next 1.21; 1.21 date 99.03.17.20.19.47; author garbled; state Exp; branches; next 1.20; 1.20 date 99.02.15.12.42.12; author lukem; state Exp; branches; next 1.19; 1.19 date 99.01.31.08.46.58; author mrg; state Exp; branches; next 1.18; 1.18 date 99.01.16.14.16.43; author lukem; state Exp; branches; next 1.17; 1.17 date 98.04.29.11.33.58; author fair; state Exp; branches; next 1.16; 1.16 date 98.04.07.04.47.53; author mrg; state Exp; branches; next 1.15; 1.15 date 97.11.23.04.18.14; author mrg; state Exp; branches; next 1.14; 1.14 date 97.11.17.17.45.34; author mrg; state Exp; branches; next 1.13; 1.13 date 97.11.11.02.29.01; author jonathan; state Exp; branches; next 1.12; 1.12 date 97.10.10.05.40.07; author mrg; state Exp; branches 1.12.2.1; next 1.11; 1.11 date 97.09.02.03.03.49; author mikel; state Exp; branches; next 1.10; 1.10 date 97.08.29.02.27.31; author cjs; state Exp; branches; next 1.9; 1.9 date 97.05.12.11.28.19; author lukem; state Exp; branches; next 1.8; 1.8 date 97.05.12.05.21.51; author mikel; state Exp; branches; next 1.7; 1.7 date 97.04.02.02.02.51; author cjs; state Exp; branches; next 1.6; 1.6 date 97.04.01.20.17.43; author perry; state Exp; branches; next 1.5; 1.5 date 97.03.23.07.57.22; author cjs; state Exp; branches; next 1.4; 1.4 date 97.03.17.01.22.49; author cjs; state Exp; branches; next 1.3; 1.3 date 97.03.10.07.06.17; author scottr; state Exp; branches; next 1.2; 1.2 date 97.01.07.05.37.36; author tls; state Exp; branches; next 1.1; 1.1 date 97.01.05.11.50.17; author mrg; state Exp; branches; next ; 1.192.2.1 date 2023.08.11.14.35.25; author martin; state Exp; branches; next ; commitid nYaaMWQ1aHVjtnAE; 1.181.2.1 date 2020.09.13.12.11.07; author martin; state Exp; branches; next ; commitid pJRAq6pzVWxiOSnC; 1.170.2.1 date 2019.06.10.22.05.41; author christos; state Exp; branches; next ; commitid jtc8rnCzWiEEHGqB; 1.168.2.1 date 2018.06.25.07.25.36; author pgoyette; state Exp; branches; next 1.168.2.2; commitid 8PtAu9af7VvhiDHA; 1.168.2.2 date 2018.07.28.04.37.25; author pgoyette; state Exp; branches; next 1.168.2.3; commitid 1UP1xAIUxv1ZgRLA; 1.168.2.3 date 2018.09.30.01.45.34; author pgoyette; state Exp; branches; next 1.168.2.4; commitid SQ44grEPCeKPh4UA; 1.168.2.4 date 2018.10.20.06.58.23; author pgoyette; state Exp; branches; next 1.168.2.5; commitid mTSoqZEZ4arHnFWA; 1.168.2.5 date 2018.11.26.01.52.15; author pgoyette; state Exp; branches; next ; commitid Zj4q5SspGdKXto1B; 1.166.6.1 date 2019.05.14.11.33.43; author martin; state Exp; branches; next 1.166.6.2; commitid 0aZwwTN2YORZhanB; 1.166.6.2 date 2020.04.23.13.43.42; author martin; state Exp; branches; next 1.166.6.3; commitid SGnjpb3wjzJ2Vv5C; 1.166.6.3 date 2020.09.13.12.13.13; author martin; state Exp; branches; next ; commitid kezKzGCzwcY0PSnC; 1.165.2.1 date 2017.01.07.08.56.07; author pgoyette; state Exp; branches; next ; commitid uEL0C1YuiJrlV0Bz; 1.157.4.1 date 2015.08.06.21.13.44; author snj; state Exp; branches; next ; commitid 8DiUh5BbT1XZKfwy; 1.153.2.1 date 2012.11.20.03.00.51; author tls; state Exp; branches; next 1.153.2.2; 1.153.2.2 date 2013.02.25.00.28.14; author tls; state Exp; branches; next 1.153.2.3; 1.153.2.3 date 2014.08.20.00.02.36; author tls; state Exp; branches; next ; commitid jTnpym9Qu0o4R1Nx; 1.151.2.1 date 2012.06.23.22.54.59; author riz; state Exp; branches 1.151.2.1.2.1; next 1.151.2.2; 1.151.2.2 date 2012.10.09.23.03.47; author riz; state Exp; branches; next ; 1.151.2.1.2.1 date 2012.11.01.16.44.58; author matt; state Exp; branches; next ; 1.150.4.1 date 2012.04.17.00.05.47; author yamt; state Exp; branches; next 1.150.4.2; 1.150.4.2 date 2012.10.30.18.59.41; author yamt; state Exp; branches; next 1.150.4.3; 1.150.4.3 date 2013.01.23.00.05.35; author yamt; state Exp; branches; next 1.150.4.4; 1.150.4.4 date 2014.05.22.11.37.51; author yamt; state Exp; branches; next ; commitid P3Rlj4go6xHqKwBx; 1.127.2.1 date 2009.05.13.19.19.13; author jym; state Exp; branches; next ; 1.120.2.1 date 2008.11.12.23.43.49; author snj; state Exp; branches; next 1.120.2.2; 1.120.2.2 date 2009.01.22.21.28.26; author snj; state Exp; branches; next 1.120.2.3; 1.120.2.3 date 2009.02.06.00.51.42; author snj; state Exp; branches; next 1.120.2.4; 1.120.2.4 date 2009.03.31.23.35.36; author snj; state Exp; branches; next ; 1.115.2.1 date 2008.06.04.02.04.38; author yamt; state Exp; branches; next 1.115.2.2; 1.115.2.2 date 2008.06.13.17.30.53; author peter; state Exp; branches; next ; 1.115.4.1 date 2008.06.23.04.30.01; author wrstuden; state Exp; branches; next ; 1.114.10.1 date 2008.06.02.13.21.40; author mjf; state Exp; branches; next 1.114.10.2; 1.114.10.2 date 2008.06.29.08.51.20; author mjf; state Exp; branches; next 1.114.10.3; 1.114.10.3 date 2008.10.05.20.11.22; author mjf; state Exp; branches; next ; 1.109.2.1 date 2007.10.14.04.13.02; author riz; state Exp; branches; next ; 1.109.4.1 date 2007.10.29.00.45.10; author wrstuden; state Exp; branches; next ; 1.104.2.1 date 2006.09.07.13.47.51; author tron; state Exp; branches; next 1.104.2.2; 1.104.2.2 date 2006.09.14.21.16.33; author riz; state Exp; branches; next ; 1.92.2.1 date 2005.12.06.23.29.35; author tron; state Exp; branches; next 1.92.2.2; 1.92.2.2 date 2006.03.28.22.47.29; author riz; state Exp; branches; next ; 1.88.2.1 date 2004.07.15.19.21.31; author he; state Exp; branches; next 1.88.2.2; 1.88.2.2 date 2004.07.15.19.38.38; author he; state Exp; branches; next 1.88.2.3; 1.88.2.3 date 2004.07.23.08.41.59; author tron; state Exp; branches; next ; 1.61.2.1 date 2002.06.15.02.15.00; author lukem; state Exp; branches; next 1.61.2.2; 1.61.2.2 date 2002.06.18.14.23.35; author lukem; state Exp; branches; next 1.61.2.3; 1.61.2.3 date 2002.11.24.15.42.48; author tron; state Exp; branches; next 1.61.2.4; 1.61.2.4 date 2003.10.27.04.42.54; author jmc; state Exp; branches; next 1.61.2.5; 1.61.2.5 date 2003.12.24.04.41.23; author jmc; state Exp; branches; next ; 1.32.2.1 date 2000.06.20.17.53.46; author itojun; state Exp; branches; next 1.32.2.2; 1.32.2.2 date 2000.07.03.22.59.28; author thorpej; state Exp; branches; next 1.32.2.3; 1.32.2.3 date 2000.08.09.19.15.32; author lukem; state Exp; branches; next 1.32.2.4; 1.32.2.4 date 2001.02.26.22.40.35; author he; state Exp; branches; next 1.32.2.5; 1.32.2.5 date 2001.04.26.09.34.43; author he; state Exp; branches; next 1.32.2.6; 1.32.2.6 date 2001.05.02.22.51.58; author he; state Exp; branches; next 1.32.2.7; 1.32.2.7 date 2002.03.06.22.25.07; author he; state Exp; branches; next ; 1.31.2.1 date 2000.06.22.16.17.34; author minoura; state Exp; branches; next ; 1.25.2.1 date 99.12.27.18.31.02; author wrstuden; state Exp; branches; next ; 1.12.2.1 date 97.11.13.00.06.14; author mellon; state Exp; branches; next 1.12.2.2; 1.12.2.2 date 97.11.18.01.43.08; author mellon; state Exp; branches; next 1.12.2.3; 1.12.2.3 date 97.11.28.19.53.59; author mellon; state Exp; branches; next ; desc @@ 1.193 log @rc.conf(5): Set entropy=wait by default. We no longer block indefinitely -- if nothing else, the hardclock timer should yield enough samples to unblock /dev/random on all but the most severely deterministic machines -- so it should be generally safe for availability to set entropy=wait. This doesn't guarantee that HWRNG/seed has been provided before you run ssh-keygen or call getentropy(3) in a user application, but it does raise the security above netbsd<=9. PR security/55659 PR lib/56905 XXX pullup-10 @ text @.\" $NetBSD: rc.conf.5,v 1.192 2022/02/20 14:43:39 alnsn Exp $ .\" .\" Copyright (c) 1996 Matthew R. Green .\" All rights reserved. .\" .\" Redistribution and use in source and binary forms, with or without .\" modification, are permitted provided that the following conditions .\" are met: .\" 1. Redistributions of source code must retain the above copyright .\" notice, this list of conditions and the following disclaimer. .\" 2. Redistributions in binary form must reproduce the above copyright .\" notice, this list of conditions and the following disclaimer in the .\" documentation and/or other materials provided with the distribution. .\" .\" THIS SOFTWARE IS PROVIDED BY THE AUTHOR ``AS IS'' AND ANY EXPRESS OR .\" IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES .\" OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED. .\" IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR ANY DIRECT, INDIRECT, .\" INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, .\" BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; .\" LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED .\" AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, .\" OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY .\" OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF .\" SUCH DAMAGE. .\" .\" Copyright (c) 1997 Curt J. Sampson .\" Copyright (c) 1997 Michael W. Long .\" Copyright (c) 1998-2010 The NetBSD Foundation, Inc. .\" All rights reserved. .\" .\" This document is derived from works contributed to The NetBSD Foundation .\" by Luke Mewburn. .\" .\" Redistribution and use in source and binary forms, with or without .\" modification, are permitted provided that the following conditions .\" are met: .\" 1. Redistributions of source code must retain the above copyright .\" notice, this list of conditions and the following disclaimer. .\" 2. Redistributions in binary form must reproduce the above copyright .\" notice, this list of conditions and the following disclaimer in the .\" documentation and/or other materials provided with the distribution. .\" 3. The name of the author may not be used to endorse or promote products .\" derived from this software without specific prior written permission. .\" .\" THIS SOFTWARE IS PROVIDED BY THE AUTHOR ``AS IS'' AND ANY EXPRESS OR .\" IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES .\" OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED. .\" IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR ANY DIRECT, INDIRECT, .\" INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, .\" BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; .\" LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED .\" AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, .\" OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY .\" OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF .\" SUCH DAMAGE. .\" .Dd February 20, 2022 .Dt RC.CONF 5 .Os .Sh NAME .Nm rc.conf .Nd system startup configuration file .Sh DESCRIPTION The .Nm file specifies which services are enabled during system startup by the startup scripts invoked by .Pa /etc/rc (see .Xr rc 8 ) , and the shutdown scripts invoked by .Pa /etc/rc.shutdown . The .Nm file is a shell script that is sourced by .Xr rc 8 , meaning that .Nm must contain valid shell commands. .Pp Listed below are the standard .Nm variables that may be set, the values to which each may be set, a brief description of what each variable does, and a reference to relevant manual pages. Third party packages may test for additional variables. .Pp By default, .Nm reads .Pa /etc/defaults/rc.conf (if it is readable) to obtain default values for various variables, and the end-user may override these by appending appropriate entries to the end of .Nm . .Pp .Xr rc.d 8 scripts that use .Ic load_rc_config from .Xr rc.subr 8 also support sourcing an optional end-user provided per-script override file .Pa /etc/rc.conf.d/ Ns Ar service , (where .Ar service is the contents of the .Sy name variable in the .Xr rc.d 8 script). This may contain variable overrides, including allowing the end-user to override various .Ic run_rc_command .Xr rc.d 8 control variables, and thus changing the operation of the script without requiring editing of the script. .Ss Variable naming conventions and data types Most variables are one of two types: enabling variables or flags variables. Enabling variables, such as .Sy inetd , are generally named after the program or the system they enable, and have boolean values (specified using .Ql YES , .Ql TRUE , .Ql ON or .Ql 1 for true, and .Ql NO , .Ql FALSE , .Ql OFF or .Ql 0 for false, with the values being case insensitive). Flags variables, such as .Sy inetd_flags have the same name with .Dq _flags appended, and determine what arguments are passed to the program if it is enabled. .Pp If a variable that .Xr rc 8 expects to be set is not set, or the value is not one of the allowed values, a warning will be printed. .Ss Overall control .Bl -tag -width net_interfaces .It Sy do_rcshutdown Boolean value. If false, .Xr shutdown 8 will not run .Pa /etc/rc.shutdown . .It Sy rcshutdown_rcorder_flags A string. Extra arguments to the .Xr rcorder 8 run by .Pa /etc/rc.shutdown . .It Sy rcshutdown_timeout A number. If non-blank, use this as the number of seconds to run a watchdog timer for which will terminate .Pa /etc/rc.shutdown if the timer expires before the shutdown script completes. .It Sy rc_configured Boolean value. If false then the system will drop into single-user mode during boot. .It Sy rc_fast_and_loose If set to a non-empty string, each script in .Pa /etc/rc.d will be executed in the current shell rather than a sub shell. This may be faster on slow machines that have an expensive .Xr fork 2 operation. .Bl -hang .It Em Note : Use this at your own risk! A rogue command or script may inadvertently prevent boot to multiuser. .El .It Sy rc_rcorder_flags A string. Extra arguments to the .Xr rcorder 8 run by .Pa /etc/rc . .It Sy rc_directories A string. Space separated list of directories searched for rc scripts. The default is .Pa /etc/rc.d . All directories in .Ev rc_directories must be located in the root file system, otherwise they will be silently skipped. .It Sy rc_silent Boolean value. If true then the usual output is suppressed, and .Xr rc 8 invokes the command specified in the .Va rc_silent_cmd variable once for each line of suppressed output. The default value of .Va rc_silent is set from the .Dv AB_SILENT flag in the kernel's .Va boothowto variable (see .Xr boot 8 , .Xr reboot 2 ) . .It Sy rc_silent_cmd A command to be executed once per line of suppressed output, when .Va rc_silent is true. The default value of .Va rc_silent_cmd is .Ql twiddle , which will display a spinning symbol instead of each line of output. Another useful value is .Ql \&: , which will display nothing at all. .El .Ss Basic network configuration .Bl -tag -width net_interfaces .It Sy defaultroute A string. Default IPv4 network route. If empty or not set, then the contents of .Pa /etc/mygate (if it exists) are used. .It Sy defaultroute6 A string. Default IPv6 network route. If empty or not set, then the contents of .Pa /etc/mygate6 (if it exists) are used. .It Sy domainname A string. NIS (YP) domain of host. If empty or not set, then the contents of .Pa /etc/defaultdomain (if it exists) are used. .It Sy force_down_interfaces A space separated list of interface names. These interfaces will be configured down when going from multiuser to single-user mode or on system shutdown. .It Sy dns_domain A string. Sets domain in .Pa /etc/resolv.conf . .It Sy dns_search A string. Sets search in .Pa /etc/resolv.conf . .It Sy dns_nameservers A string of space separated domain name servers. Sets nameserver for each value in .Pa /etc/resolv.conf . .It Sy dns_sortlist A string. Sets sortlist in .Pa /etc/resolv.conf . .It Sy dns_options A string. Sets options in .Pa /etc/resolv.conf . .It Sy dns_metric An unsigned integer. Sets the priority of the above DNS to other sources, lowest wins. Defaults to 0. .Pp This is important for some stateful interfaces, for example PPPoE interfaces which have no direct means of noticing .Dq disconnect events. .Pp All active .Xr pppoe 4 interfaces will be automatically added to this list. .It Sy hostname A string. Name of host. If empty or not set, then the contents of .Pa /etc/myname (if it exists) are used. .El .Ss Boottime file-system and swap configuration .Bl -tag -width net_interfaces .It Sy critical_filesystems_local A string. File systems mounted very early in the system boot before networking services are available. Usually .Pa /var is part of this, because it is needed by services such as .Xr dhcpcd 8 which may be required to get the network operational. The default is .Ql "OPTIONAL:" Ns Pa /var , where the .Ql "OPTIONAL:" prefix means that it's not an error if the file system is not present in .Xr fstab 5 . .It Sy critical_filesystems_remote A string. File systems such as .Pa /usr that may require network services to be available to mount, that must be available early in the system boot for general services to use. The default is .Ql "OPTIONAL:" Ns Pa /usr , where the .Ql "OPTIONAL:" prefix means that it is not an error if the file system is not present in .Xr fstab 5 . .It Sy critical_filesystems_zfs A string. Mount non-legacy ZFS file systems right after mounting local file systems listed in .Sy critical_filesystems_local variable. An entry can be prefixed with .Ql "OPTIONAL:" which means that it is not an error if the file system is not present among available ZFS datasets. The default is ''. .It Sy fsck_flags A string. A file system is checked with .Xr fsck 8 during boot before mounting it. This option may be used to override the default command-line options passed to the .Xr fsck 8 program. .Pp When set to .Fl y , .Xr fsck 8 assumes yes as the answer to all operator questions during file system checks. This might be important with hosts where the administrator does not have access to the console and an unsuccessful shutdown must not make the host unbootable even if the file system checks would fail in preen mode. .It Sy modules Boolean value. If true, loads the modules specified in .Xr modules.conf 5 . .It Sy no_swap Boolean value. Should be true if you have deliberately configured your system with no swap. If false and no swap devices are configured, the system will warn you. .It Sy resize_root Boolean value. Set to true to have the system resize the root file system to fill its partition. Will only attempt to resize the root file system if it is of type ffs and does not have logging enabled. Defaults to false. .It Sy swapoff Boolean value. Remove block-type swap devices at shutdown time. Useful if swapping onto RAIDframe devices. .It Sy swapoff_umount .Dq "auto" or .Dq "manual" . Before removing block-type swap devices, it is wise to unmount tmpfs filesystems to avoid having to swap their contents back into RAM. By default .Dq ( "auto" ) all tmpfs filesystems that contain no device nodes are unmounted. Set to .Dq "manual" to explicitly specify which filesystems to unmount before removing swap. .It Sy swapoff_umount_fs A space-separated list of absolute paths to tmpfs mount points. If .Sy swapoff_umount is set to .Dq "manual" , these tmpfs filesystems will be forcibly unmounted before removing block-type swap devices. .It Sy var_shm_symlink A path. If set, names a path that .Pa /var/shm will be symlinked to. .Pp The path needs to live on a tmpfs file system. A typical value (assuming .Pa /tmp is mounted on tmpfs) would be .Pa /tmp/.shm . .El .Ss Block device subsystems .Bl -tag -width net_interfaces .It Sy ccd Boolean value. Configures concatenated disk devices according to .Xr ccd.conf 5 . .It Sy cgd Boolean value. Configures cryptographic disk devices. Requires .Pa /etc/cgd/cgd.conf . See .Xr cgdconfig 8 for additional details. .It Sy lvm Boolean value. Configures the logical volume manager. See .Xr lvm 8 for additional details. .It Sy raidframe Boolean value. Configures .Xr raid 4 , RAIDframe disk devices. See .Xr raidctl 8 for additional details. .It Sy zfs Boolean value. Configures ZFS storage pools and ZFS file systems. .El .Ss One-time actions to perform or programs to run on boot-up .Bl -tag -width net_interfaces .It Sy accounting Boolean value. Enables process accounting with .Xr accton 8 . Requires .Pa /var/account/acct to exist. .It Sy clear_tmp Boolean value. Clear .Pa /tmp after reboot. .It Sy dmesg Boolean value. Create .Pa /var/run/dmesg.boot from the output of .Xr dmesg 8 . Passes .Sy dmesg_flags . .It Sy entropy A string, either .Sq Li check , .Sq Li wait , or .Sq Li "" (empty). If set and nonempty, then during boot-up, after .Sy random_seed and .Sy rndctl , check for or wait until enough entropy before any networking is enabled. .Pp If not enough entropy is available, then: .Bl -bullet -compact .It With .Sq Li entropy=check , stop multiuser boot and enter single-user mode instead. .It With .Sq Li entropy=wait , wait until enough entropy is available. .El .Pp Note that .Sq Li entropy=wait may cause the system to hang indefinitely at boot if it has neither a random seed nor any hardware random number generators \(em use with care. .Pp If empty or not set, the system may come to multiuser without entropy, which is unsafe to use on the internet; it is the operator's responsibility to heed warnings from the kernel and the daily .Xr security.conf 5 report to remedy the problem \(em see .Xr entropy 7 . .It Sy envsys Boolean value. Sets preferences for the environmental systems framework, .Xr envsys 4 . Requires .Pa /etc/envsys.conf , which is described in .Xr envsys.conf 5 . .It Sy gpio Boolean value. Configure .Xr gpio 4 devices. See .Xr gpio.conf 5 . .It Sy ldconfig Boolean value. Configures .Xr a.out 5 runtime link editor directory cache. .It Sy mixerctl Boolean value. Read .Xr mixerctl.conf 5 for how to set mixer values. List in .Sy mixerctl_mixers the devices whose settings are to be saved at shutdown and restored at start-up. .It Sy newsyslog Boolean value. Run .Nm newsyslog to trim log files before syslogd starts. Intended for laptop users. Passes .Sy newsyslog_flags . .It Sy per_user_tmp Boolean value. Enables a per-user .Pa /tmp directory. .Sy per_user_tmp_dir can be used to override the default location of the .Dq real temporary directories, .Pa /private/tmp . See .Xr security 7 for additional details. .It Sy quota Boolean value. Checks and enables quotas by running .Xr quotacheck 8 and .Xr quotaon 8 . .It Sy random_seed Boolean value. During boot-up, runs the .Xr rndctl 8 utility with the .Fl L flag to seed the random number subsystem from an entropy file. During shutdown, runs the .Xr rndctl 8 utility with the .Fl S flag to save some random information to the entropy file. The entropy file name is specified by the .Sy random_file variable, and defaults to .Pa /var/db/entropy-file . The entropy file must be on a local file system that is writable early during boot-up (just after the file systems specified in .Sy critical_filesystems_local have been mounted), and correspondingly late during shutdown. .It Sy rndctl Boolean value. Runs the .Xr rndctl 8 utility one or more times according to the specification in .Sy rndctl_flags . .Pp If .Sy rndctl_flags does not contain a semicolon .Pq Ql \&; then it is expected to contain zero or more flags, followed by one or more device or type names. The .Xr rndctl 8 command will be executed once for each device or type name. If the specified flags do not include any of .Fl c , C , e , or .Fl E , then the flags .Fl c and .Fl e are added, to specify that entropy from the relevant device or type should be both collected and estimated. If the specified flags do not include either of .Fl d or .Fl t , then the flag .Fl d is added, to specify that the non-flag arguments are device names, not type names. .Pp .Sy rndctl_flags may contain multiple semicolon-separated segments, in which each segment contains flags and device or type names as described above. This allows different flags to be associated with different device or type names. For example, given .Li rndctl_flags="wd0 wd1; -t tty; -c -t net" , the following commands will be executed: .Li "rndctl -c -e -d wd0" ; .Li "rndctl -c -e -d wd1" ; .Li "rndctl -c -e -t tty" ; .Li "rndctl -c -t net" . .It Sy rtclocaltime Boolean value. Sets the real time clock to local time by adjusting the .Xr sysctl 7 value of .Pa kern.rtc_offset . The offset from UTC is calculated automatically according to the time zone information in the file .Pa /etc/localtime . .It Sy savecore Boolean value. Runs the .Xr savecore 8 utility. Passes .Sy savecore_flags . The directory where crash dumps are stored is specified by .Sy savecore_dir . The default setting is .Pa /var/crash . .It Sy sysdb Boolean value. Builds various system databases, including .Pa /var/run/dev.cdb , .Pa /etc/spwd.db , .Pa /var/db/netgroup.db , .Pa /var/db/services.cdb , and entries for .Xr utmp 5 . .It Sy tpctl Boolean value. Run .Xr tpctl 8 to calibrate touch panel device. Passes .Sy tpctl_flags . .It Sy update_motd Boolean value. Updates the .Nx version string in the .Pa /etc/motd file to reflect the version of the running kernel. See .Xr motd 5 . .It Sy update_motd_release Boolean value. If enabled in addition to .Sy update_motd , updates a second .Nx version string in the .Pa /etc/motd file to reflect the version, architecture, and Build ID of the installed userland. An optional prefix can be provided for this version string in .Sy motd_release_tag . .It Sy virecover Boolean value. Send notification mail to users if any recoverable files exist in .Pa /var/tmp/vi.recover . Read .Xr virecover 8 for more information. .It Sy wdogctl Boolean value. Configures watchdog timers. Passes .Sy wdogctl_flags . Refer to .Xr wdogctl 8 for information on how to configure a timer. .El .Ss System security settings .Bl -tag -width net_interfaces .It Sy securelevel A number. The system securelevel is set to the specified value early in the boot process, before any external logins, or other programs that run users job, are started. If set to nothing, the default action is taken, as described in .Xr init 8 and .Xr secmodel_securelevel 9 , which contains definitive information about the system securelevel. Note that setting .Sy securelevel to 0 in .Nm will actually result in the system booting with securelevel set to 1, as .Xr init 8 will raise the level when .Xr rc 8 completes. .It Sy permit_nonalpha Boolean value. Allow passwords to include non-alpha characters, usually to allow NIS/YP netgroups. .It Sy veriexec Boolean value. Load Veriexec fingerprints during startup. Read .Xr veriexecctl 8 for more information. .It Sy veriexec_strict A number. Controls the strict level of Veriexec. Level 0 is learning mode, used when building the signatures file. It will only output messages but will not enforce anything. Level 1 will only prevent access to files with a fingerprint mismatch. Level 2 will also deny writing to and removing of monitored files, as well as enforce access type (as specified in the signatures file). Level 3 will take a step further and prevent access to files that are not monitored. .It Sy veriexec_verbose A number. Controls the verbosity of Veriexec. Recommended operation is at level 0, verbose output (mostly used when building the signatures file) is at level 1. Level 2 is for debugging only and should not be used. .It Sy veriexec_flags A string. Flags to pass to the .Nm veriexecctl command. .It Sy smtoff Boolean value. Disables SMT (Simultaneous Multi-Threading). .El .Ss Networking startup .Bl -tag -width net_interfaces .It Sy altqd Boolean value. ALTQ configuration/monitoring daemon. Passes .Sy altqd_flags . .It Sy auto_ifconfig Boolean value. Sets the .Sy net_interfaces variable (see below) to the output of .Xr ifconfig 8 with the .Fl l flag and suppresses warnings about interfaces in this list that do not have an ifconfig file or variable. .It Sy blocklistd Boolean value. Runs .Xr blocklistd 8 to dynamically block hosts on a DoS according to configuration set in .Xr blocklistd.conf 5 Passes .Sy blocklistd_flags . .It Sy dhcpcd Boolean value. Set true to configure some or all network interfaces using dhcpcd. If you set .Sy dhcpcd true, then .Pa /var must be in .Sy critical_filesystems_local , or .Pa /var must be on the root file system. If you need to restrict dhcpcd to one or a number of interfaces, or need a separate configuration per interface, then this should be done in the configuration file - see .Xr dhcpcd.conf 5 for details. dhcpcd presently ignores the .Sy wpa_supplicant variable in rc.conf and will start wpa_supplicant if a suitable wpa_supplicant.conf is found unless otherwise instructed in .Xr dhcpcd.conf 5 . .It Sy dhcpcd_flags Passes .Sy dhcpcd_flags to dhcpcd. See .Xr dhcpcd 8 for complete documentation. .It Sy flushroutes Boolean value. Flushes the route table on networking startup. Useful when coming up to multiuser mode after going down to single-user mode. .It Sy ftp_proxy Boolean value. Runs .Xr ftp-proxy 8 , the proxy daemon for the Internet File Transfer Protocol. .It Sy hostapd Boolean value. Runs .Xr hostapd 8 , the authenticator for IEEE 802.11 networks. .It Sy ifaliases_* A string. List of .Sq Em "address netmask" pairs to configure additional network addresses for the given configured interface (e.g. .Sy ifaliases_le0 ) . If .Em netmask is .Ql - , then use the default netmask for the interface. .Pp .Sy ifaliases_* covers limited cases only and is considered unrecommended. We recommend using .Sy ifconfig_xxN variables or .Pa /etc/ifconfig. Ns Ar xxN files with multiple lines instead. .It Sy ifwatchd Boolean value. Monitor dynamic interfaces and perform actions upon address changes. Passes .Sy ifwatchd_flags . .It Sy ip6addrctl Boolean value. Fine grain control of address and routing priorities. .It Sy ip6addrctl_policy A string. Can be: .Bl -tag -width "Ql auto" -compact .It Ql auto automatically determine from system settings; will read priorities from .Pa /etc/ip6addrctl.conf or if that file does not exist it will default to IPv6 first, then IPv4. .It Ql ipv4_prefer try IPv4 before IPv6. .It Ql ipv6_prefer try IPv6 before IPv4. .El .It Sy ip6addrctl_verbose Boolean value. If set, print the resulting prefixes and priorities map. .It Sy ip6mode A string. An IPv6 node can be a router .Pq nodes that forward packet for others or a host .Pq nodes that do not forward . A host can be autoconfigured based on the information advertised by adjacent IPv6 routers. By setting .Sy ip6mode to .Ql router , .Ql host , or .Ql autohost , you can configure your node as a router, a non-autoconfigured host, or an autoconfigured host. Invalid values will be ignored, and the node will be configured as a non-autoconfigured host. .It Sy ip6uniquelocal Boolean value. If .Sy ip6mode is equal to .Ql router , and .Sy ip6uniquelocal is false, a reject route will be installed on boot to avoid misconfiguration relating to unique-local addresses. If .Sy ip6uniquelocal is true, the reject route won't be installed. .It Sy ipfilter Boolean value. Runs .Xr ipf 8 to load in packet filter specifications from .Pa /etc/ipf.conf at network boot time, before any interfaces are configured. Passes .Sy ipfilter_flags . See .Xr ipf.conf 5 . .It Sy ipfs Boolean value. Runs .Xr ipfs 8 to save and restore information for ipnat and ipfilter state tables. The information is stored in .Pa /var/db/ipf/ipstate.ipf and .Pa /var/db/ipf/ipnat.ipf . Passes .Sy ipfs_flags . .It Sy ipmon Boolean value. Runs .Xr ipmon 8 to read .Xr ipf 8 packet log information and log it to a file or the system log. Passes .Sy ipmon_flags . .It Sy ipmon_flags A string. Specifies arguments to supply to .Xr ipmon 8 . Defaults to .Ql -ns . A typical example would be .Ql "-nD /var/log/ipflog" to have .Xr ipmon 8 log directly to a file bypassing .Xr syslogd 8 . If the .Fl D argument is used, remember to modify .Pa /etc/newsyslog.conf accordingly; for example: .Pp .Dl /var/log/ipflog 640 10 100 * Z /var/run/ipmon.pid .It Sy ipnat Boolean value. Runs .Xr ipnat 8 to load in the IP network address translation (NAT) rules from .Pa /etc/ipnat.conf at network boot time, before any interfaces are configured. See .Xr ipnat.conf 5 . .It Sy ipsec Boolean value. Runs .Xr setkey 8 to load in IPsec manual keys and policies from .Pa /etc/ipsec.conf at network boot time, before any interfaces are configured. .It Sy npf Boolean value. Loads .Xr npf.conf 5 at network boot time, and starts .Xr npf 7 . .It Sy npfd Boolean value. Runs .Xr npfd 8 , the NPF packet filter logging and state synchronization daemon. Passes .Sy npfd_flags . .It Sy net_interfaces A string. The list of network interfaces to be configured at boot time. For each interface "xxN", the system first looks for ifconfig parameters in the variable .Sy ifconfig_xxN , and then in the file .Pa /etc/ifconfig.xxN . If .Sy auto_ifconfig is false, and neither the variable nor the file is found, a warning is printed. Information in either the variable or the file is parsed identically, except that, if an .Sy ifconfig_xxN variable contains a single line with embedded semicolons, then the value is split into multiple lines prior to further parsing, treating the semicolon as a line separator. .Pp One common case it to set the .Sy ifconfig_xxN variable to a set of arguments to be passed to an .Xr ifconfig 8 command after the interface name. Refer to .Xr ifconfig.if 5 for more details on .Pa /etc/ifconfig.xxN files, and note that the information there also applies to .Sy ifconfig_xxN variables (after the variables are split into lines). .It Sy ntpdate Boolean value. Runs .Xr ntpdate 8 to set the system time from one of the hosts in .Sy ntpdate_hosts . If .Sy ntpdate_hosts is empty, it will attempt to find a list of hosts in .Pa /etc/ntp.conf . Passes .Sy ntpdate_flags . .It Sy pf Boolean value. Enable .Xr pf 4 at network boot time: Load the initial configuration .Xr pf.boot.conf 5 before the network is up. After the network has been configured, then load the final rule set .Xr pf.conf 5 . .It Sy pf_rules A string. The path of the .Xr pf.conf 5 rule set that will be used when loading the final rule set. .It Sy pflogd Boolean value. Run .Xr pflogd 8 for dumping packet filter logging information to a file. .It Sy ppp A boolean. Toggles starting .Xr pppd 8 on startup. See .Sy ppp_peers below. .It Sy ppp_peers A string. If .Sy ppp is true and .Sy ppp_peers is not empty, then .Pa /etc/rc.d/ppp will check each word in .Sy ppp_peers for a corresponding ppp configuration file in .Pa /etc/ppp/peers and will call .Xr pppd 8 with the .Dq Ic call Va peer option. .It Sy racoon Boolean value. Runs .Xr racoon 8 , the IKE (ISAKMP/Oakley) key management daemon. .It Sy wpa_supplicant Boolean value. Run .Xr wpa_supplicant 8 , WPA/802.11i Supplicant for wireless network devices. If you set .Sy wpa_supplicant true, then .Pa /usr must be in .Sy critical_filesystems_local , or .Pa /usr must be on the root file system. dhcpcd ignores this variable, see the .Sy dhcpcd variable for details. .El .Ss Daemons required by other daemons .Bl -tag -width net_interfaces .It Sy inetd Boolean value. Runs the .Xr inetd 8 daemon to start network server processes (as listed in .Pa /etc/inetd.conf ) as necessary. Passes .Sy inetd_flags . The .Fl l flag turns on libwrap connection logging. .It Sy rpcbind Boolean value. The .Xr rpcbind 8 daemon is required for any .Xr rpc 3 services. These include NFS, NIS, .Xr rpc.bootparamd 8 , .Xr rpc.rstatd 8 , .Xr rpc.rusersd 8 , and .Xr rpc.rwalld 8 . Passes .Sy rpcbind_flags . .El .Ss Commonly used daemons .Bl -tag -width net_interfaces .It Sy cron Boolean value. Run .Xr cron 8 . .It Sy ftpd Boolean value. Runs the .Xr ftpd 8 daemon and passes .Sy ftpd_flags . .It Sy httpd Boolean value. Runs the .Xr httpd 8 daemon and passes .Sy httpd_flags . .It Sy httpd_wwwdir A string. The .Xr httpd 8 WWW root directory. Used only if .Sy httpd is true. The default setting is .Pa /var/www . .It Sy httpd_wwwuser A string. If non-blank and .Sy httpd is true, run .Xr httpd 8 and cause it to switch to the specified user after initialization. It is preferred to .Sy httpd_user because .Xr httpd 8 is requiring extra privileges to start listening on default port 80. The default setting is .Ql _httpd . .It Sy lpd Boolean value. Runs .Xr lpd 8 and passes .Sy lpd_flags . The .Fl l flag will turn on extra logging. .It Sy mdnsd Boolean value. Runs .Xr mdnsd 8 . .It Sy named Boolean value. Runs .Xr named 8 and passes .Sy named_flags . .It Sy named_chrootdir A string. If non-blank and .Sy named is true, run .Xr named 8 as the unprivileged user and group .Sq named , .Xr chroot 2 Ns ed to .Sy named_chrootdir . .Li \&${named_chrootdir} Ns Pa /var/run/log will be added to the list of log sockets that .Xr syslogd 8 listens to. .It Sy ntpd Boolean value. Runs .Xr ntpd 8 and passes .Sy ntpd_flags . .It Sy ntpd_chrootdir A string. If non-blank and .Sy ntpd is true, run .Xr ntpd 8 as the unprivileged user and group .Sq ntpd , .Xr chroot 2 Ns ed to .Sy ntpd_chrootdir . .Li \&${ntpd_chrootdir} Ns Pa /var/run/log will be added to the list of log sockets that .Xr syslogd 8 listens to. This option requires that the kernel has .D1 Cd pseudo-device clockctl compiled in, and that .Pa /dev/clockctl is present. .It Sy postfix Boolean value. Starts .Xr postfix 1 mail system. .It Sy sshd Boolean value. Runs .Xr sshd 8 and passes .Sy sshd_flags . .It Sy syslogd Boolean value. Runs .Xr syslogd 8 and passes .Sy syslogd_flags . .It Sy timed Boolean value. Runs .Xr timed 8 and passes .Sy timed_flags . The .Fl M option allows .Xr timed 8 to be a master time source as well as a slave. If you are also running .Xr ntpd 8 , only one machine running both should have the .Fl M flag given to .Xr timed 8 . .It Sy unbound Boolean value. Runs .Xr unbound 8 . .It Sy unbound_chrootdir A string. If non-blank and .Sy unbound is true, run .Xr unbound 8 .Xr chroot 2 Ns ed to .Sy unbound_chrootdir . .El .Ss Routing daemons .Bl -tag -width net_interfaces .It Sy mrouted Boolean value. Runs .Xr mrouted 8 , the DVMRP multicast routing protocol daemon. Passes .Sy mrouted_flags . .It Sy route6d Boolean value. Runs .Xr route6d 8 , the RIPng routing protocol daemon for IPv6. Passes .Sy route6d_flags . .It Sy routed Boolean value. Runs .Xr routed 8 , the RIP routing protocol daemon. Passes .Sy routed_flags . .\" This should be false .\" if .\" .Sy gated .\" is true. .El .Ss Daemons used to boot other hosts over a network .Bl -tag -width net_interfaces .It Sy bootparamd Boolean value. Runs .Xr bootparamd 8 , the boot parameter server, with .Sy bootparamd_flags as options. Used to boot .Nx and SunOS 4.x systems. .It Sy dhcpd Boolean value. Runs .Xr dhcpd 8 , the Dynamic Host Configuration Protocol (DHCP) daemon, for assigning IP addresses to hosts and passing boot information. Passes .Sy dhcpd_flags . .It Sy dhcrelay Boolean value. Runs .Xr dhcrelay 8 . Passes .Sy dhcrelay_flags . .It Sy mopd Boolean value. Runs .Xr mopd 8 , the DEC MOP protocol daemon; used for booting VAX and other DEC machines. Passes .Sy mopd_flags . .It Sy ndbootd Boolean value. Runs .Xr ndbootd 8 , the Sun Network Disk (ND) Protocol server. Passes .Sy ndbootd_flags . .It Sy rarpd Boolean value. Runs .Xr rarpd 8 , the reverse ARP daemon, often used to boot .Nx and Sun workstations. Passes .Sy rarpd_flags . .It Sy rbootd Boolean value. Runs .Xr rbootd 8 , the HP boot protocol daemon; used for booting HP workstations. Passes .Sy rbootd_flags . .It Sy rtadvd Boolean value. Runs .Xr rtadvd 8 , the IPv6 router advertisement daemon, which is used to advertise information about the subnet to IPv6 end hosts. Passes .Sy rtadvd_flags . This is only for IPv6 routers, so set .Sy ip6mode to .Ql router if you use it. .El .Ss X Window System daemons .Bl -tag -width net_interfaces .It Sy xdm Boolean value. Runs the .Xr xdm 1 X display manager. These X daemons are available only with the optional X distribution of .Nx . .It Sy xfs Boolean value. Runs the .Xr xfs 1 X11 font server, which supplies local X font files to X terminals. .El .Ss NIS (YP) daemons .Bl -tag -width net_interfaces .It Sy ypbind Boolean value. Runs .Xr ypbind 8 , which lets NIS (YP) clients use information from a NIS server. Passes .Sy ypbind_flags . .It Sy yppasswdd Boolean value. Runs .Xr yppasswdd 8 , which allows remote NIS users to update password on master server. Passes .Sy yppasswdd_flags . .It Sy ypserv Boolean value. Runs .Xr ypserv 8 , the NIS (YP) server for distributing information from certain files in .Pa /etc . Passes .Sy ypserv_flags . The .Fl d flag causes it to use DNS for lookups in .Pa /etc/hosts that fail. .El .Ss NFS daemons and parameters .Bl -tag -width net_interfaces .It Sy amd Boolean value. Runs .Xr amd 8 , the automounter daemon, which automatically mounts NFS file systems whenever a file or directory within that file system is accessed. Passes .Sy amd_flags . .It Sy amd_dir A string. The .Xr amd 8 mount directory. Used only if .Sy amd is true. .It Sy lockd Boolean value. Runs .Xr rpc.lockd 8 if .Sy nfs_server and/or .Sy nfs_client are true. Passes .Sy lockd_flags . .It Sy mountd Boolean value. Runs .Xr mountd 8 and passes .Sy mountd_flags . .It Sy nfs_client Boolean value. The number of local NFS asynchronous I/O server is now controlled via .Xr sysctl 8 . .It Sy nfs_server Boolean value. Sets up a host to be a NFS server by running .Xr nfsd 8 and passing .Sy nfsd_flags . .It Sy statd Boolean value. Runs .Xr rpc.statd 8 , a status monitoring daemon used when .Xr rpc.lockd 8 is running, if .Sy nfs_server and/or .Sy nfs_client are true. Passes .Sy statd_flags . .El .Ss Bluetooth support .Bl -tag -width net_interfaces .It Sy bluetooth Boolean value. Configure Bluetooth support, comprising the following tasks: .Bl -dash -compact .It attach serial Bluetooth controllers as listed in the .Pa /etc/bluetooth/btattach.conf configuration file. .It enable Bluetooth controllers with useful defaults, plus additional options as detailed below. .It optionally, start .Xr bthcid 8 , the Bluetooth Link Key/PIN Code manager, passing .Sy bthcid_flags . .It configure local Bluetooth drivers as listed in the .Pa /etc/bluetooth/btdevctl.conf configuration file. .It optionally, start .Xr sdpd 8 , the Service Discovery server, passing .Sy sdpd_flags . .El .It Sy btconfig_devices A string. An optional list of Bluetooth controllers to configure. .It Sy btconfig_{dev} A string. Additional configuration options for specific Bluetooth controllers. .It Sy btconfig_args A string. Additional configuration options for Bluetooth controllers without specific options as above. .It Sy bthcid Boolean value. If set to false, disable starting the Bluetooth Link Key/PIN Code manager. .It Sy sdpd Boolean value. If set to false, disable starting the Bluetooth Service Discovery server. .El .Ss Other daemons .Bl -tag -width net_interfaces .It Sy identd Boolean value. Runs .Xr identd 8 , the daemon for the user identification protocol. Passes .Sy identd_flags . .It Sy iscsi_target Boolean value. Runs the server for iSCSI requests, .Xr iscsi-target 8 . Passes .Sy iscsi_target_flags . .It Sy kdc Boolean value. Runs the .Xr kdc 8 Kerberos v4 and v5 server. This should be run on Kerberos master and slave servers. .It Sy rwhod Boolean value. Runs .Xr rwhod 8 to support the .Xr rwho 1 and .Xr ruptime 1 commands. .It Sy autofs Boolean value. If set to .Ql YES , start the .Xr automount 8 utility and the .Xr automountd 8 and .Xr autounmountd 8 daemons at boot time. .It Sy automount_flags A string. If .Sy autofs is set to .Ql YES , these are the flags to pass to the .Xr automount 8 program. By default no flags are passed. .It Sy automountd_flags A string. If .Sy autofs is set to .Ql YES , these are the flags to pass to the .Xr automountd 8 daemon. By default no flags are passed. .It Sy autounmountd_flags A string. If .Sy autofs is set to .Ql YES , these are the flags to pass to the .Xr autounmountd 8 daemon. By default no flags are passed. .El .Ss Hardware daemons .Bl -tag -width net_interfaces .It Sy apmd Boolean value. Runs .Xr apmd 8 and passes .Sy apmd_flags . .It Sy irdaattach Boolean value. Runs .Xr irdaattach 8 and passes .Sy irdaattach_flags . .It Sy moused Boolean value. Runs .Xr moused 8 , to pass serial mouse data to the wscons mouse mux. Passes .Sy moused_flags . .It Sy screenblank Boolean value. Runs .Xr screenblank 1 and passes .Sy screenblank_flags . .It Sy wscons Boolean value. Configures the .Xr wscons 4 console driver, from the configuration file .Pa /etc/wscons.conf . .It Sy wsmoused Boolean value. Runs .Xr wsmoused 8 , to provide copy and paste text support in wscons displays. Passes .Sy wsmoused_flags . .El .Sh FILES .Bl -tag -width /etc/defaults/rc.conf -compact .It Pa /etc/rc.conf The file .Nm resides in .Pa /etc . .It Pa /etc/defaults/rc.conf Default settings for .Nm , sourced by .Nm before the end-user configuration section. .It Pa /etc/rc.conf.d/ Ns Ar foo .Ar foo Ns No -specific .Nm overrides. .El .Sh SEE ALSO .Xr boot 8 , .Xr rc 8 , .Xr rc.d 8 , .Xr rc.subr 8 , .Xr rcorder 8 .Sh HISTORY The .Nm file appeared in .Nx 1.3 . @ 1.192 log @Document critical_filesystems_zfs. @ text @d1 1 a1 1 .\" $NetBSD: rc.conf.5,v 1.191 2022/02/20 10:49:17 alnsn Exp $ d457 3 a459 2 A string, .Sq Li check d461 3 a463 2 .Sq Li wait . If set, then during boot-up, after @ 1.192.2.1 log @Pull up following revision(s) (requested by riastradh in ticket #319): sys/dev/pci/ubsec.c: revision 1.64 sys/dev/pci/hifn7751.c: revision 1.82 lib/libc/gen/getentropy.3: revision 1.5 lib/libc/gen/getentropy.3: revision 1.6 share/man/man4/rnd.4: revision 1.41 lib/libc/sys/getrandom.2: revision 1.2 lib/libc/sys/getrandom.2: revision 1.3 share/man/man5/rc.conf.5: revision 1.193 share/man/man7/entropy.7: revision 1.5 share/man/man7/entropy.7: revision 1.6 share/man/man7/entropy.7: revision 1.7 share/man/man7/entropy.7: revision 1.8 etc/security: revision 1.130 share/man/man7/entropy.7: revision 1.9 etc/security: revision 1.131 sys/crypto/cprng_fast/cprng_fast.c: revision 1.19 sys/sys/rndio.h: revision 1.3 tests/lib/libc/sys/t_getrandom.c: revision 1.5 etc/defaults/rc.conf: revision 1.164 etc/defaults/rc.conf: revision 1.165 sys/sys/rndsource.h: revision 1.10 sys/kern/kern_entropy.c: revision 1.62 sys/kern/kern_entropy.c: revision 1.63 sys/kern/kern_entropy.c: revision 1.64 sys/kern/subr_cprng.c: revision 1.44 sys/kern/kern_entropy.c: revision 1.65 sys/kern/kern_clock.c: revision 1.149 sys/dev/pci/viornd.c: revision 1.22 share/man/man9/rnd.9: revision 1.32 sys/kern/subr_prf.c: revision 1.202 sys/sys/rndsource.h: revision 1.8 sys/sys/rndsource.h: revision 1.9 share/man/man7/entropy.7: revision 1.10 1. Reinstate netbsd<=9 entropy estimator to unblock /dev/random, in parallel with assessment of only confident entropy sources (seed, HWRNG) for security warnings like sshd keys in motd and daily insecurity report. 2. Make multiuser boot wait for first /dev/random output soon after loading a seed and configuring rndctl, so that getentropy(3) meets its contract starting early at boot without introducing blocking paths that could cause hangs in init(8) or single-user mode. Operators can choose to disable this wait in rc.conf. 3. Fix some bugs left over from reducing the global entropy lock from a spin lock at IPL_VM to an adaptive lock at IPL_SOFTSERIAL. 4. Update man pages. @ text @d1 1 a1 1 .\" $NetBSD: rc.conf.5,v 1.192 2022/02/20 14:43:39 alnsn Exp $ d457 2 a458 3 A string, either .Sq Li check , .Sq Li wait , d460 2 a461 3 .Sq Li "" (empty). If set and nonempty, then during boot-up, after @ 1.191 log @Document zfs variable. @ text @d1 1 a1 1 .\" $NetBSD: rc.conf.5,v 1.190 2021/01/15 15:18:32 riastradh Exp $ d324 11 @ 1.190 log @Tweak wording for consistency: `if empty or not set', not `if unset'. @ text @d1 1 a1 1 .\" $NetBSD: rc.conf.5,v 1.189 2021/01/15 15:17:08 riastradh Exp $ d58 1 a58 1 .Dd September 11, 2020 d419 3 @ 1.189 log @Clarify that `entropy' may be left unset in rc.conf. @ text @d1 1 a1 1 .\" $NetBSD: rc.conf.5,v 1.188 2021/01/10 23:24:26 riastradh Exp $ d472 3 a474 3 If unset, the system may come to multiuser without entropy, which is unsafe to use on the internet; it is the operator's responsibility to heed warnings from the kernel and the daily @ 1.188 log @Various entropy integration improvements. - New /etc/security check for entropy in daily security report. - New /etc/rc.d/entropy script runs (after random_seed and rndctl) to check for entropy at boot -- in rc.conf, you can: . set `entropy=check' to halt multiuser boot and enter single-user mode if not enough entropy . set `entropy=wait' to make multiuser boot wait until enough entropy Default is to always boot without waiting -- and rely on other channels like security report to alert the operator if there's a problem. - New man page entropy(7) discussing the higher-level concepts and system integration with cross-references. - New paragraph in afterboot(8) about entropy citing entropy(7) for more details. This change addresses many of the issues discussed in security/55659. This is a first draft; happy to take improvements to the man pages and scripted messages to improve clarity. I considered changing motd to include an entropy warning with a reference to the entropy(7) man page, but it's a little trickier: - Not sure it's appropriate for all users to see at login rather than users who have power to affect the entropy estimate (maybe it is, just haven't decided). - We only have a mechanism for changing once at boot; the message would remain until next boot even if an operator adds enough entropy. - The mechanism isn't really conducive to making a message appear conditionally from boot to boot. @ text @d1 1 a1 1 .\" $NetBSD: rc.conf.5,v 1.187 2020/09/11 12:20:01 wiz Exp $ d471 7 @ 1.187 log @New sentence, new line. @ text @d1 1 a1 1 .\" $NetBSD: rc.conf.5,v 1.186 2020/09/11 12:01:59 kim Exp $ d442 29 @ 1.186 log @Document update_motd_release and motd_release_tag @ text @d1 1 a1 1 .\" $NetBSD: rc.conf.5,v 1.185 2020/07/15 17:55:34 leot Exp $ d619 2 a620 2 the installed userland. An optional prefix can be provided for this version string in @ 1.185 log @Document unbound and unbound_chrootdir. @ text @d1 1 a1 1 .\" $NetBSD: rc.conf.5,v 1.184 2020/07/15 16:52:48 jruoho Exp $ d58 1 a58 1 .Dd July 15, 2020 d610 12 @ 1.184 log @'s/blacklistd/blocklistd/'. Note also blocklistd_flags. @ text @d1 1 a1 1 .\" $NetBSD: rc.conf.5,v 1.183 2020/07/15 16:46:11 jruoho Exp $ d1187 13 @ 1.183 log @Note modules. @ text @d1 1 a1 1 .\" $NetBSD: rc.conf.5,v 1.182 2020/06/24 10:30:43 jruoho Exp $ d701 1 a701 1 .It Sy blacklistd d704 1 a704 1 .Xr blacklistd 8 d706 3 a708 1 .Xr blacklistd.conf 5 @ 1.182 log @As bin/55344 was fixed, note the flags also in rc.conf(5). @ text @d1 1 a1 1 .\" $NetBSD: rc.conf.5,v 1.181 2019/06/03 06:04:20 msaitoh Exp $ d58 1 a58 1 .Dd June 24, 2020 d341 4 @ 1.181 log @ Fix typo in comment (s/seperate/separate/). @ text @d1 1 a1 1 .\" $NetBSD: rc.conf.5,v 1.180 2019/05/11 19:31:03 maxv Exp $ d58 1 a58 1 .Dd June 3, 2019 d902 2 @ 1.181.2.1 log @Pull up following revision(s) (requested by kim in ticket #1080): etc/rc.d/motd: revision 1.10 etc/rc.d/motd: revision 1.11 share/man/man5/rc.conf.5: revision 1.186 share/man/man5/rc.conf.5: revision 1.187 etc/defaults/rc.conf: revision 1.159 Add optional release info in /etc/motd My personal preferencese for /etc/rc.conf: update_motd_release=YES motd_release_tag='Binaries: ' This provides an explanation to users about the second version in motd. Document update_motd_release and motd_release_tag New sentence, new line. Make a ": " suffix a fixed part of the release info tag This results in correct updates to /etc/motd even when the value of motd_release_tag is changed (a likely event). Add safe quoting to outputting the read kernel version. Thanks to kre@@ for the feedback. @ text @d1 1 a1 1 .\" $NetBSD: rc.conf.5,v 1.181 2019/06/03 06:04:20 msaitoh Exp $ d58 1 a58 1 .Dd September 11, 2020 a605 12 .It Sy update_motd_release Boolean value. If enabled in addition to .Sy update_motd , updates a second .Nx version string in the .Pa /etc/motd file to reflect the version, architecture, and Build ID of the installed userland. An optional prefix can be provided for this version string in .Sy motd_release_tag . @ 1.180 log @Add smtoff, an rc.d script that disables Simultaneous Multi-Threading. It parses the output of cpuctl, and executes "cpuctl offline" for each CPU that has SmtID!=0. The default is "smtoff=NO", which means that SMT remains enabled. @ text @d1 1 a1 1 .\" $NetBSD: rc.conf.5,v 1.179 2018/10/20 08:47:03 wiz Exp $ d58 1 a58 1 .Dd May 11, 2019 d262 1 a262 1 A string of space seperated domain name servers. @ 1.179 log @Remove trailing whitespace. Fix a macro. @ text @d1 1 a1 1 .\" $NetBSD: rc.conf.5,v 1.178 2018/10/19 14:11:12 martin Exp $ d58 1 a58 1 .Dd October 19, 2018 d676 3 @ 1.178 log @Apply patch from Ian D. Leroux in PR bin/51019: when unmounting tmpfs file systems at shutdown time, avoid unmounting a tmpfs created by init on /dev - behaviour overridable from rc.conf. By default all tmpfs that have device nodes are not mounted. @ text @d1 1 a1 1 .\" $NetBSD: rc.conf.5,v 1.177 2018/10/01 11:16:04 uwe Exp $ d361 1 a361 1 By default d364 1 a364 1 Set to d369 1 a369 1 If d1317 1 a1317 1 .FL d @ 1.177 log @Use more .Ql (quoted literal) for variable values. Misc markup fixes. @ text @d1 1 a1 1 .\" $NetBSD: rc.conf.5,v 1.176 2018/10/01 07:11:27 wiz Exp $ d58 1 a58 1 .Dd September 23, 2018 d356 19 @ 1.176 log @Use more markup. @ text @d1 1 a1 1 .\" $NetBSD: rc.conf.5,v 1.175 2018/09/30 10:38:05 martin Exp $ d126 3 a128 3 .Sq Ic YES , .Sq Ic TRUE , .Sq Ic ON d130 1 a130 1 .Sq Ic 1 d132 3 a134 3 .Sq Ic NO , .Sq Ic FALSE , .Sq Ic OFF d136 1 a136 1 .Sq Ic 0 d140 3 a142 1 have the same name with "_flags" appended, and determine what d223 1 a223 1 .Dq twiddle , d226 1 a226 1 .Dq \&: , d305 1 a305 1 .Dq "OPTIONAL:/var" , d307 1 a307 1 .Dq "OPTIONAL:" d318 1 a318 1 .Dq "OPTIONAL:/usr" , d320 1 a320 1 .Dq "OPTIONAL:" d465 1 a465 1 .Dq Pa /private/tmp . d561 1 a561 1 .Dq Pa /var/crash . d672 1 a672 1 .Dq Li -l a730 1 .Dq * d736 1 a736 1 .Dq - , d742 1 a742 1 .Sy ifconfig_nnX d744 1 a744 1 .Pa /etc/ifconfig.xxN d757 2 a758 2 .Bl -tag -width auto -compact .It Li auto d762 1 a762 1 .It Li ipv4_prefer d764 1 a764 1 .It Li ipv6_prefer d781 2 a782 2 .Dq Li router , .Dq Li host , d784 1 a784 1 .Dq Li autohost , d794 1 a794 1 .Dq Li router , d839 1 a839 1 .Dq Li -ns . d841 1 a841 1 .Dq Fl nD Pa /var/log/ipflog d847 1 a847 1 .Dq -D d851 2 a852 3 .Bd -literal /var/log/ipflog 640 10 100 * Z /var/run/ipmon.pid .Ed d966 1 a966 1 .Dq call Sy peer d1003 1 a1003 1 .Dq Li -l d1048 1 a1048 1 .Dq Pa /var/www . d1062 1 a1062 1 .Dq Dv _httpd . d1070 1 a1070 1 .Dq Li -l d1093 1 a1093 1 .Sy named_chrootdir Ns Pa /var/run/log d1114 1 a1114 1 .Sy ntpd_chrootdir Ns Pa /var/run/log d1119 1 a1119 1 .Dl pseudo-device clockctl d1147 1 a1147 1 .Dq Li -M d1154 1 a1154 1 .Dq Li -M d1254 1 a1254 1 .Dq Li router d1298 1 a1298 1 .Dq Li -d d1440 1 a1440 1 .Dq Li YES , d1453 1 a1453 1 .Dq Li YES , d1463 1 a1463 1 .Dq Li YES , d1473 1 a1473 1 .Dq Li YES , @ 1.175 log @Discussed some years ago but never commited: add an option to have a single tmpfs (on /tmp) and use that for /var/shm as well (via a symlink created after the tmpfs on /tmp has been mounted) @ text @d1 1 a1 1 .\" $NetBSD: rc.conf.5,v 1.174 2018/09/23 09:21:00 maxv Exp $ d356 3 a358 1 If set, names a path that /var/shm will be symlinked to. d361 3 a363 1 A typical value (assuming /tmp is mounted on tmpfs) would be @ 1.174 log @Remove ISDN from the kernel. It has remained unmaintained for a long time, is of poor quality, and is now an obstacle to MP-ification. It was removed ten years ago from FreeBSD for the same reason. This retires a big user of the mbuf API, and will ease maintenance of the kernel. @ text @d1 1 a1 1 .\" $NetBSD: rc.conf.5,v 1.173 2018/09/23 07:24:20 maxv Exp $ d354 7 @ 1.173 log @Remove the userland part of ISDN. The kernel part is untouched for now. ipppctl was actually an exact copy of pppoectl; there is no functional change in pppoectl in this commit. @ text @d1 1 a1 1 .\" $NetBSD: rc.conf.5,v 1.172 2018/07/27 15:31:02 roy Exp $ d58 1 a58 1 .Dd September 12, 2018 a282 2 and .Xr ippp 4 @ 1.172 log @Allow rc.conf to setup resolv.conf via resolvconf(8). This allows all static network config to be in rc.conf rather than spread across files. @ text @d1 1 a1 1 .\" $NetBSD: rc.conf.5,v 1.171 2018/07/13 21:46:58 maya Exp $ d58 1 a58 1 .Dd July 27, 2018 d276 2 a277 3 This is important for some stateful interfaces, for example PPP over ISDN connections that cost money by connection time or PPPoE interfaces which have no direct means of noticing a1412 17 .It Sy isdnd Boolean value. Runs .Xr isdnd 8 , the isdn4bsd ISDN connection management daemon. Passes .Sy isdnd_flags . .It Sy isdn_autoupdown Boolean value. Set all configured ISDN interfaces to .Dq up . If .Sy isdn_interfaces is not blank, only the listed interfaces will be modified. Used only if .Sy isdnd is true. @ 1.171 log @Remove dhclient references. @ text @d1 1 a1 1 .\" $NetBSD: rc.conf.5,v 1.170 2018/06/22 19:35:25 maya Exp $ d58 1 a58 1 .Dd July 14, 2018 d251 24 @ 1.170 log @Describe something for npf, npfd, blacklistd. @ text @d1 1 a1 1 .\" $NetBSD: rc.conf.5,v 1.169 2018/06/22 19:08:28 maya Exp $ d58 1 a58 1 .Dd June 22, 2018 a646 40 .It Sy dhclient Boolean value. Set true to configure some or all network interfaces using the ISC DHCP client. If you set .Sy dhclient true, then .Pa /var must be in .Sy critical_filesystems_local , or .Pa /var must be on the root file system, or you must modify the .Sy dhclient_flags variable to direct the DHCP client to store the leases file in some other directory on the root file system. You must not provide ifconfig information or ifaliases information for any interface that is to be configured using the DHCP client. Interface aliases can be set up in the DHCP client configuration file if needed - see .Xr dhclient.conf 5 for details. .Pp Passes .Sy dhclient_flags to the DHCP client. See .Xr dhclient 8 for complete documentation. If you wish to configure all broadcast network interfaces using the DHCP client, you can leave this blank. To configure only specific interfaces, name the interfaces to be configured on the command line. .Pp If you must run the DHCP client before mounting critical file systems, then you should specify an alternate location for the DHCP client's lease file in the .Sy dhclient_flags variable - for example, "-lf /tmp/dhclient.leases". @ 1.170.2.1 log @Sync with HEAD @ text @d1 1 a1 1 .\" $NetBSD: rc.conf.5,v 1.181 2019/06/03 06:04:20 msaitoh Exp $ d58 1 a58 1 .Dd June 3, 2019 d126 3 a128 3 .Ql YES , .Ql TRUE , .Ql ON d130 1 a130 1 .Ql 1 d132 3 a134 3 .Ql NO , .Ql FALSE , .Ql OFF d136 1 a136 1 .Ql 0 d140 1 a140 3 have the same name with .Dq _flags appended, and determine what d221 1 a221 1 .Ql twiddle , d224 1 a224 1 .Ql \&: , a250 24 .It Sy dns_domain A string. Sets domain in .Pa /etc/resolv.conf . .It Sy dns_search A string. Sets search in .Pa /etc/resolv.conf . .It Sy dns_nameservers A string of space separated domain name servers. Sets nameserver for each value in .Pa /etc/resolv.conf . .It Sy dns_sortlist A string. Sets sortlist in .Pa /etc/resolv.conf . .It Sy dns_options A string. Sets options in .Pa /etc/resolv.conf . .It Sy dns_metric An unsigned integer. Sets the priority of the above DNS to other sources, lowest wins. Defaults to 0. d252 3 a254 2 This is important for some stateful interfaces, for example PPPoE interfaces which have no direct means of noticing d260 2 d282 1 a282 1 .Ql "OPTIONAL:" Ns Pa /var , d284 1 a284 1 .Ql "OPTIONAL:" d295 1 a295 1 .Ql "OPTIONAL:" Ns Pa /usr , d297 1 a297 1 .Ql "OPTIONAL:" a332 30 .It Sy swapoff_umount .Dq "auto" or .Dq "manual" . Before removing block-type swap devices, it is wise to unmount tmpfs filesystems to avoid having to swap their contents back into RAM. By default .Dq ( "auto" ) all tmpfs filesystems that contain no device nodes are unmounted. Set to .Dq "manual" to explicitly specify which filesystems to unmount before removing swap. .It Sy swapoff_umount_fs A space-separated list of absolute paths to tmpfs mount points. If .Sy swapoff_umount is set to .Dq "manual" , these tmpfs filesystems will be forcibly unmounted before removing block-type swap devices. .It Sy var_shm_symlink A path. If set, names a path that .Pa /var/shm will be symlinked to. .Pp The path needs to live on a tmpfs file system. A typical value (assuming .Pa /tmp is mounted on tmpfs) would be .Pa /tmp/.shm . d431 1 a431 1 .Pa /private/tmp . d527 1 a527 1 .Pa /var/crash . a622 3 .It Sy smtoff Boolean value. Disables SMT (Simultaneous Multi-Threading). d638 1 a638 1 .Fl l d647 40 d737 1 d743 1 a743 1 .Ql - , d749 1 a749 1 .Sy ifconfig_xxN d751 1 a751 1 .Pa /etc/ifconfig. Ns Ar xxN d764 2 a765 2 .Bl -tag -width "Ql auto" -compact .It Ql auto d769 1 a769 1 .It Ql ipv4_prefer d771 1 a771 1 .It Ql ipv6_prefer d788 2 a789 2 .Ql router , .Ql host , d791 1 a791 1 .Ql autohost , d801 1 a801 1 .Ql router , d846 1 a846 1 .Ql -ns . d848 1 a848 1 .Ql "-nD /var/log/ipflog" d854 1 a854 1 .Fl D d858 3 a860 2 .Pp .Dl /var/log/ipflog 640 10 100 * Z /var/run/ipmon.pid d974 1 a974 1 .Dq Ic call Va peer d1011 1 a1011 1 .Fl l d1056 1 a1056 1 .Pa /var/www . d1070 1 a1070 1 .Ql _httpd . d1078 1 a1078 1 .Fl l d1101 1 a1101 1 .Li \&${named_chrootdir} Ns Pa /var/run/log d1122 1 a1122 1 .Li \&${ntpd_chrootdir} Ns Pa /var/run/log d1127 1 a1127 1 .D1 Cd pseudo-device clockctl d1155 1 a1155 1 .Fl M d1162 1 a1162 1 .Fl M d1262 1 a1262 1 .Ql router d1306 1 a1306 1 .Fl d d1430 17 d1465 1 a1465 1 .Ql YES , d1478 1 a1478 1 .Ql YES , d1488 1 a1488 1 .Ql YES , d1498 1 a1498 1 .Ql YES , @ 1.169 log @Remove documentation references to rtsol. @ text @d1 1 a1 1 .\" $NetBSD: rc.conf.5,v 1.168 2018/01/09 09:17:52 wiz Exp $ d641 6 d877 11 @ 1.168 log @Stop using Tn. @ text @d1 1 a1 1 .\" $NetBSD: rc.conf.5,v 1.167 2018/01/09 03:31:12 christos Exp $ d58 1 a58 1 .Dd January 8, 2018 a789 6 You may want to check .Sy rtsol and .Sy rtsold as well, if you set the variable to .Dq Li autohost . a963 15 .It Sy rtsol Boolean value. Run .Xr rtsol 8 , router solicitation command for IPv6 hosts. On nomadic hosts like notebook computers, you may want to enable .Sy rtsold as well. Passes .Sy rtsol_flags . This is only for autoconfigured IPv6 hosts, so set .Sy ip6mode to .Dq Li autohost if you use it. a1175 18 .It Sy rtsold Boolean value. Runs .Xr rtsold 8 , the IPv6 router solicitation daemon. .Xr rtsold 8 periodically transmits router solicitation packets to find IPv6 routers on the network. This configuration is mainly for nomadic hosts like notebook computers. Stationary hosts should work fine with just .Sy rtsol . Passes .Sy rtsold_flags . This is only for autoconfigured IPv6 hosts, so set .Sy ip6mode to .Dq Li autohost if you use it. @ 1.168.2.1 log @Sync with HEAD @ text @d1 1 a1 1 .\" $NetBSD: rc.conf.5,v 1.170 2018/06/22 19:35:25 maya Exp $ d58 1 a58 1 .Dd June 22, 2018 a640 6 .It Sy blacklistd Boolean value. Runs .Xr blacklistd 8 to dynamically block hosts on a DoS according to configuration set in .Xr blacklistd.conf 5 d790 6 a876 11 .It Sy npf Boolean value. Loads .Xr npf.conf 5 at network boot time, and starts .Xr npf 7 . .It Sy npfd Boolean value. Runs .Xr npfd 8 , the NPF packet filter logging and state synchronization daemon. d970 15 d1197 18 @ 1.168.2.2 log @Sync with HEAD @ text @d1 1 a1 1 .\" $NetBSD: rc.conf.5,v 1.172 2018/07/27 15:31:02 roy Exp $ d58 1 a58 1 .Dd July 27, 2018 a250 24 .It Sy dns_domain A string. Sets domain in .Pa /etc/resolv.conf . .It Sy dns_search A string. Sets search in .Pa /etc/resolv.conf . .It Sy dns_nameservers A string of space seperated domain name servers. Sets nameserver for each value in .Pa /etc/resolv.conf . .It Sy dns_sortlist A string. Sets sortlist in .Pa /etc/resolv.conf . .It Sy dns_options A string. Sets options in .Pa /etc/resolv.conf . .It Sy dns_metric An unsigned integer. Sets the priority of the above DNS to other sources, lowest wins. Defaults to 0. d647 40 @ 1.168.2.3 log @Ssync with HEAD @ text @d1 1 a1 1 .\" $NetBSD: rc.conf.5,v 1.174 2018/09/23 09:21:00 maxv Exp $ d58 1 a58 1 .Dd September 23, 2018 d276 3 a278 2 This is important for some stateful interfaces, for example PPPoE interfaces which have no direct means of noticing d284 2 d1414 17 @ 1.168.2.4 log @Sync with head @ text @d1 1 a1 1 .\" $NetBSD: rc.conf.5,v 1.178 2018/10/19 14:11:12 martin Exp $ d58 1 a58 1 .Dd October 19, 2018 d126 3 a128 3 .Ql YES , .Ql TRUE , .Ql ON d130 1 a130 1 .Ql 1 d132 3 a134 3 .Ql NO , .Ql FALSE , .Ql OFF d136 1 a136 1 .Ql 0 d140 1 a140 3 have the same name with .Dq _flags appended, and determine what d221 1 a221 1 .Ql twiddle , d224 1 a224 1 .Ql \&: , d303 1 a303 1 .Ql "OPTIONAL:" Ns Pa /var , d305 1 a305 1 .Ql "OPTIONAL:" d316 1 a316 1 .Ql "OPTIONAL:" Ns Pa /usr , d318 1 a318 1 .Ql "OPTIONAL:" a353 30 .It Sy swapoff_umount .Dq "auto" or .Dq "manual" . Before removing block-type swap devices, it is wise to unmount tmpfs filesystems to avoid having to swap their contents back into RAM. By default .Dq ( "auto" ) all tmpfs filesystems that contain no device nodes are unmounted. Set to .Dq "manual" to explicitly specify which filesystems to unmount before removing swap. .It Sy swapoff_umount_fs A space-separated list of absolute paths to tmpfs mount points. If .Sy swapoff_umount is set to .Dq "manual" , these tmpfs filesystems will be forcibly unmounted before removing block-type swap devices. .It Sy var_shm_symlink A path. If set, names a path that .Pa /var/shm will be symlinked to. .Pp The path needs to live on a tmpfs file system. A typical value (assuming .Pa /tmp is mounted on tmpfs) would be .Pa /tmp/.shm . d452 1 a452 1 .Pa /private/tmp . d548 1 a548 1 .Pa /var/crash . d659 1 a659 1 .Fl l d718 1 d724 1 a724 1 .Ql - , d730 1 a730 1 .Sy ifconfig_xxN d732 1 a732 1 .Pa /etc/ifconfig. Ns Ar xxN d745 2 a746 2 .Bl -tag -width "Ql auto" -compact .It Ql auto d750 1 a750 1 .It Ql ipv4_prefer d752 1 a752 1 .It Ql ipv6_prefer d769 2 a770 2 .Ql router , .Ql host , d772 1 a772 1 .Ql autohost , d782 1 a782 1 .Ql router , d827 1 a827 1 .Ql -ns . d829 1 a829 1 .Ql "-nD /var/log/ipflog" d835 1 a835 1 .Fl D d839 3 a841 2 .Pp .Dl /var/log/ipflog 640 10 100 * Z /var/run/ipmon.pid d955 1 a955 1 .Dq Ic call Va peer d992 1 a992 1 .Fl l d1037 1 a1037 1 .Pa /var/www . d1051 1 a1051 1 .Ql _httpd . d1059 1 a1059 1 .Fl l d1082 1 a1082 1 .Li \&${named_chrootdir} Ns Pa /var/run/log d1103 1 a1103 1 .Li \&${ntpd_chrootdir} Ns Pa /var/run/log d1108 1 a1108 1 .D1 Cd pseudo-device clockctl d1136 1 a1136 1 .Fl M d1143 1 a1143 1 .Fl M d1243 1 a1243 1 .Ql router d1287 1 a1287 1 .FL d d1429 1 a1429 1 .Ql YES , d1442 1 a1442 1 .Ql YES , d1452 1 a1452 1 .Ql YES , d1462 1 a1462 1 .Ql YES , @ 1.168.2.5 log @Sync with HEAD, resolve a couple of conflicts @ text @d1 1 a1 1 .\" $NetBSD: rc.conf.5,v 1.179 2018/10/20 08:47:03 wiz Exp $ d361 1 a361 1 By default d364 1 a364 1 Set to d369 1 a369 1 If d1317 1 a1317 1 .Fl d @ 1.167 log @Merge autofs support from: Tomohiro Kusumi XXX: Does not work yet @ text @d1 1 a1 1 .\" $NetBSD: rc.conf.5,v 1.166 2016/12/17 07:44:59 maya Exp $ d243 1 a243 2 .Tn NIS (YP) domain of host. d1024 1 a1024 2 These include NFS, .Tn NIS , d1227 1 a1227 3 and .Tn "SunOS 4.x" systems. d1246 1 a1246 7 the .Tn DEC .Tn MOP protocol daemon; used for booting .Tn VAX and other .Tn DEC d1270 1 a1270 5 the .Tn HP boot protocol daemon; used for booting .Tn HP workstations. d1308 1 a1308 5 which lets .Tn NIS (YP) clients use information from a .Tn NIS server. d1315 1 a1315 3 which allows remote .Tn NIS users to update password on master server. d1322 2 a1323 3 the .Tn NIS (YP) server for distributing information from certain files in @ 1.166 log @Change one more "generic DHCP client" reference to say dhcpcd rather than dhclient @ text @d1 1 a1 1 .\" $NetBSD: rc.conf.5,v 1.165 2015/12/27 08:43:51 wiz Exp $ d58 1 a58 1 .Dd December 17, 2016 d1505 41 @ 1.166.6.1 log @Pull up following revision(s) (requested by maxv in ticket #1265): etc/rc.d/smtoff: revision 1.1 etc/rc.d/smtoff: revision 1.2 distrib/sets/lists/etc/mi: revision 1.258 etc/rc.d/smtoff: revision 1.3 etc/rc.d/smtoff: revision 1.4 etc/defaults/rc.conf: revision 1.148 etc/rc.d/Makefile: revision 1.103 usr.sbin/postinstall/postinstall: revision 1.226 etc/rc.d/Makefile: revision 1.104 etc/mtree/special: revision 1.167 share/man/man5/rc.conf.5: revision 1.180 Add smtoff, an rc.d script that disables Simultaneous Multi-Threading. It parses the output of cpuctl, and executes "cpuctl offline" for each CPU that has SmtID!=0. The default is "smtoff=NO", which means that SMT remains enabled. Restructure code a little. Use quoting everywhere possibly useful (always the right way, except in the few cases where it is wrong...) Avoid using cut & grep (from /usr/bin) so script could run before /usr is mounted (pity cpuctl is in /usr/sbin ...). Use sysctl -n rather than attempting to parse its output. install rc.d No change... Previous log message should have said: Install rc.d/smtoff I should know better! Don't rely upon the way the shell implements pipes. Skip the "error" printf from GetSmtId() as there is no easy portable way to avoid it occurring (there are complicated ways) - but we don't need it, there is no logical difference between "error" and "" so just use the latter (if we get an ID, good, if there is nothing, then there is none - saying 'error' does not mean anything.) Remove comment, since there is no parsing anymore. @ text @d1 1 a1 1 .\" $NetBSD: rc.conf.5,v 1.166 2016/12/17 07:44:59 maya Exp $ d58 1 a58 1 .Dd May 14, 2019 a623 3 .It Sy smtoff Boolean value. Disables SMT (Simultaneous Multi-Threading). @ 1.166.6.2 log @Pull up following revision(s) (requested by kim in ticket #1537): share/man/man5/rc.conf.5: revision 1.172 etc/rc.d/network: revision 1.75 Allow rc.conf to setup resolv.conf via resolvconf(8). This allows all static network config to be in rc.conf rather than spread across files. @ text @d1 1 a1 1 .\" $NetBSD: rc.conf.5,v 1.166.6.1 2019/05/14 11:33:43 martin Exp $ d58 1 a58 1 .Dd April 23, 2020 a251 24 .It Sy dns_domain A string. Sets domain in .Pa /etc/resolv.conf . .It Sy dns_search A string. Sets search in .Pa /etc/resolv.conf . .It Sy dns_nameservers A string of space seperated domain name servers. Sets nameserver for each value in .Pa /etc/resolv.conf . .It Sy dns_sortlist A string. Sets sortlist in .Pa /etc/resolv.conf . .It Sy dns_options A string. Sets options in .Pa /etc/resolv.conf . .It Sy dns_metric An unsigned integer. Sets the priority of the above DNS to other sources, lowest wins. Defaults to 0. @ 1.166.6.3 log @Pull up following revision(s) (requested by kim in ticket #1603): etc/rc.d/motd: revision 1.10 etc/rc.d/motd: revision 1.11 share/man/man5/rc.conf.5: revision 1.186 share/man/man5/rc.conf.5: revision 1.187 etc/defaults/rc.conf: revision 1.159 Add optional release info in /etc/motd My personal preferencese for /etc/rc.conf: update_motd_release=YES motd_release_tag='Binaries: ' This provides an explanation to users about the second version in motd. Document update_motd_release and motd_release_tag New sentence, new line. Make a ": " suffix a fixed part of the release info tag This results in correct updates to /etc/motd even when the value of motd_release_tag is changed (a likely event). Add safe quoting to outputting the read kernel version. Thanks to kre@@ for the feedback. @ text @d1 1 a1 1 .\" $NetBSD: rc.conf.5,v 1.166.6.2 2020/04/23 13:43:42 martin Exp $ d58 1 a58 1 .Dd September 11, 2020 a577 12 .It Sy update_motd_release Boolean value. If enabled in addition to .Sy update_motd , updates a second .Nx version string in the .Pa /etc/motd file to reflect the version, architecture, and Build ID of the installed userland. An optional prefix can be provided for this version string in .Sy motd_release_tag . @ 1.165 log @Fix typo. Remove trailing whitespace. @ text @d1 1 a1 1 .\" $NetBSD: rc.conf.5,v 1.164 2015/12/27 02:42:33 christos Exp $ d58 1 a58 1 .Dd December 26, 2015 d280 1 a280 1 .Xr dhclient 8 @ 1.165.2.1 log @Sync with HEAD. (Note that most of these changes are simply $NetBSD$ tag issues.) @ text @d1 1 a1 1 .\" $NetBSD: rc.conf.5,v 1.166 2016/12/17 07:44:59 maya Exp $ d58 1 a58 1 .Dd December 17, 2016 d280 1 a280 1 .Xr dhcpcd 8 @ 1.164 log @describe the ip6addrctl variables. @ text @d1 1 a1 1 .\" $NetBSD: rc.conf.5,v 1.163 2015/10/12 12:07:24 wiz Exp $ d755 1 a755 1 Fine grain control of address and routing priorities. d762 1 a762 1 .Pa /etc/ip6addrcl.conf @ 1.163 log @Bump date for previous. @ text @d1 1 a1 1 .\" $NetBSD: rc.conf.5,v 1.162 2015/10/09 19:49:25 plunky Exp $ d58 1 a58 1 .Dd October 9, 2015 d753 19 @ 1.162 log @attaching controllers to serial ports is configured using btattach.conf and not btdevctl.conf, so say that @ text @d1 1 a1 1 .\" $NetBSD: rc.conf.5,v 1.161 2015/07/09 11:38:05 wiz Exp $ d58 1 a58 1 .Dd July 9, 2015 @ 1.161 log @Spelling. @ text @d1 1 a1 1 .\" $NetBSD: rc.conf.5,v 1.160 2015/07/09 10:24:27 roy Exp $ d1402 1 a1402 1 .Pa /etc/bluetooth/btdevctl.conf @ 1.160 log @Note that dhcpcd will ignore the wpa_supplicant variable in rc.conf @ text @d1 1 a1 1 .\" $NetBSD: rc.conf.5,v 1.159 2015/03/30 11:01:53 wiz Exp $ d196 1 a196 1 must be located in the root filesystem, otherwise they will be silently d250 1 a250 1 These interfaces will be configured down when going from multiuser to singleuser d419 1 a419 1 to trim logfiles before syslogd starts. d701 1 a701 1 varaible in rc.conf and will start wpa_supplicant if a suitable d910 1 a910 1 After the network has been configured, then load the final ruleset d916 1 a916 1 ruleset that will be used when loading the final ruleset. @ 1.159 log @Bump date for previous. it's -> its @ text @d1 1 a1 1 .\" $NetBSD: rc.conf.5,v 1.158 2015/03/30 10:58:37 chopps Exp $ d58 1 a58 1 .Dd March 30, 2015 d699 5 d981 3 @ 1.158 log @Add resize_root boot operation. If resize_root=YES in rc.conf then the system attempts to resize the root file system to fill it's partition prior to mounting read-write. Useful for things like AMI file system images. May eventually be used by arm images after coming up with similar solution for increasing the parition size. @ text @d1 1 a1 1 .\" $NetBSD: rc.conf.5,v 1.157 2014/01/15 11:42:43 apb Exp $ d58 1 a58 1 .Dd January 15, 2014 d325 1 a325 1 Set to true to have the system resize the root file system to fill it's @ 1.157 log @Document random_seed and random_file. @ text @d1 1 a1 1 .\" $NetBSD: rc.conf.5,v 1.156 2013/01/13 19:56:13 wiz Exp $ d323 7 @ 1.157.4.1 log @Pull up following revision(s) (requested by skrll in ticket #909): distrib/sets/lists/etc/mi: revision 1.237 distrib/sets/lists/tests/mi: revision 1.613 distrib/utils/embedded/conf/armv7.conf: revisions 1.1, 1.2 distrib/utils/embedded/conf/beagleboard.conf: delete distrib/utils/embedded/conf/evbarm.conf: revisions 1.21, 1.22 distrib/utils/embedded/conf/rpi.conf: revisions 1.28, 1.29 distrib/utils/embedded/conf/rpi_inst.conf: revisions 1.7, 1.8 distrib/utils/embedded/conf/usermode.conf: revision 1.5 distrib/utils/embedded/conf/x86.conf: revision 1.5 distrib/utils/embedded/files/resize_disklabel: revision 1.1 distrib/utils/embedded/mkimage: revisions 1.49, 1.55-1.59 etc/defaults/rc.conf: revision 1.133 etc/etc.evbarm/Makefile.inc: revisions 1.72, 1.76 etc/rc.d/Makefile: revision 1.93 via patch etc/rc.d/resize_root: revisions 1.1-1.3 etc/rc.d/root: revision 1.5 sbin/resize_ffs/Makefile: revision 1.5 sbin/resize_ffs/resize_ffs.8: revisions 1.14-1.16 sbin/resize_ffs/resize_ffs.c: revisions 1.39-1.44 share/man/man5/rc.conf.5: revision 1.158, 1.159 tests/sbin/resize_ffs/Makefile: revision 1.4 tests/sbin/resize_ffs/common.sh: revision 1.14 tests/sbin/resize_ffs/t_check.sh: revision 1.1 tests/sbin/resize_ffs/t_grow.sh: revision 1.9 tests/sbin/resize_ffs/t_grow_swapped.sh: revision 1.3 tests/sbin/resize_ffs/t_shrink.sh: revision 1.8 tests/sbin/resize_ffs/t_shrink_swapped.sh: revision 1.2 fix image building: - round up the total size of the disk image - fix fdisk offset for netbsd ffs images -- Make get_dev_size work on regular files too. -- Use `!= -1' instead of `== 0' out of paranoia. -- - Add -c to check to see if grow/shrink is required - Divide by DEV_BSIZE when returning size of file. - Update manpage -- New sentence, new line. Sort option descriptions. -- Add resize_root boot operation. If resize_root=YES in rc.conf then the system attempts to resize the root file system to fill it's partition prior to mounting read-write. Useful for things like AMI file system images. May eventually be used by arm images after coming up with similar solution for increasing the parition size. -- - Add new tests for -c check flag in resize_ffs -- Bump date for previous. it's -> its -- Handle case in grow() where last cylinder group is too small for ufs2. Align with code in shrink(). -- factor out geometry calculation and use this also in CheckOnly mode. be a bit more verbose in Verbose mode. -- Add support for auto-growing the root partition. Enable it for rpi.img. -- initialize resize before pulling in board config -- add KEYWORD: interactive, honour resize_root_flags and resize_root_postcmd rc vars -- if the -p flag is specified, display a progress bar while growing the file-system -- show resize_ffs progress bar when resizing root partition -- fix typo in previous; pass -y unconditionally to resize_ffs, not -p -- Rename beagleboard.img to armv7.img. The new image includes the same kernels as beagleboard.img plus support for Raspberry Pi 2, ODROID-C1, Cubieboard2, Cubietruck, Hummingbird A31, and Banana Pi. -- Properly spell X' name. From X(7): The X.Org Foundation requests that the following names be used when referring to this software: X X Window System X Version 11 X Window System, Version 11 X11 -- Add some documentation: Tell what this does, and what it expects from conf files -- Cleanup: make_filesystems is not used any longer, purge remains -- More cleanup: Instead of first overwriting the *_evbarm functions with own code, and then calling them from the regular functions, directly put the code into the regular functions. No more functions from evbarm.conf are used now. Some variables are still used! -- define TOOL_MKUBOOTIMAGE for mkimage -- fix mkubootimage @ text @d1 1 a1 1 .\" $NetBSD: rc.conf.5,v 1.157 2014/01/15 11:42:43 apb Exp $ d58 1 a58 1 .Dd March 30, 2015 a322 7 .It Sy resize_root Boolean value. Set to true to have the system resize the root file system to fill its partition. Will only attempt to resize the root file system if it is of type ffs and does not have logging enabled. Defaults to false. @ 1.156 log @New sentence, new line. @ text @d1 1 a1 1 .\" $NetBSD: rc.conf.5,v 1.155 2013/01/13 18:47:58 prlw1 Exp $ d58 1 a58 1 .Dd October 2, 2012 d435 20 @ 1.155 log @Add ppp=YES variable. Currently pppd(8) starts automatically if ppp_peers is not empty. Adding a ppp variable allows the default peer to be set, and ppp set to NO so that dialing can happen with /etc/rc.d/ppp onestart. Default set to YES so that old behaviour is preserved. http://mail-index.netbsd.org/tech-userlevel/2012/08/21/msg006656.html @ text @d1 1 a1 1 .\" $NetBSD: rc.conf.5,v 1.154 2012/10/02 09:18:59 roy Exp $ d891 2 a892 1 A boolean. Toggles starting d894 2 a895 1 on startup. See @ 1.154 log @Discourage the use of ifconfig_bge0=dhcp and prefer setting dhcpcd=YES in rc.conf(5) instead. @ text @d1 1 a1 1 .\" $NetBSD: rc.conf.5,v 1.153 2012/07/04 20:53:30 jdf Exp $ d890 6 d899 2 @ 1.153 log @ * add entry for lvm(8) * add subsection for block device subsystem setup * s/OPTIONAL:/"OPTIONAL:" to make mdoclint happier * add missing type specifications of variables @ text @d1 1 a1 1 .\" $NetBSD: rc.conf.5,v 1.152 2012/06/03 21:42:47 joerg Exp $ d58 1 a58 1 .Dd July 4, 2012 d655 17 d673 4 a676 2 A string. Additional arguments to pass to d678 1 a678 4 when requesting configuration via .Sy ifconfig_xxN or .Pa /etc/ifconfig.xxN . d846 1 a846 6 One common case is to set .Sy ifconfig_xxN Ns Li \&= Ns Qq dhcp , which will cause .Xr dhcpcd 8 to be started for the interface. Another common case it to set the @ 1.153.2.1 log @Resync to 2012-11-19 00:00:00 UTC @ text @d1 1 a1 1 .\" $NetBSD: rc.conf.5,v 1.154 2012/10/02 09:18:59 roy Exp $ d58 1 a58 1 .Dd October 2, 2012 a654 17 .It Sy dhcpcd Boolean value. Set true to configure some or all network interfaces using dhcpcd. If you set .Sy dhcpcd true, then .Pa /var must be in .Sy critical_filesystems_local , or .Pa /var must be on the root file system. If you need to restrict dhcpcd to one or a number of interfaces, or need a separate configuration per interface, then this should be done in the configuration file - see .Xr dhcpcd.conf 5 for details. d656 2 a657 4 Passes .Sy dhcpcd_flags to dhcpcd. See d659 4 a662 1 for complete documentation. d830 6 a835 1 One common case it to set the @ 1.153.2.2 log @resync with head @ text @d1 1 a1 1 .\" $NetBSD: rc.conf.5,v 1.153.2.1 2012/11/20 03:00:51 tls Exp $ a889 8 .It Sy ppp A boolean. Toggles starting .Xr pppd 8 on startup. See .Sy ppp_peers below. a892 2 .Sy ppp is true and @ 1.153.2.3 log @Rebase to HEAD as of a few days ago. @ text @d1 1 a1 1 .\" $NetBSD$ d58 1 a58 1 .Dd January 15, 2014 a434 20 .It Sy random_seed Boolean value. During boot-up, runs the .Xr rndctl 8 utility with the .Fl L flag to seed the random number subsystem from an entropy file. During shutdown, runs the .Xr rndctl 8 utility with the .Fl S flag to save some random information to the entropy file. The entropy file name is specified by the .Sy random_file variable, and defaults to .Pa /var/db/entropy-file . The entropy file must be on a local file system that is writable early during boot-up (just after the file systems specified in .Sy critical_filesystems_local have been mounted), and correspondingly late during shutdown. @ 1.152 log @Switch device database to cdb(5). Rework ttyname(3) and ttyname_r(3) to depend on new devname_r(3) as heart. Add /dev/pts magic directly to devname(3). While it can lead to returning non-existing paths, the behavior is more consistent that way. Drop caching layer in devname(3), it doesn't buy anything for the common case of having access to the database. Teach devname(3) proper fallback behavior of scanning /dev. Create both old-style and new-style database for now in /etc/rc.d/sysdb. @ text @d1 1 a1 1 .\" $NetBSD: rc.conf.5,v 1.151 2012/01/08 04:01:12 dholland Exp $ d58 1 a58 1 .Dd June 1, 2012 d285 1 a285 1 .Dq OPTIONAL: d298 1 a298 1 .Dq OPTIONAL: d328 1 a328 1 .Ss One-time actions to perform or programs to run on boot-up a329 7 .It Sy accounting Boolean value. Enables process accounting with .Xr accton 8 . Requires .Pa /var/account/acct to exist. d342 24 a434 8 .It Sy raidframe Boolean value. Configures .Xr raid 4 , RAIDframe disk devices. See .Xr raidctl 8 for additional details. a526 6 .It Sy veriexec Boolean value. Load Veriexec fingerprints during startup. Read .Xr veriexecctl 8 for more information. d543 1 a543 1 .Ss System security setting d565 1 d568 6 d656 1 d967 1 @ 1.151 log @Sentences should verbs. From Snader_LB @ text @d1 1 a1 1 .\" $NetBSD: rc.conf.5,v 1.150 2011/06/01 11:06:36 jruoho Exp $ d58 1 a58 1 .Dd June 1, 2011 d496 1 a496 1 .Pa /var/run/dev.db , d499 1 a499 1 .Pa /var/db/services.db , @ 1.151.2.1 log @Pull up following revision(s) (requested by joerg in ticket #328): lib/libc/gen/devname.c: revision 1.22 distrib/sparc64/instfs/dot.profile: revision 1.7 distrib/i386/cdroms/install.sh: revision 1.3 tests/lib/libcurses/director/director.c: revision 1.10 lib/libc/include/reentrant.h: revision 1.15 distrib/amd64/cdroms/install.sh: revision 1.3 tests/include/t_paths.c: revision 1.12 share/man/man7/hier.7: revision 1.101 etc/rc.d/sysdb: revision 1.24 include/stdlib.h: revision 1.99 tests/lib/libcurses/Makefile: revision 1.3 distrib/sparc64/cdroms/installcd/install.sh: revision 1.3 distrib/i386/cdroms/Makefile.cdrom: revision 1.27 lib/libc/gen/ttyname.c: revision 1.25 usr.bin/tic/Makefile: revision 1.2 tools/compat/Makefile: revision 1.57 lib/libterminfo/compile.c: revision 1.7 lib/libc/gen/ttyname.c: revision 1.26 lib/libterminfo/compile.c: revision 1.8 tools/compat/Makefile: revision 1.59 tools/compat/cdbw.h: revision 1.1 distrib/i386/installimage/install.sh: revision 1.2 lib/libc/include/namespace.h: revision 1.154 usr.bin/tic/tic.c: revision 1.13 usr.bin/tic/tic.c: revision 1.14 usr.bin/tic/tic.c: revision 1.15 distrib/sets/lists/base/mi: revision 1.996 usr.bin/tic/tic.c: revision 1.16 usr.sbin/dev_mkdb/dev_mkdb.8: revision 1.13 usr.bin/tic/tic.c: revision 1.17 usr.bin/tic/tic.c: revision 1.18 tools/compat/cdbr.h: revision 1.1 distrib/sparc64/instfs/list: revision 1.25 usr.bin/tic/tic.c: revision 1.19 lib/libc/cdb/cdbw.c: revision 1.4 lib/libc/cdb/cdbw.3: revision 1.4 lib/libc/cdb/cdbw.3: revision 1.5 share/terminfo/Makefile: revision 1.3 usr.sbin/dev_mkdb/dev_mkdb.c: revision 1.29 usr.sbin/dev_mkdb/Makefile: revision 1.8 lib/libc/gen/ttyname.3: revision 1.23 lib/libc/gen/ttyname.3: revision 1.24 lib/libc/cdb/cdbr.c: revision 1.3 include/cdbw.h: revision 1.2 distrib/sparc64/cdroms/installcd/Makefile: revision 1.15 lib/libc/gen/devname.3: revision 1.12 tools/compat/compat_defs.h: revision 1.85 tools/compat/compat_defs.h: revision 1.86 lib/libterminfo/term_private.h: revision 1.10 lib/libterminfo/term.c: revision 1.14 usr.bin/tic/tic.1: revision 1.10 lib/libterminfo/term.c: revision 1.15 lib/libterminfo/Makefile.hash: revision 1.5 lib/libterminfo/term.c: revision 1.16 distrib/amd64/installimage/install.sh: revision 1.2 share/man/man5/rc.conf.5: revision 1.152 distrib/sets/lists/tests/mi: revision 1.472 distrib/amd64/cdroms/Makefile.cdrom: revision 1.7 include/paths.h: revision 1.41 bin/ps/ps.1: revision 1.101 lib/libterminfo/terminfo.5.in: revision 1.16 usr.bin/tic/tic.c: revision 1.20 lib/libterminfo/terminfo.5.in: revision 1.17 Prefer __printflike. Use queue(3) Replace linear lookup with hash table, reducing runtime by 60%. Use e* from util.h. One more strdup -> estrdup. Maintain nalias and nterm on the fly. Add void for ttyslot prototype. Use memcmp in place of strncmp, since length is known to no longer than either of the arguments. Fix a number of memory leaks. Keep final loop of the cleanup in tic(1) under #ifdef __VALGRIND__ though. Add __predict_true / __predict_false definitions. Add a special seeder for cdbw_output that gives stable results. Hook up cdbw(3) for the tool build. Prototype for cdbw_stable_seeder. Provide a usable thr_once for !_REENTRANT Switch device database to cdb(5). Rework ttyname(3) and ttyname_r(3) to depend on new devname_r(3) as heart. Add /dev/pts magic directly to devname(3). While it can lead to returning non-existing paths, the behavior is more consistent that way. Drop caching layer in devname(3), it doesn't buy anything for the common case of having access to the database. Teach devname(3) proper fallback behavior of scanning /dev. Create both old-style and new-style database for now in /etc/rc.d/sysdb. Switch terminfo(3) to cdb(5). Fix typos. Make Alan Barrett happy and add (). Add cdbr(3) support to tools/compat. Bump date for previous. Relax consistency to make it possible to match valid entries. Prefix devname's buffer with /dev/ as ttyname is supposed to return the full path. Reported by Dave Huang. @ text @d1 1 a1 1 .\" $NetBSD$ d58 1 a58 1 .Dd June 1, 2012 d496 1 a496 1 .Pa /var/run/dev.cdb , d499 1 a499 1 .Pa /var/db/services.cdb , @ 1.151.2.1.2.1 log @sync with netbsd-6-0-RELEASE. @ text @d1 1 a1 1 .\" $NetBSD: rc.conf.5,v 1.151.2.2 2012/10/09 23:03:47 riz Exp $ a644 17 .It Sy dhcpcd Boolean value. Set true to configure some or all network interfaces using dhcpcd. If you set .Sy dhcpcd true, then .Pa /var must be in .Sy critical_filesystems_local , or .Pa /var must be on the root file system. If you need to restrict dhcpcd to one or a number of interfaces, or need a separate configuration per interface, then this should be done in the configuration file - see .Xr dhcpcd.conf 5 for details. d646 1 a646 4 Passes .Sy dhcpcd_flags to dhcpcd. See d648 4 a651 1 for complete documentation. d819 6 a824 1 One common case it to set the @ 1.151.2.2 log @Pull up following revision(s) (requested by roy in ticket #588): share/man/man5/ifconfig.if.5: revision 1.16 share/man/man5/rc.conf.5: revision 1.154 Discourage the use of ifconfig_bge0=dhcp and prefer setting dhcpcd=YES in rc.conf(5) instead. @ text @a644 17 .It Sy dhcpcd Boolean value. Set true to configure some or all network interfaces using dhcpcd. If you set .Sy dhcpcd true, then .Pa /var must be in .Sy critical_filesystems_local , or .Pa /var must be on the root file system. If you need to restrict dhcpcd to one or a number of interfaces, or need a separate configuration per interface, then this should be done in the configuration file - see .Xr dhcpcd.conf 5 for details. d646 1 a646 4 Passes .Sy dhcpcd_flags to dhcpcd. See d648 4 a651 1 for complete documentation. d819 6 a824 1 One common case it to set the @ 1.150 log @Remove the previous, as it was already there. Instead, split one long paragraph and fix a typo. @ text @d1 1 a1 1 .\" $NetBSD: rc.conf.5,v 1.149 2011/06/01 11:03:27 jruoho Exp $ d683 1 a683 1 covers limited cases only and considered unrecommended. @ 1.150.4.1 log @sync with head @ text @d1 1 a1 1 .\" $NetBSD$ d683 1 a683 1 covers limited cases only and is considered unrecommended. @ 1.150.4.2 log @sync with head @ text @d1 1 a1 1 .\" $NetBSD: rc.conf.5,v 1.150.4.1 2012/04/17 00:05:47 yamt Exp $ d58 1 a58 1 .Dd October 2, 2012 d285 1 a285 1 .Dq "OPTIONAL:" d298 1 a298 1 .Dq "OPTIONAL:" d328 1 a328 1 .Ss Block device subsystems d330 7 a348 24 .It Sy lvm Boolean value. Configures the logical volume manager. See .Xr lvm 8 for additional details. .It Sy raidframe Boolean value. Configures .Xr raid 4 , RAIDframe disk devices. See .Xr raidctl 8 for additional details. .El .Ss One-time actions to perform or programs to run on boot-up .Bl -tag -width net_interfaces .It Sy accounting Boolean value. Enables process accounting with .Xr accton 8 . Requires .Pa /var/account/acct to exist. d418 8 d496 1 a496 1 .Pa /var/run/dev.cdb , d499 1 a499 1 .Pa /var/db/services.cdb , d518 6 d540 1 a540 1 .Ss System security settings a561 1 Boolean value. a563 6 .It Sy veriexec Boolean value. Load Veriexec fingerprints during startup. Read .Xr veriexecctl 8 for more information. a644 17 .It Sy dhcpcd Boolean value. Set true to configure some or all network interfaces using dhcpcd. If you set .Sy dhcpcd true, then .Pa /var must be in .Sy critical_filesystems_local , or .Pa /var must be on the root file system. If you need to restrict dhcpcd to one or a number of interfaces, or need a separate configuration per interface, then this should be done in the configuration file - see .Xr dhcpcd.conf 5 for details. d646 1 a646 4 Passes .Sy dhcpcd_flags to dhcpcd. See d648 4 a651 1 for complete documentation. d819 6 a824 1 One common case it to set the a955 1 Boolean value. @ 1.150.4.3 log @sync with head @ text @d1 1 a1 1 .\" $NetBSD: rc.conf.5,v 1.150.4.2 2012/10/30 18:59:41 yamt Exp $ a889 8 .It Sy ppp A boolean. Toggles starting .Xr pppd 8 on startup. See .Sy ppp_peers below. a892 2 .Sy ppp is true and @ 1.150.4.4 log @sync with head. for a reference, the tree before this commit was tagged as yamt-pagecache-tag8. this commit was splitted into small chunks to avoid a limitation of cvs. ("Protocol error: too many arguments") @ text @d1 1 a1 1 .\" $NetBSD: rc.conf.5,v 1.150.4.3 2013/01/23 00:05:35 yamt Exp $ d58 1 a58 1 .Dd January 15, 2014 a434 20 .It Sy random_seed Boolean value. During boot-up, runs the .Xr rndctl 8 utility with the .Fl L flag to seed the random number subsystem from an entropy file. During shutdown, runs the .Xr rndctl 8 utility with the .Fl S flag to save some random information to the entropy file. The entropy file name is specified by the .Sy random_file variable, and defaults to .Pa /var/db/entropy-file . The entropy file must be on a local file system that is writable early during boot-up (just after the file systems specified in .Sy critical_filesystems_local have been mounted), and correspondingly late during shutdown. @ 1.149 log @Note bluetooth. @ text @d1 1 a1 1 .\" $NetBSD: rc.conf.5,v 1.148 2011/05/27 11:15:17 wiz Exp $ a589 11 .It Sy bluetooth Boolean value. Enables necessary configuration for Bluetooth, including automatic attachment of Bluetooth devices (see .Xr btdevctl 8 ) and serial controllers (see .Xr btattach 8 ) , enabling Bluetooth controllers (see .Xr btconfig 8 ) , and starting the service discovery daemon, .Xr sdpd 8 . d818 2 a819 1 One common case it to set @ 1.148 log @Bump date for previous. @ text @d1 1 a1 1 .\" $NetBSD: rc.conf.5,v 1.147 2011/05/27 09:28:42 plunky Exp $ d58 1 a58 1 .Dd May 27, 2011 d590 11 @ 1.147 log @provide a new 'bluetooth' rc.d script, to handle Bluetooth configuration in a simpler manner. This replaces btattach, btconfig, bthcid, btdevctl and sdpd scripts, and also should not require any configuration settings other than "bluetooth=YES", though the full range of configurations is still possible. @ text @d1 1 a1 1 .\" $NetBSD: rc.conf.5,v 1.146 2011/03/18 16:21:46 jruoho Exp $ d58 1 a58 1 .Dd March 18, 2011 @ 1.146 log @Fix xref; security(8) -> security(7). @ text @d1 1 a1 1 .\" $NetBSD: rc.conf.5,v 1.145 2011/03/08 07:44:39 snj Exp $ d1325 1 a1325 1 .Ss Bluetooth configuration and daemons d1327 1 a1327 1 .It Sy btattach d1329 24 a1352 16 Attach serial bluetooth interfaces as listed in the configuration file .Pa /etc/bluetooth/btdevctl.conf . .It Sy btconfig Boolean value. Configure bluetooth devices. If the .Sy btconfig_devices variable below is not specified, all devices known to the system will be configured. For each device, configuration arguments are first looked for in the .Sy btconfig_{dev} variable, otherwise the value of the .Sy btconfig_args variable will be used, and if that is not specified the default string is .Sq enable . d1354 5 a1358 2 An optional space separated list of bluetooth devices to be configured at boot time. d1360 3 a1362 6 An optional string, containing default arguments for bluetooth devices to be configured. .It Sy btdevctl Boolean value. Configure Bluetooth devices as listed in the configuration file .Pa /etc/bluetooth/btdevctl.conf . d1365 1 a1365 6 Runs .Xr bthcid 8 , the Bluetooth HCI daemon, which manages link keys and PIN codes for Bluetooth links. Passes .Sy bthcid_flags . d1368 1 a1368 4 Runs the Service Discovery Profile daemon, .Xr sdpd 8 . Passes .Sy sdpd_flags . @ 1.145 log @bah! it's 2011 already? @ text @d1 1 a1 1 .\" $NetBSD: rc.conf.5,v 1.144 2011/03/08 07:40:37 snj Exp $ d58 1 a58 1 .Dd March 8, 2011 d410 1 a410 1 .Xr security 8 @ 1.144 log @mention mdnsd(8), and fix a typo while here @ text @d1 1 a1 1 .\" $NetBSD: rc.conf.5,v 1.143 2010/04/20 12:09:05 wiz Exp $ d58 1 a58 1 .Dd March 8, 2010 @ 1.143 log @Fix xref. @ text @d1 1 a1 1 .\" $NetBSD: rc.conf.5,v 1.142 2010/04/19 12:59:36 jruoho Exp $ d58 1 a58 1 .Dd April 19, 2010 d908 1 a908 1 .Sy wpa_suplicant d998 4 @ 1.142 log @Mention security(8) in rc.conf(5) and symlink(7) in security(8). @ text @d1 1 a1 1 .\" $NetBSD: rc.conf.5,v 1.141 2010/03/20 11:23:37 wiz Exp $ d415 1 a415 1 .Xr quotacheck 1 @ 1.141 log @New sentence, new line. @ text @d1 1 a1 1 .\" $NetBSD: rc.conf.5,v 1.140 2010/03/19 20:07:00 jruoho Exp $ d58 1 a58 1 .Dd March 19, 2010 d299 1 a299 1 prefix means that it's not an error if the file system is not d409 3 @ 1.140 log @Bump date for the previous commit. @ text @d1 1 a1 1 .\" $NetBSD: rc.conf.5,v 1.139 2010/03/19 19:17:54 jruoho Exp $ d419 2 a420 1 RAIDframe disk devices. See @ 1.139 log @Document some missing options. Fixes my own PR # 41913. @ text @d1 1 a1 1 .\" $NetBSD: rc.conf.5,v 1.138 2009/10/24 11:22:48 reed Exp $ d58 1 a58 1 .Dd September 30, 2009 @ 1.138 log @For the rpc* references use the full rpc.* names. These match what is really installed. I know the man links are there too. But this helps in the case where someone has printed man pages but only has one man page printed per inode -- so best to refer to the known Dt name. @ text @d1 1 a1 1 .\" $NetBSD: rc.conf.5,v 1.137 2009/09/30 18:17:22 apb Exp $ d29 1 a29 1 .\" Copyright (c) 1998-2009 The NetBSD Foundation, Inc. d337 12 d351 3 a353 1 Clear /tmp after reboot. d362 8 d374 1 a374 1 devices . d377 5 d409 13 d469 9 d489 9 d527 8 d653 5 d950 5 d1364 13 @ 1.137 log @Document the fact that wpa_supplicant won't start properly unless /usr is mounted by mountcritlocal. @ text @d1 1 a1 1 .\" $NetBSD: rc.conf.5,v 1.136 2009/09/14 12:37:08 wiz Exp $ d865 3 a867 3 .Xr bootparamd 8 , .Xr rstatd 8 , .Xr rusersd 8 , d869 1 a869 1 .Xr rwalld 8 . @ 1.136 log @Punctuation nits. @ text @d1 1 a1 1 .\" $NetBSD: rc.conf.5,v 1.135 2009/09/14 12:05:12 apb Exp $ d58 1 a58 1 .Dd September 14, 2009 d832 9 @ 1.135 log @Add the ability for file systems mounted via mount_critical_filesystems() in rc.subr to be marked as optional. This means that it's not an error if the file system is not mentioned in /etc/fstab. It is still an error if something else goes wrong. Change the defaults for these two variables in /etc/defaults/rc.conf: critical_filesystems_local="OPTIONAL:/var" critical_filesystems_remote="OPTIONAL:/usr" @ text @d1 1 a1 1 .\" $NetBSD: rc.conf.5,v 1.134 2009/09/11 19:47:27 wiz Exp $ d288 1 a288 1 .Xr fstab 5. d301 1 a301 1 .Xr fstab 5. @ 1.134 log @Bump date for previous. @ text @d1 1 a1 1 .\" $NetBSD: rc.conf.5,v 1.133 2009/09/11 18:17:04 apb Exp $ d58 1 a58 1 .Dd September 11, 2009 d282 7 d295 7 @ 1.133 log @Add a postprocessor to /etc/rc, which logs messages to /var/run/rc.log, and which can suppress output in silent mode. Silent mode is enabled via the new rc_silent variable, which defaults to a value that depends on the kern.boothowto sysctl. Part of the /etc/rc silent changes requested in PR 41946 and proposed in tech-userlevel. @ text @d1 1 a1 1 .\" $NetBSD: rc.conf.5,v 1.132 2009/09/03 20:06:39 apb Exp $ d58 1 a58 1 .Dd September 3, 2009 d200 1 a200 1 If true then the usual output is suppresses, and @ 1.132 log @* Boolean values may be specified with any of YES/TRUE/ON/1 or NO/FALSE/OFF/0, so explain that. * Change all "Foo: YES or NO. If not set to YES then ..." to "Foo: Boolean value. If false then ...". * Some rewording for clarity. @ text @d1 1 a1 1 .\" $NetBSD: rc.conf.5,v 1.131 2009/07/25 21:21:20 wiz Exp $ d198 28 @ 1.131 log @Bump date for previous. @ text @d1 1 a1 1 .\" $NetBSD: rc.conf.5,v 1.130 2009/07/25 16:20:11 mbalmer Exp $ d58 1 a58 1 .Dd July 25, 2009 a88 19 Most variables are one of two types: enabling variables or flags variables. Enabling variables, such as .Sy inetd , are generally named after the program or the system they enable, and are set to .Sq YES or .Sq NO . Flags variables, such as .Sy inetd_flags have the same name with "_flags" appended, and determine what arguments are passed to the program if it is enabled. .Pp If a variable that .Xr rc 8 expects to be set is not set, or the value is not one of the allowed values, a warning will be printed. .Pp d119 28 d150 2 a151 5 .Sq YES or .Sq NO . If set to .Sq NO , d168 2 a169 6 .Sq YES or .Sq NO . If not set to .Sq YES then the system will drop into single-user mode during boot. d278 3 a280 12 .Sq YES or .Sq NO . Set the .Sy no_swap variable to .Sq YES if you have configured your system with no swap on purpose. If not set to .Sq YES , and no swap devices are configured, the system will warn you. d282 1 a282 3 .Sq YES or .Sq NO . d289 1 a289 3 .Sq YES or .Sq NO . d296 1 a296 3 .Sq YES or .Sq NO . d299 1 a299 3 .Sq YES or .Sq NO . d307 1 a307 3 .Sq YES or .Sq NO . d314 1 a314 3 .Sq YES or .Sq NO . d323 1 a323 3 .Sq YES or .Sq NO . d331 1 a331 3 .Sq YES or .Sq NO . d341 1 a341 3 .Sq YES or .Sq NO . d388 1 a388 3 .Sq YES or .Sq NO . d399 1 a399 3 .Sq YES or .Sq NO . d406 1 a406 3 .Sq YES or .Sq NO . d415 1 a415 3 .Sq YES or .Sq NO . d421 1 a421 3 .Sq YES or .Sq NO . d479 1 a479 3 .Sq YES or .Sq NO . d484 1 a484 3 .Sq YES or .Sq NO . d494 2 a495 6 .Sq YES or .Sq NO . Set to .Sq YES to configure some or all network interfaces using d499 1 a499 3 to .Sq YES , you must either have d501 1 a501 1 in d503 4 a506 4 as part of .Pa / , or direct the DHCP client to store the leases file on the root file system by modifying the d508 2 a509 1 variable. d541 1 a541 3 .Sq YES or .Sq NO . d546 1 a546 3 .Sq YES or .Sq NO . d573 1 a573 3 .Sq YES or .Sq NO . d603 1 a603 3 .Sq YES or .Sq NO . d607 1 a607 1 .Dq Li router d610 1 a610 2 is set to .Sq NO d613 3 a615 3 If set to .Sq YES the reject route won't be installed. d617 1 a617 3 .Sq YES or .Sq NO . d628 1 a628 3 .Sq YES or .Sq NO . d639 1 a639 3 .Sq YES or .Sq NO . d668 1 a668 3 .Sq YES or .Sq NO . d677 1 a677 3 .Sq YES or .Sq NO . d693 1 a693 1 is set to "NO" and neither the file nor the variable is found, d719 1 a719 3 .Sq YES or .Sq NO . d731 1 a731 3 .Sq YES or .Sq NO . d746 1 a746 3 .Sq YES or .Sq NO . d766 1 a766 3 .Sq YES or .Sq NO . d771 1 a771 3 .Sq YES or .Sq NO . d786 1 a786 3 .Sq YES or .Sq NO . d794 1 a794 3 .Sq YES or .Sq NO . d806 1 a806 3 .Sq YES or .Sq NO . d825 1 a825 3 .Sq YES or .Sq NO . d829 1 a829 3 .Sq YES or .Sq NO . d841 1 a841 2 is set to .Sq YES . d848 1 a848 3 is .Sq YES , run d859 1 a859 3 .Sq YES or .Sq NO . d868 1 a868 3 .Sq YES or .Sq NO . d877 1 a877 3 is .Sq YES , run d889 1 a889 3 .Sq YES or .Sq NO . d898 1 a898 3 is .Sq YES , run d915 1 a915 3 .Sq YES or .Sq NO . d920 1 a920 3 .Sq YES or .Sq NO . d926 1 a926 3 .Sq YES or .Sq NO . d932 1 a932 3 .Sq YES or .Sq NO . d952 1 a952 3 .Sq YES or .Sq NO . d959 1 a959 3 .Sq YES or .Sq NO . d966 1 a966 3 .Sq YES or .Sq NO . d972 1 a972 2 .\" This should be .\" .Sq NO d975 1 a975 2 .\" is .\" .Sq YES . d977 1 a977 3 .Sq YES or .Sq NO . d998 1 a998 3 .Sq YES or .Sq NO . d1010 1 a1010 3 .Sq YES or .Sq NO . d1018 1 a1018 3 .Sq YES or .Sq NO . d1024 1 a1024 3 .Sq YES or .Sq NO . d1038 1 a1038 3 .Sq YES or .Sq NO . d1045 1 a1045 3 .Sq YES or .Sq NO . d1054 1 a1054 3 .Sq YES or .Sq NO . d1065 1 a1065 3 .Sq YES or .Sq NO . d1081 1 a1081 3 .Sq YES or .Sq NO . d1088 1 a1088 3 .Sq YES or .Sq NO . d1096 1 a1096 3 .Sq YES or .Sq NO . d1107 1 a1107 3 .Sq YES or .Sq NO . d1116 1 a1116 3 .Sq YES or .Sq NO . d1134 1 a1134 3 .Sq YES or .Sq NO . d1148 1 a1148 2 is set to .Sq YES . d1150 1 a1150 3 .Sq YES or .Sq NO . d1157 1 a1157 2 are set to .Sq YES . d1161 1 a1161 3 .Sq YES or .Sq NO . d1167 1 a1167 3 .Sq YES or .Sq NO . d1171 1 a1171 3 .Sq YES or .Sq NO . d1177 1 a1177 3 .Sq YES or .Sq NO . d1186 1 a1186 2 are set to .Sq YES . d1193 1 a1193 3 .Sq YES or .Sq NO . d1197 1 a1197 3 .Sq YES or .Sq NO . d1217 1 a1217 3 .Sq YES or .Sq NO . d1221 1 a1221 3 .Sq YES or .Sq NO . d1229 1 a1229 3 .Sq YES or .Sq NO . d1238 1 a1238 3 .Sq YES or .Sq NO . d1245 1 a1245 3 .Sq YES or .Sq NO . d1253 1 a1253 2 is set to .Sq YES . d1255 1 a1255 3 .Sq YES or .Sq NO . d1261 1 a1261 3 .Sq YES or .Sq NO . d1273 1 a1273 3 .Sq YES or .Sq NO . d1279 1 a1279 3 .Sq YES or .Sq NO . d1285 1 a1285 3 .Sq YES or .Sq NO . d1292 1 a1292 3 .Sq YES or .Sq NO . d1298 1 a1298 3 .Sq YES or .Sq NO . d1304 1 a1304 3 .Sq YES or .Sq NO . @ 1.130 log @Document recent gpio(4) changes and introduce a new config file for GPIO. Integrate with the startup scripts in /etc/rc.d. Introduce new variable "gpio" for /etc/rc.conf. @ text @d1 1 a1 1 .\" $NetBSD: rc.conf.5,v 1.129 2009/04/10 16:18:04 joerg Exp $ d58 1 a58 1 .Dd April 5, 2009 @ 1.129 log @Add rc_directories to specify where to look for rc scripts. For the moment all scripts must be in /root and non-existent directories are skipped. @ text @d1 1 a1 1 .\" $NetBSD: rc.conf.5,v 1.128 2009/03/27 09:11:36 hannken Exp $ d321 9 @ 1.128 log @Document ipfilter_flags. @ text @d1 1 a1 1 .\" $NetBSD: rc.conf.5,v 1.127 2009/01/04 12:10:30 apb Exp $ d58 1 a58 1 .Dd March 27, 2009 d187 9 @ 1.127 log @* Add etc/rc.d/rndctl script, based on work by Brian A. Seklecki. This allows you to invoke rndctl(8) during the boot. * Add rndctl=NO and rndctl_flags="" to /etc/defaults/rc.conf. * Document rndctl and rndctl_flags variables in rc.conf(5). @ text @d1 1 a1 1 .\" $NetBSD: rc.conf.5,v 1.126 2008/12/20 17:17:05 wiz Exp $ d58 1 a58 1 .Dd January 4, 2009 d660 2 @ 1.127.2.1 log @Sync with HEAD. Third (and last) commit. See http://mail-index.netbsd.org/source-changes/2009/05/13/msg221222.html @ text @d1 1 a1 1 .\" $NetBSD: rc.conf.5,v 1.129 2009/04/10 16:18:04 joerg Exp $ d58 1 a58 1 .Dd April 5, 2009 a186 9 .It Sy rc_directories A string. Space separated list of directories searched for rc scripts. The default is .Pa /etc/rc.d . All directories in .Ev rc_directories must be located in the root filesystem, otherwise they will be silently skipped. a659 2 Passes .Sy ipfilter_flags . @ 1.126 log @Drop trailing whitespace. Bump date for poffd. @ text @d1 1 a1 1 .\" $NetBSD: rc.conf.5,v 1.125 2008/12/20 13:20:58 isaki Exp $ d29 1 a29 1 .\" Copyright (c) 1998-2002 The NetBSD Foundation, Inc. d58 1 a58 1 .Dd December 20, 2008 d345 49 @ 1.125 log @x68k pow(4) now uses MI sysmon_pswitch framework. suggested by tsutsui@@. - Make MD poffd(8) retire, and use MI powerd(8) instead of it. - Make /dev/pow1 retire, because nobody holds /dev/pow0 any longer. Use /dev/pow0 for pow(4) ioctl. - POWIOCSSIGNAL ioctl which is for poffd(8) is also obsoleted. @ text @d1 1 a1 1 .\" $NetBSD: rc.conf.5,v 1.124 2008/12/11 15:44:23 wiz Exp $ d58 1 a58 1 .Dd December 11, 2008 d850 1 a850 1 The d853 1 a853 1 Used only if @ 1.124 log @Bump date for previous, improve wording a bit. @ text @d1 1 a1 1 .\" $NetBSD: rc.conf.5,v 1.123 2008/12/11 13:55:17 mishka Exp $ a1401 11 .It Sy poffd .Sq YES or .Sq NO . Runs .Xr poffd 8 x68k shutdown daemon (only for .Nx Ns /x68k ) . Passes .Sy poffd_flags . @ 1.123 log @Import rc.d/httpd script for httpd(8) daemon control. See rc.conf(5) for options explanation. @ text @d1 1 a1 1 .\" $NetBSD: rc.conf.5,v 1.122 2008/11/12 12:35:53 ad Exp $ d58 1 a58 1 .Dd September 20, 2008 d844 1 a844 1 Runs d867 1 a867 2 and cause it to switch to the specified user and the groups of the user after initialization. d872 1 a872 1 is requiring extra privileges to start listen on default port 80. @ 1.122 log @Remove LKMs and switch to the module framework, pass 1. Proposed on tech-kern@@. @ text @d1 1 a1 1 .\" $NetBSD: rc.conf.5,v 1.121 2008/11/11 00:18:48 reed Exp $ d840 36 @ 1.121 log @Reference secmodel_securelevel(9) manual page. @ text @d1 1 a1 1 .\" $NetBSD: rc.conf.5,v 1.120 2008/09/20 12:12:38 apb Exp $ a311 6 .It Sy lkm .Sq YES or .Sq NO . Runs .Pa /etc/rc.lkm . @ 1.120 log @* Allow multiple commands in $ifconfig_xxN variables in rc.conf(5). This may be done either by embedding newlines in the value, or by using semicolons to represent line breaks (but not both at once). * Allow shell quoting insode $ifconfig_xxN variables or /etc/ifconfig.xxN files. This allows something like ifconfig_wi0="ssid 'my network'; dhcp" @ text @d1 1 a1 1 .\" $NetBSD: rc.conf.5,v 1.119 2008/06/18 09:06:26 yamt Exp $ d410 3 a412 1 .Xr init 8 , @ 1.120.2.1 log @Pull up following revision(s) (requested by reed in ticket #46): share/man/man5/rc.conf.5: revision 1.121 Reference secmodel_securelevel(9) manual page. @ text @d1 1 a1 1 .\" $NetBSD: rc.conf.5,v 1.120 2008/09/20 12:12:38 apb Exp $ d410 1 a410 3 .Xr init 8 and .Xr secmodel_securelevel 9 , @ 1.120.2.2 log @Pull up following revision(s) (requested by rafal in ticket #297): distrib/sets/lists/etc/mi: revision 1.203 doc/CHANGES: revision 1.1151 via patch etc/defaults/rc.conf: revision 1.97 etc/mtree/special: revision 1.123 etc/rc.d/Makefile: revision 1.71 etc/rc.d/httpd: revision 1.1 share/man/man5/rc.conf.5: revision 1.123 usr.sbin/postinstall/postinstall: revision 1.80 Import rc.d/httpd script for httpd(8) daemon control. See rc.conf(5) for options explanation. @ text @d1 1 a1 1 .\" $NetBSD: rc.conf.5,v 1.120.2.1 2008/11/12 23:43:49 snj Exp $ a845 36 .It Sy httpd .Sq YES or .Sq NO . Runs .Xr httpd 8 daemon and passes .Sy httpd_flags . .It Sy httpd_wwwdir A string. The .Xr httpd 8 WWW root directory. Used only if .Sy httpd is set to .Sq YES . The default setting is .Dq Pa /var/www . .It Sy httpd_wwwuser A string. If non-blank and .Sy httpd is .Sq YES , run .Xr httpd 8 and cause it to switch to the specified user and the groups of the user after initialization. It is preferred to .Sy httpd_user because .Xr httpd 8 is requiring extra privileges to start listen on default port 80. The default setting is .Dq Dv _httpd . @ 1.120.2.3 log @Pull up following revision(s) (requested by apb in ticket #406): etc/defaults/rc.conf: revision 1.99 etc/rc.d/Makefile: revision 1.73 etc/rc.d/rndctl: revision 1.1 share/man/man5/rc.conf.5: revision 1.127 * Add etc/rc.d/rndctl script, based on work by Brian A. Seklecki. This allows you to invoke rndctl(8) during the boot. * Add rndctl=NO and rndctl_flags="" to /etc/defaults/rc.conf. * Document rndctl and rndctl_flags variables in rc.conf(5). @ text @d1 1 a1 1 .\" $NetBSD: rc.conf.5,v 1.120.2.2 2009/01/22 21:28:26 snj Exp $ d29 1 a29 1 .\" Copyright (c) 1998-2009 The NetBSD Foundation, Inc. d58 1 a58 1 .Dd January 4, 2009 a350 49 .It Sy rndctl .Sq YES or .Sq NO . Runs the .Xr rndctl 8 utility one or more times according to the specification in .Sy rndctl_flags . .Pp If .Sy rndctl_flags does not contain a semicolon .Pq Ql \&; then it is expected to contain zero or more flags, followed by one or more device or type names. The .Xr rndctl 8 command will be executed once for each device or type name. If the specified flags do not include any of .Fl c , C , e , or .Fl E , then the flags .Fl c and .Fl e are added, to specify that entropy from the relevant device or type should be both collected and estimated. If the specified flags do not include either of .Fl d or .Fl t , then the flag .Fl d is added, to specify that the non-flag arguments are device names, not type names. .Pp .Sy rndctl_flags may contain multiple semicolon-separated segments, in which each segment contains flags and device or type names as described above. This allows different flags to be associated with different device or type names. For example, given .Li rndctl_flags="wd0 wd1; -t tty; -c -t net" , the following commands will be executed: .Li "rndctl -c -e -d wd0" ; .Li "rndctl -c -e -d wd1" ; .Li "rndctl -c -e -t tty" ; .Li "rndctl -c -t net" . @ 1.120.2.4 log @Pull up following revision(s) (requested by hannken in ticket #617): share/man/man5/rc.conf.5: revision 1.128 Document ipfilter_flags. @ text @d1 1 a1 1 .\" $NetBSD: rc.conf.5,v 1.120.2.3 2009/02/06 00:51:42 snj Exp $ d58 1 a58 1 .Dd March 27, 2009 a665 2 Passes .Sy ipfilter_flags . @ 1.119 log @merge yamt-pf42 branch. (import newer pf from OpenBSD 4.2) ok'ed by peter@@. requested by core@@ @ text @d1 1 a1 1 .\" $NetBSD: rc.conf.5,v 1.118 2008/05/30 07:41:42 wiz Exp $ d58 1 a58 1 .Dd June 13, 2008 d518 3 a520 1 .Sy ifconfig_xxN . d553 2 d556 1 a556 1 with multiple lines instead. d685 4 a688 10 parameters in .Pa /etc/ifconfig.xxN and then in the variable .Sy ifconfig_xxN . If this variable is equal to .Dq dhcp , .Xr dhcpcd 8 is started for the interface. Otherwise the contents of the file or the variable are handed to ifconfig after the interface name. d693 16 d712 4 a715 1 .Pa /etc/ifconfig.xxN . @ 1.118 log @Fix xref. End sentence with a dot. @ text @d1 1 a1 1 .\" $NetBSD: rc.conf.5,v 1.117 2008/05/30 02:29:37 mrg Exp $ d58 1 a58 1 .Dd May 27, 2008 d713 24 @ 1.117 log @convert the rest of my licenses to 2-clause, extracting myself out from a group as necessary. bozohttpd remains, but it will get fixed next time i update it. @ text @d1 1 a1 1 .\" $NetBSD: rc.conf.5,v 1.116 2008/05/29 15:38:35 joerg Exp $ d516 1 a516 1 .Xr dhcpcd d518 1 a518 1 .Sy ifconfig_xxN @ 1.116 log @Allow per-interface DHCP configuration using dhcpcd via ifconfig_xxN=dhcp or a dhcp line in /etc/ifconfig.xxN. @ text @d1 1 a1 1 .\" $NetBSD: rc.conf.5,v 1.115 2008/04/15 11:17:48 plunky Exp $ d4 23 @ 1.115 log @some changes to serial bluetooth host controller interfaces btuartd(8) should be named btattach(8) for consistency with other parts of NetBSD make btattach(8) a single-use tool for less complexity device specicific initialisation (from btuart(4)) is carried out prior to activating the line discipline (in btattach(8)), which simplifies the API somewhat and means that the user tool and the kernel do not need to be kept in sync. btuart(4) driver is much reduced; naming is made consistent and all tsleep() and delay() are removed to userland @ text @d1 1 a1 1 .\" $NetBSD: rc.conf.5,v 1.114 2007/05/15 19:47:43 elad Exp $ d35 1 a35 1 .Dd May 15, 2007 d453 1 a453 1 the DHCP client. d491 5 d662 5 a666 1 The contents of the file or the variable are handed to ifconfig @ 1.115.4.1 log @Sync w/ -current. 34 merge conflicts to follow. @ text @d1 1 a1 1 .\" $NetBSD: rc.conf.5,v 1.115 2008/04/15 11:17:48 plunky Exp $ a3 23 .\" All rights reserved. .\" .\" Redistribution and use in source and binary forms, with or without .\" modification, are permitted provided that the following conditions .\" are met: .\" 1. Redistributions of source code must retain the above copyright .\" notice, this list of conditions and the following disclaimer. .\" 2. Redistributions in binary form must reproduce the above copyright .\" notice, this list of conditions and the following disclaimer in the .\" documentation and/or other materials provided with the distribution. .\" .\" THIS SOFTWARE IS PROVIDED BY THE AUTHOR ``AS IS'' AND ANY EXPRESS OR .\" IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES .\" OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED. .\" IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR ANY DIRECT, INDIRECT, .\" INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, .\" BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; .\" LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED .\" AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, .\" OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY .\" OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF .\" SUCH DAMAGE. .\" d35 1 a35 1 .Dd June 13, 2008 d453 1 a453 1 the ISC DHCP client. a490 5 .It Sy dhcpcd_flags Additional arguments to pass to .Xr dhcpcd 8 when requesting configuration via .Sy ifconfig_xxN . d657 1 a657 5 If this variable is equal to .Dq dhcp , .Xr dhcpcd 8 is started for the interface. Otherwise the contents of the file or the variable are handed to ifconfig a680 24 .It Sy pf .Sq YES or .Sq NO . Enable .Xr pf 4 at network boot time: Load the initial configuration .Xr pf.boot.conf 5 before the network is up. After the network has been configured, then load the final ruleset .Xr pf.conf 5 . .It Sy pf_rules A string. The path of the .Xr pf.conf 5 ruleset that will be used when loading the final ruleset. .It Sy pflogd .Sq YES or .Sq NO . Run .Xr pflogd 8 for dumping packet filter logging information to a file. @ 1.115.2.1 log @sync with head @ text @d1 1 a1 1 .\" $NetBSD: rc.conf.5,v 1.115 2008/04/15 11:17:48 plunky Exp $ a3 23 .\" All rights reserved. .\" .\" Redistribution and use in source and binary forms, with or without .\" modification, are permitted provided that the following conditions .\" are met: .\" 1. Redistributions of source code must retain the above copyright .\" notice, this list of conditions and the following disclaimer. .\" 2. Redistributions in binary form must reproduce the above copyright .\" notice, this list of conditions and the following disclaimer in the .\" documentation and/or other materials provided with the distribution. .\" .\" THIS SOFTWARE IS PROVIDED BY THE AUTHOR ``AS IS'' AND ANY EXPRESS OR .\" IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES .\" OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED. .\" IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR ANY DIRECT, INDIRECT, .\" INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, .\" BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; .\" LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED .\" AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, .\" OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY .\" OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF .\" SUCH DAMAGE. .\" d35 1 a35 1 .Dd May 27, 2008 d453 1 a453 1 the ISC DHCP client. a490 5 .It Sy dhcpcd_flags Additional arguments to pass to .Xr dhcpcd 8 when requesting configuration via .Sy ifconfig_xxN . d657 1 a657 5 If this variable is equal to .Dq dhcp , .Xr dhcpcd 8 is started for the interface. Otherwise the contents of the file or the variable are handed to ifconfig @ 1.115.2.2 log @Document pf configuration. @ text @d1 1 a1 1 .\" $NetBSD: rc.conf.5,v 1.115.2.1 2008/06/04 02:04:38 yamt Exp $ d58 1 a58 1 .Dd June 13, 2008 a712 24 .It Sy pf .Sq YES or .Sq NO . Enable .Xr pf 4 at network boot time: Load the initial configuration .Xr pf.boot.conf 5 before the network is up. After the network has been configured, then load the final ruleset .Xr pf.conf 5 . .It Sy pf_rules A string. The path of the .Xr pf.conf 5 ruleset that will be used when loading the final ruleset. .It Sy pflogd .Sq YES or .Sq NO . Run .Xr pflogd 8 for dumping packet filter logging information to a file. @ 1.114 log @Some Veriexec stuff that's been rotting in my tree for months. Bug fixes: - Fix crash reported by Scott Ellis on current-users@@. - Fix race conditions in enforcing the Veriexec rename and remove policies. These are NOT security issues. - Fix memory leak in rename handling when overwriting a monitored file. - Fix table deletion logic. - Don't prevent query requests if not in learning mode. KPI updates: - fileassoc_table_run() now takes a cookie to pass to the callback. - veriexec_table_add() was removed, it is now done internally. As a result, there's no longer a need for VERIEXEC_TABLESIZE. - veriexec_report() was removed, it is now internal. - Perform sanity checks on the entry type, and enforce default type in veriexec_file_add() rather than in veriexecctl. - Add veriexec_flush(), used to delete all Veriexec tables, and veriexec_dump(), used to fill an array with all Veriexec entries. New features: - Add a '-k' flag to veriexecctl, to keep the filenames in the kernel database. This allows Veriexec to produce slightly more accurate logs under certain circumstances. In the future, this can be either replaced by vnode->pathname translation, or combined with it. - Add a VERIEXEC_DUMP ioctl, to dump the entire Veriexec database. This can be used to recover a database if the file was lost. Example usage: # veriexecctl dump > /etc/signatures Note that only entries with the filename kept (that is, were loaded with the '-k' flag) will be dumped. Idea from Brett Lymn. - Add a VERIEXEC_FLUSH ioctl, to delete all Veriexec entries. Sample usage: # veriexecctl flush - Add a 'veriexec_flags' rc(8) variable, and make its default have the '-k' flag. On systems using the default signatures file (generaetd from running 'veriexecgen' with no arguments), this will use additional 32kb of kernel memory on average. - Add a '-e' flag to veriexecctl, to evaluate the fingerprint during load. This is done automatically for files marked as 'untrusted'. Misc. stuff: - The code for veriexecctl was massively simplified as a result of eliminating the need for VERIEXEC_TABLESIZE, and now uses a single pass of the signatures file, making the loading somewhat faster. - Lots of minor fixes found using the (still under development) Veriexec regression testsuite. - Some of the messages Veriexec prints were improved. - Various documentation fixes. All relevant man-pages were updated to reflect the above changes. Binary compatibility with existing veriexecctl binaries is maintained. @ text @d1 1 a1 1 .\" $NetBSD: rc.conf.5,v 1.113 2007/03/18 15:53:54 plunky Exp $ d1174 6 @ 1.114.10.1 log @Sync with HEAD. @ text @d1 1 a1 1 .\" $NetBSD$ a3 23 .\" All rights reserved. .\" .\" Redistribution and use in source and binary forms, with or without .\" modification, are permitted provided that the following conditions .\" are met: .\" 1. Redistributions of source code must retain the above copyright .\" notice, this list of conditions and the following disclaimer. .\" 2. Redistributions in binary form must reproduce the above copyright .\" notice, this list of conditions and the following disclaimer in the .\" documentation and/or other materials provided with the distribution. .\" .\" THIS SOFTWARE IS PROVIDED BY THE AUTHOR ``AS IS'' AND ANY EXPRESS OR .\" IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES .\" OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED. .\" IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR ANY DIRECT, INDIRECT, .\" INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, .\" BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; .\" LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED .\" AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, .\" OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY .\" OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF .\" SUCH DAMAGE. .\" d35 1 a35 1 .Dd May 27, 2008 d453 1 a453 1 the ISC DHCP client. a490 5 .It Sy dhcpcd_flags Additional arguments to pass to .Xr dhcpcd 8 when requesting configuration via .Sy ifconfig_xxN . d657 1 a657 5 If this variable is equal to .Dq dhcp , .Xr dhcpcd 8 is started for the interface. Otherwise the contents of the file or the variable are handed to ifconfig a1173 6 .It Sy btattach .Sq YES or .Sq NO . Attach serial bluetooth interfaces as listed in the configuration file .Pa /etc/bluetooth/btdevctl.conf . @ 1.114.10.2 log @Sync with HEAD. @ text @d58 1 a58 1 .Dd June 13, 2008 a712 24 .It Sy pf .Sq YES or .Sq NO . Enable .Xr pf 4 at network boot time: Load the initial configuration .Xr pf.boot.conf 5 before the network is up. After the network has been configured, then load the final ruleset .Xr pf.conf 5 . .It Sy pf_rules A string. The path of the .Xr pf.conf 5 ruleset that will be used when loading the final ruleset. .It Sy pflogd .Sq YES or .Sq NO . Run .Xr pflogd 8 for dumping packet filter logging information to a file. @ 1.114.10.3 log @Sync with HEAD. @ text @d58 1 a58 1 .Dd September 20, 2008 d518 1 a518 3 .Sy ifconfig_xxN or .Pa /etc/ifconfig.xxN . a550 2 .Sy ifconfig_nnX variables or d552 1 a552 1 files with multiple lines instead. d681 10 a690 4 parameters in the variable .Sy ifconfig_xxN , and then in the file .Pa /etc/ifconfig.xxN . a694 16 Information in either the variable or the file is parsed identically, except that, if an .Sy ifconfig_xxN variable contains a single line with embedded semicolons, then the value is split into multiple lines prior to further parsing, treating the semicolon as a line separator. One common case it to set .Sy ifconfig_xxN Ns Li \&= Ns Qq dhcp , which will cause .Xr dhcpcd 8 to be started for the interface. Another common case it to set the .Sy ifconfig_xxN variable to a set of arguments to be passed to an .Xr ifconfig 8 command after the interface name. d698 1 a698 4 .Pa /etc/ifconfig.xxN files, and note that the information there also applies to .Sy ifconfig_xxN variables (after the variables are split into lines). @ 1.113 log @For sdpd(8), change default user/group from nobody/nobody to _sdpd/_sdpd @ text @d1 1 a1 1 .\" $NetBSD: rc.conf.5,v 1.112 2007/02/04 08:19:26 elad Exp $ d35 1 a35 1 .Dd February 4, 2007 d419 5 @ 1.112 log @Add support for per-user /tmp. Enabled via per_user_tmp in /etc/rc.conf (default off). See security(8) and rc.conf(5) for more details. Lots of input from thorpej@@ & christos@@, thanks! @ text @d1 1 a1 1 .\" $NetBSD: rc.conf.5,v 1.111 2006/12/23 09:12:35 wiz Exp $ d1213 2 a1214 18 .It Sy sdpd_control Optional string specifying the path to the .Xr sdpd 8 control socket. Defaults to .Pa /var/run/sdp . .It Sy sdpd_username Optional string specifying the username that .Xr sdpd 8 will run as after initialisation. Defaults to .Sq nobody . .It Sy sdpd_groupname Optional string specifying the groupname that .Xr sdpd 8 will run as after initialisation. Defaults to .Sq nobody . @ 1.111 log @Undo accidental change in 1.109. @ text @d1 1 a1 1 .\" $NetBSD: rc.conf.5,v 1.110 2006/12/04 03:52:26 rpaulo Exp $ d35 1 a35 1 .Dd December 4, 2006 d316 12 @ 1.110 log @Mention wpa_supplicant rc script. Noted by hubertf@@ @ text @d1 1 a1 1 .\" $NetBSD: rc.conf.5,v 1.109 2006/10/13 21:21:47 wiz Exp $ d702 1 a702 1 .f you use it. @ 1.109 log @Bump date for previous. @ text @d1 1 a1 1 .\" $NetBSD: rc.conf.5,v 1.108 2006/10/10 03:24:51 reed Exp $ d35 1 a35 1 .Dd October 10, 2006 d702 8 a709 1 if you use it. @ 1.109.4.1 log @Catch up with 4.0 RC3 @ text @d1 1 a1 1 .\" $NetBSD: rc.conf.5,v 1.109.2.1 2007/10/14 04:13:02 riz Exp $ d1194 18 a1211 2 Passes .Sy sdpd_flags . @ 1.109.2.1 log @Pull up following revision(s) (requested by xtraeme in ticket #930): etc/group: revision 1.22 etc/defaults/rc.conf: revision 1.85 etc/master.passwd: revision 1.38 usr.sbin/sdpd/sdpd.8: revision 1.2 usr.sbin/sdpd/sdpd.8: revision 1.3 share/man/man5/rc.conf.5: revision 1.113 etc/rc.d/sdpd: revision 1.2 usr.sbin/sdpd/server.c: revision 1.3 usr.sbin/postinstall/postinstall: revision 1.38 usr.sbin/sdpd/server.h: revision 1.2 usr.sbin/sdpd/main.c: revision 1.2 usr.sbin/sdpd/main.c: revision 1.3 Add an option to permit members of a specific group to register services, in order to lower the barrier for users of bluetooth devices which may need to query services on the local host. change default user/group from nobody/nobody to _sdpd/_sdpd @ text @d1 1 a1 1 .\" $NetBSD$ d1194 18 a1211 2 Passes .Sy sdpd_flags . @ 1.108 log @Instead of pointing to vi man page, refer to new virecover man page for the virecover details. @ text @d1 1 a1 1 .\" $NetBSD: rc.conf.5,v 1.107 2006/09/10 15:45:56 plunky Exp $ d35 1 a35 1 .Dd September 9, 2006 @ 1.107 log @update to bluetooth device attachment: remove pseudo-device btdev(4) and inherent limitations add bthub(4) which autoconfigures at bluetooth controllers as they are enabled. bluetooth devices now attach here. btdevctl(8) and its cache is updated to handle new semantics etc/rc.d/btdevctl is updated to configure devices from a list in /etc/bluetooth/btdevctl.conf @ text @d1 1 a1 1 .\" $NetBSD: rc.conf.5,v 1.106 2006/08/22 17:01:54 christos Exp $ d363 3 a365 5 See .Fl r option in .Xr vi 1 for details. @ 1.106 log @sendmail is no more. from our anonymous admirer. @ text @d1 1 a1 1 .\" $NetBSD: rc.conf.5,v 1.105 2006/08/13 09:03:23 plunky Exp $ d35 1 a35 1 .Dd August 22, 2006 d1178 2 a1179 8 Attach Bluetooth devices. If the .Sy btdevctl_devices variable below is not specified, all devices known will be configured. .It Sy btdevctl_devices An optional space separated list of .Xr btdev 4 devices to be attached. @ 1.105 log @rename btcontrol(8) as btdevctl(8) to make it fit with the NetBSD naming scheme for control programs. This fixes pr 34051. @ text @d1 1 a1 1 .\" $NetBSD: rc.conf.5,v 1.104 2006/07/30 00:18:09 wiz Exp $ d35 1 a35 1 .Dd July 26, 2006 a821 48 .It Sy sendmail .Sq YES or .Sq NO . Runs .Xr sendmail 8 and passes .Sy sendmail_flags . The default setting for this calls on a function to determine if sendmail is actually needed, which means the .Xr rc.d 8 script that starts sendmail will check to see if .Xr sendmail 8 needs to run in order to facilitate local mail delivery. See .Pa /etc/defaults/rc.conf , .Pa /etc/mailer.conf , and .Xr mailer.conf 5 for more details. .It Sy sendmail_suidroot .Sq YES or .Sq NO . Asserts that sendmail is being used as a setuid root binary and adjusts some precmd checks accordingly. If this is set to .Sq YES , you can remove the submit.cf file, and then turn off the .Sy smmsp process. Note that setting this to .Sq YES does not change or remove anything; you must still change the mode of the sendmail binary and remove the submit.cf file manually. .It Sy smmsp .Sq YES or .Sq NO . Runs .Xr sendmail 8 as a client queue runner and passes .Sy smmsp_flags . Note that the smmsp process is not a full-featured SMTP daemon. Its main purpose is to flush locally collected mail from the queue, but it can also be used as a non-privileged .Dq nullclient that forwards to a more functional SMTP gateway. @ 1.104 log @Bump date for previous. New sentence, new line. @ text @d1 1 a1 1 .\" $NetBSD: rc.conf.5,v 1.103 2006/07/26 11:14:55 tron Exp $ d1222 1 a1222 1 .It Sy btcontrol d1228 1 a1228 1 .Sy btcontrol_devices d1230 1 a1230 1 .It Sy btcontrol_devices @ 1.104.2.1 log @Pull up following revision(s) (requested by plunky in ticket #81): usr.sbin/postinstall/postinstall: revision 1.23 distrib/sets/lists/man/mi: revision 1.919 distrib/sets/lists/etc/mi: revision 1.174 usr.sbin/btdevctl/btdevctl.c: revision 1.1 usr.sbin/btdevctl/hid.c: revision 1.1 usr.sbin/Makefile: revision 1.217 usr.sbin/btdevctl/btdevctl.h: revision 1.1 usr.sbin/btdevctl/btdevctl.8: revision 1.1 etc/rc.d/btcontrol: file removal distrib/sets/lists/comp/mi: revision 1.910 etc/rc.d/Makefile: revision 1.61 usr.sbin/btdevctl/cfg.c: revision 1.1 usr.sbin/btdevctl/dev.c: revision 1.1 share/man/man4/btkbd.4: revision 1.2 share/man/man4/bthidev.4: revision 1.4 usr.sbin/btcontrol/hid.c: file removal usr.sbin/btdevctl/Makefile: revision 1.1 share/man/man4/btsco.4: revision 1.3 distrib/sets/lists/base/mi: revision 1.644 share/man/man4/btdev.4: revision 1.3 share/man/man4/btms.4: revision 1.2 etc/mtree/special: revision 1.100 share/man/man5/rc.conf.5: revision 1.105 usr.sbin/btcontrol/cfg.c: file removal etc/rc.d/btdevctl: revision 1.1 etc/defaults/rc.conf: revision 1.80 usr.sbin/btcontrol/btcontrol.h: file removal usr.sbin/btcontrol/btcontrol.8: file removal usr.sbin/btcontrol/dev.c: file removal usr.sbin/btcontrol/btcontrol.c: file removal usr.sbin/btcontrol/Makefile: file removal rename btcontrol(8) as btdevctl(8) to make it fit with the NetBSD naming scheme for control programs. This fixes pr 34051. @ text @d1 1 a1 1 .\" $NetBSD$ d1222 1 a1222 1 .It Sy btdevctl d1228 1 a1228 1 .Sy btdevctl_devices d1230 1 a1230 1 .It Sy btdevctl_devices @ 1.104.2.2 log @Pull up following revision(s) (requested by plunky in ticket #161): sys/dev/bluetooth/btdev.h: revision 1.4 distrib/sets/lists/comp/mi: revision 1.922 usr.sbin/postinstall/postinstall: revision 1.25 sys/netbt/hci_unit.c: revision 1.3 sys/netbt/hci_ioctl.c: revision 1.4 usr.sbin/sdpd/profile.c: revision 1.2 usr.sbin/btdevctl/btdevctl.c: revision 1.2 share/man/man4/Makefile: revision 1.405 distrib/sets/lists/man/mi: revision 1.930 distrib/sets/lists/etc/mi: revision 1.176 usr.sbin/sdpd/profile.c: revision 1.3 usr.sbin/btdevctl/btdevctl.c: revision 1.3 etc/MAKEDEV.tmpl: revision 1.62 distrib/sets/lists/base/mi: revision 1.650 usr.sbin/btdevctl/btdevctl.h: revision 1.2 usr.bin/sdpquery/sdpquery.1: revision 1.4 sys/netbt/rfcomm_session.c: revision 1.2 usr.sbin/btdevctl/btdevctl.8: revision 1.3 usr.bin/sdpquery/search.c: revision 1.2 usr.sbin/sdpd/Makefile: revision 1.2 sys/dev/bluetooth/Makefile: revision 1.3 usr.sbin/btdevctl/cfg.c: file removal sys/netbt/files.netbt: revision 1.4 usr.sbin/btdevctl/sdp.c: revision 1.1 sys/dev/bluetooth/bthidev.c: revision 1.3 etc/bluetooth/Makefile: revision 1.3 sys/dev/pcmcia/files.pcmcia: revision 1.51 sys/dev/bluetooth/bthidev.c: revision 1.4 sys/dev/bluetooth/bthidev.h: revision 1.3 usr.sbin/btdevctl/dev.c: file removal sys/dev/bluetooth/files.bluetooth: revision 1.10 sys/arch/i386/conf/GENERIC: revision 1.777 share/man/man4/ubt.4: revision 1.6 share/man/man4/bthub.4: revision 1.3 sys/netbt/hci.h: revision 1.5 sys/arch/i386/conf/GENERIC_LAPTOP: revision 1.202 lib/libsdp/sdp.h: revision 1.2 usr.sbin/btdevctl/print.c: revision 1.1 share/man/man4/bthidev.4: revision 1.5 share/man/man4/btdev.4: file removal usr.sbin/btdevctl/print.c: revision 1.2 sys/arch/i386/conf/GENERIC_LAPTOP: revision 1.205 usr.sbin/btdevctl/Makefile: revision 1.2 sys/dev/usb/files.usb: revision 1.70 sys/netbt/l2cap_signal.c: revision 1.2 sys/netbt/hci_link.c: revision 1.4 sys/dev/bluetooth/bthub.c: revision 1.3 share/man/man4/btsco.4: revision 1.5 sys/netbt/hci_link.c: revision 1.5 share/man/man4/btdev.4: revision 1.4 sys/dev/bluetooth/btkbd.c: revision 1.3 sys/dev/bluetooth/btdev.c: file removal sys/netbt/hci_event.c: revision 1.2 sys/dev/bluetooth/btsco.h: revision 1.2 etc/mtree/special: revision 1.101 sys/dev/bluetooth/btsco.c: revision 1.3 sys/conf/majors: revision 1.27 usr.sbin/sdpd/hf.c: revision 1.1 sys/dev/bluetooth/btsco.c: revision 1.4 share/man/man5/rc.conf.5: revision 1.107 sys/dev/bluetooth/btdev.c: revision 1.2 etc/rc.d/btdevctl: revision 1.2 usr.sbin/btdevctl/db.c: revision 1.1 etc/rc.d/btdevctl: revision 1.3 etc/bluetooth/btdevctl.conf: revision 1.1 usr.sbin/btdevctl/hid.c: file removal sys/arch/i386/conf/GENERIC: revision 1.781 sys/dev/bluetooth/btdev.h: revision 1.3 Make btdev default count explicit Fix typo in variable name update to bluetooth device attachment: remove pseudo-device btdev(4) and inherent limitations add bthub(4) which autoconfigures at bluetooth controllers as they are enabled. bluetooth devices now attach here. btdevctl(8) and its cache is updated to handle new semantics etc/rc.d/btdevctl is updated to configure devices from a list in /etc/bluetooth/btdevctl.conf also include service name in dictionary being sent to kernel. (this is not used just yet, but it might be in the future and it will be easier if we dont have to provide code to handle its absence) clarify the CAVEAT section somewhat Add service discovery support for the Handsfree profile Replace static 'FreeBSD' string with operating system name gleaned from uname(3) Halt the callout on detach btsco.c: - sco_getopt(..., SO_SCO_MTU, ...) expects the address of a uint16_t, not an int. So change sc_mtu's type to uint16_t. - Try a little harder to ensure btsco_round_blocksize() does not return zero. Prevents a subsequent panic in audio_init_ringbuffer(). from scw@@ Endian issues: hci_event.c: - Convert memo->response.clock_offset to host-endian. hci_ioctl.c: - printf format tweak (size_t) hci_link.c: - Convert memo->response.clock_offset from host-endian. - Tweak a DIAGNOSTIC message. l2cap_signal.c: - In l2cap_recv_config_req(), rp->scid is little-endian so make sure we convert from host-endian. from scw@@ hci_link.c: - In hci_link_free(), do not unlink items from a LIST queue within a LIST_FOREACH() iterator. rfcomm_session.c: - In rfcomm_session_recv_mcc_nsc(), do not unlink items from a LIST queue within a LIST_FOREACH() iterator. from scw@@ guard against a possible situation where the list of l2cap channels is changed when the bluetooth code is not expecting it to be. During a disconnect, we can detach the channel that is being disconnected, but its not really safe to detach any others. Print explicit 64-bit types using the format macros from int_fmtio.h. Unbreaks the build for our LP64 ports, where "long long" typically is not 64 bits. @ text @d1 1 a1 1 .\" $NetBSD: rc.conf.5,v 1.104.2.1 2006/09/07 13:47:51 tron Exp $ d35 1 a35 1 .Dd August 22, 2006 d1226 8 a1233 2 Configure Bluetooth devices as listed in the configuration file .Pa /etc/bluetooth/btdevctl.conf . @ 1.103 log @Bluetooth fixes by Iain Hibbert: Create "/etc/rc.d/btcontrol" to attach bluetooth devices at boot. @ text @d1 1 a1 1 .\" $NetBSD: rc.conf.5,v 1.102 2006/06/19 15:44:44 gdamore Exp $ d35 1 a35 1 .Dd April 30, 2006 d1198 1 a1198 1 .Ss Bluetooth configuration and daemons. d1204 2 a1205 1 Configure bluetooth devices. If the d1207 3 a1209 2 variable below is not specified, all devices known to the system will be configured. For each device, configuration arguments are first looked for d1226 2 a1227 1 Attach Bluetooth devices. If the d1241 2 a1242 1 Bluetooth links. Passes d1248 1 a1248 1 Runs the Service Discovery Profile daemon, d1253 2 a1254 1 control socket. Defaults to d1259 2 a1260 1 will run as after initialisation. Defaults to d1265 2 a1266 1 will run as after initialisation. Defaults to @ 1.102 log @Initial import of bluetooth stack on behalf of Iain Hibbert. (plunky@@, NetBSD Foundation Membership still pending.) This stack was written by Iain under sponsorship from Itronix Inc. The stack includes support for rfcomm networking (networking via your bluetooth enabled cell phone), hid devices (keyboards/mice), and headsets. Drivers for both PCMCIA and USB bluetooth controllers are included. @ text @d1 1 a1 1 .\" $NetBSD: rc.conf.5,v 1.101 2006/04/30 15:37:44 wiz Exp $ d1220 11 @ 1.101 log @Remove trailing space. @ text @d1 1 a1 1 .\" $NetBSD: rc.conf.5,v 1.100 2006/04/30 15:28:34 rpaulo Exp $ d1198 53 @ 1.100 log @Add irdaattach and hostapd. @ text @d1 1 a1 1 .\" $NetBSD: rc.conf.5,v 1.99 2006/03/27 10:07:07 ghen Exp $ d488 1 a488 1 .Xr hostapd 8 , @ 1.99 log @Document the defaultroute6 rc.conf variable and the /etc/mygate6 file in /etc/defaults/rc.conf, /etc/mtree/special, and rc.conf(5). Ok with wiz. @ text @d1 1 a1 1 .\" $NetBSD: rc.conf.5,v 1.98 2006/02/09 23:19:39 wiz Exp $ d35 1 a35 1 .Dd March 27, 2006 d483 7 d1252 8 @ 1.98 log @New sentence, new line. @ text @d1 1 a1 1 .\" $NetBSD: rc.conf.5,v 1.97 2005/11/24 19:32:35 wiz Exp $ d35 1 a35 1 .Dd November 24, 2005 d169 1 a169 1 Default network route. d173 6 @ 1.97 log @Drop trailing whitespace. @ text @d1 1 a1 1 .\" $NetBSD: rc.conf.5,v 1.96 2005/11/24 17:28:46 rpaulo Exp $ d391 2 a392 1 mismatch. Level 2 will also deny writing to and removing of d394 2 a395 1 the signatures file). Level 3 will take a step further and prevent @ 1.96 log @RFC 3879 deprecated the IPv6 site-local prefix (fec0::/10): * remove all references to $ip6sitelocal and output a warning message if the variable is defined. * introduce $ip6uniquelocal (defaults to 'NO') that will control the behaviour of the system when $ip6mode is ``router'' (i.e. fc00::/7 will not be routed if the variable is ``NO'') as per RFC 4193. Thanks to Jonathan A. Kollasch for pointing this out in PR 32152. @ text @d1 1 a1 1 .\" $NetBSD: rc.conf.5,v 1.95 2005/11/19 19:59:24 elad Exp $ d543 1 a543 1 the reject route won't be installed. @ 1.95 log @Add information about recently added veriexec_strict and veriexec_verbose rc.conf variables. @ text @d1 1 a1 1 .\" $NetBSD: rc.conf.5,v 1.94 2005/09/17 19:39:48 wiz Exp $ d35 1 a35 1 .Dd November 19, 2005 d527 1 a527 1 .It Sy ip6sitelocal d531 13 a543 4 If you intend to use IPv6 site-local addresses in your site, set it to .Sq YES . Otherwise, reject routes will get installed on boot to avoid misconfiguration relating to site-local addresses. @ 1.94 log @Fix typo. @ text @d1 1 a1 1 .\" $NetBSD: rc.conf.5,v 1.93 2005/09/17 19:32:11 elad Exp $ d35 1 a35 1 .Dd September 17, 2005 d347 1 a347 1 Load verified exec fingerprints during startup. d385 16 @ 1.93 log @Document permit_nonalpha. PR/20497. @ text @d1 1 a1 1 .\" $NetBSD: rc.conf.5,v 1.92 2004/07/22 03:44:12 atatat Exp $ d384 1 a384 1 NIS/YP netgropus. @ 1.92 log @More better description of current state of sendmail stuff in more places. This is intended to make some people a tad happier. @ text @d1 1 a1 1 .\" $NetBSD: rc.conf.5,v 1.91 2004/07/15 10:45:33 wiz Exp $ d35 1 a35 1 .Dd July 21, 2004 d382 3 @ 1.92.2.1 log @Pull up following revision(s) (requested by elad in ticket #974): share/man/man5/rc.conf.5: revision 1.95 via patch Add information about recently added veriexec_strict and veriexec_verbose rc.conf variables. @ text @d1 1 a1 1 .\" $NetBSD: rc.conf.5,v 1.92 2004/07/22 03:44:12 atatat Exp $ d347 1 a347 1 Load Veriexec fingerprints during startup. a381 16 .It Sy veriexec_strict A number. Controls the strict level of Veriexec. Level 0 is learning mode, used when building the signatures file. It will only output messages but will not enforce anything. Level 1 will only prevent access to files with a fingerprint mismatch. Level 2 will also deny writing to and removing of monitored files, as well as enforce access type (as specified in the signatures file). Level 3 will take a step further and prevent access to files that are not monitored. .It Sy veriexec_verbose A number. Controls the verbosity of Veriexec. Recommended operation is at level 0, verbose output (mostly used when building the signatures file) is at level 1. Level 2 is for debugging only and should not be used. @ 1.92.2.2 log @Pull up following revision(s) (requested by ghen in ticket #1226): etc/defaults/rc.conf: revision 1.74 etc/mtree/special: revision 1.93 share/man/man5/rc.conf.5: revision 1.99 Document the defaultroute6 rc.conf variable and the /etc/mygate6 file in /etc/defaults/rc.conf, /etc/mtree/special, and rc.conf(5). Ok with wiz. @ text @d1 1 a1 1 .\" $NetBSD: rc.conf.5,v 1.99 2006/03/27 10:07:07 ghen Exp $ d35 1 a35 1 .Dd March 27, 2006 d169 1 a169 1 Default IPv4 network route. a172 6 .It Sy defaultroute6 A string. Default IPv6 network route. If empty or not set, then the contents of .Pa /etc/mygate6 (if it exists) are used. @ 1.91 log @Bump date for previous; mark up path with Pa. @ text @d1 1 a1 1 .\" $NetBSD: rc.conf.5,v 1.90 2004/07/15 03:47:18 atatat Exp $ d35 1 a35 1 .Dd July 15, 2004 d787 2 a788 2 The default setting for this is a function that determines if sendmail is actually needed, which means the d794 4 a797 1 .Pa /etc/defaults/rc.conf @ 1.90 log @Change the default settings for sendmail. (1) The stock sendmail.cf will only listen on the loopback interface. (2) The stock submit.cf specifally connects to "localhost." which should be less susceptible to being confused or looking confused. (3) The smtp listener starts by default, if needed. The setting in /etc/default/rc.conf is still "no", but rc.d/sendmail detects the default setting and will change it to yes if need is determined. Need is defined as "nothing else seems to have been changed about the mail configuration but we'd like locally originated and locally destined mail to be delivered". If you change, eg, mailer.conf to point to postfix or some other MTA, sendmail will not start. @ text @d1 1 a1 1 .\" $NetBSD: rc.conf.5,v 1.89 2004/07/15 03:29:55 atatat Exp $ d35 1 a35 1 .Dd January 15, 2004 d322 1 a322 1 .Dq /var/crash . @ 1.89 log @Make the directory into which crash dumps are saved into something that can be controlled via rc.conf. The default is, of course, /var/crash. @ text @d1 1 a1 1 .\" $NetBSD: rc.conf.5,v 1.88 2004/01/15 09:14:54 jmmv Exp $ d787 9 d807 4 @ 1.88 log @Sort lists of variables alphabetically. Also adjust "see also" entries to refer to manpages related to the rc.d infrastructure. @ text @d1 1 a1 1 .\" $NetBSD: rc.conf.5,v 1.87 2004/01/14 21:51:18 jmmv Exp $ d319 4 @ 1.88.2.1 log @Pull up revision 1.89 (requested by atatat in ticket #660): Make the directory into which crash dumps are saved into something that can be controlled via rc.conf. The default is, of course, /var/crash. @ text @d1 1 a1 1 .\" $NetBSD: rc.conf.5,v 1.88 2004/01/15 09:14:54 jmmv Exp $ a318 4 The directory where crash dumps are stored is specified by .Sy savecore_dir . The default setting is .Dq /var/crash . @ 1.88.2.2 log @Pull up revision 1.90 (requested by atatat in ticket #662): Change the default settings for sendmail: 1) The stock sendmail.cf will only listen on the loopback interface 2) The stock submit.cf specifically connects to "localhost.", which should be less susceptible to being confused or looking confused. 3) The SMTP listener starts by default, if needed. The setting in /etc/default/rc.conf is still "no", but rc.d/sendmail detects the default setting and will change it to "yes" if need is determined. "Need" is defined as "nothing else seems to have been changed about the mail configuration but we would like locally originated and locally destined mail to be delivered". If you change e.g. mailer.conf to point to postfix or some other MTA, sendmail will not start. @ text @d1 1 a1 1 .\" $NetBSD: rc.conf.5,v 1.88.2.1 2004/07/15 19:21:31 he Exp $ a786 9 The default setting for this is a function that determines if sendmail is actually needed, which means the .Xr rc.d 8 script that starts sendmail will check to see if .Xr sendmail 8 needs to run in order to facilitate local mail delivery. See .Pa /etc/defaults/rc.conf for more details. a797 4 Note that setting this to .Sq YES does not change or remove anything; you must still change the mode of the sendmail binary and remove the submit.cf file manually. @ 1.88.2.3 log @Pull up revision 1.92 (requested by atatat in ticket #686): More better description of current state of sendmail stuff in more places. This is intended to make some people a tad happier. @ text @d1 1 a1 1 .\" $NetBSD$ d787 2 a788 2 The default setting for this calls on a function to determine if sendmail is actually needed, which means the d794 1 a794 4 .Pa /etc/defaults/rc.conf , .Pa /etc/mailer.conf , and .Xr mailer.conf 5 @ 1.87 log @Document the veriexec variable. @ text @d1 1 a1 1 .\" $NetBSD: rc.conf.5,v 1.86 2004/01/12 05:25:39 uebayasi Exp $ d35 1 a35 1 .Dd January 14, 2004 d117 21 a163 21 .It Sy do_rcshutdown .Sq YES or .Sq NO . If set to .Sq NO , .Xr shutdown 8 will not run .Pa /etc/rc.shutdown . .It Sy rcshutdown_rcorder_flags A string. Extra arguments to the .Xr rcorder 8 run by .Pa /etc/rc.shutdown . .It Sy rcshutdown_timeout A number. If non-blank, use this as the number of seconds to run a watchdog timer for which will terminate .Pa /etc/rc.shutdown if the timer expires before the shutdown script completes. a166 6 .It Sy hostname A string. Name of host. If empty or not set, then the contents of .Pa /etc/myname (if it exists) are used. d196 6 d259 1 a259 1 .It Sy lkm d263 5 a267 11 Runs .Pa /etc/rc.lkm . .It Sy savecore .Sq YES or .Sq NO . Runs the .Xr savecore 8 utility. Passes .Sy savecore_flags . a272 11 .It Sy update_motd .Sq YES or .Sq NO . Updates the .Nx version string in the .Pa /etc/motd file to reflect the version of the running kernel. See .Xr motd 5 . d283 7 a289 1 .It Sy accounting d293 7 a299 5 Enables process accounting with .Xr accton 8 . Requires .Pa /var/account/acct to exist. d310 9 d328 12 a339 1 .It Sy mixerctl d343 1 d345 2 a346 6 .Xr mixerctl.conf 5 for how to set mixer values. List in .Sy mixerctl_mixers the devices whose settings are to be saved at shutdown and restored at start-up. a357 8 .It Sy veriexec .Sq YES or .Sq NO . Load verified exec fingerprints during startup. Read .Xr veriexecctl 8 for more information. d381 131 a522 11 .It Sy ipnat .Sq YES or .Sq NO . Runs .Xr ipnat 8 to load in the IP network address translation (NAT) rules from .Pa /etc/ipnat.conf at network boot time, before any interfaces are configured. See .Xr ipnat.conf 5 . a535 9 .It Sy ipsec .Sq YES or .Sq NO . Runs .Xr setkey 8 to load in IPsec manual keys and policies from .Pa /etc/ipsec.conf at network boot time, before any interfaces are configured. d567 1 a567 1 .It Sy racoon d572 7 a578 3 .Xr racoon 8 , the IKE (ISAKMP/Oakley) key management daemon. .It Sy auto_ifconfig d582 5 a586 8 Sets the .Sy net_interfaces variable (see below) to the output of .Xr ifconfig 8 with the .Dq Li -l flag and suppresses warnings about interfaces in this list that do not have an ifconfig file or variable. a604 72 .It Sy ifaliases_* A string. List of .Sq Em "address netmask" pairs to configure additional network addresses for the given configured interface .Dq * (e.g. .Sy ifaliases_le0 ) . If .Em netmask is .Dq - , then use the default netmask for the interface. .Pp .Sy ifaliases_* covers limited cases only and considered unrecommended. We recommend using .Pa /etc/ifconfig.xxN with multiple lines instead. .It Sy flushroutes .Sq YES or .Sq NO . Flushes the route table on networking startup. Useful when coming up to multiuser mode after going down to single-user mode. .It Sy dhclient .Sq YES or .Sq NO . Set to .Sq YES to configure some or all network interfaces using the DHCP client. If you set .Sy dhclient to .Sq YES , you must either have .Pa /var in .Sy critical_filesystems_local , as part of .Pa / , or direct the DHCP client to store the leases file on the root file system by modifying the .Sy dhclient_flags variable. You must not provide ifconfig information or ifaliases information for any interface that is to be configured using the DHCP client. Interface aliases can be set up in the DHCP client configuration file if needed - see .Xr dhclient.conf 5 for details. .Pp Passes .Sy dhclient_flags to the DHCP client. See .Xr dhclient 8 for complete documentation. If you wish to configure all broadcast network interfaces using the DHCP client, you can leave this blank. To configure only specific interfaces, name the interfaces to be configured on the command line. .Pp If you must run the DHCP client before mounting critical file systems, then you should specify an alternate location for the DHCP client's lease file in the .Sy dhclient_flags variable - for example, "-lf /tmp/dhclient.leases". d634 1 a634 26 .It Sy ip6mode A string. An IPv6 node can be a router .Pq nodes that forward packet for others or a host .Pq nodes that do not forward . A host can be autoconfigured based on the information advertised by adjacent IPv6 routers. By setting .Sy ip6mode to .Dq Li router , .Dq Li host , or .Dq Li autohost , you can configure your node as a router, a non-autoconfigured host, or an autoconfigured host. Invalid values will be ignored, and the node will be configured as a non-autoconfigured host. You may want to check .Sy rtsol and .Sy rtsold as well, if you set the variable to .Dq Li autohost . .It Sy ip6sitelocal d638 3 a640 4 If you intend to use IPv6 site-local addresses in your site, set it to .Sq YES . Otherwise, reject routes will get installed on boot to avoid misconfiguration relating to site-local addresses. a657 14 .It Sy ifwatchd .Sq YES or .Sq NO . Monitor dynamic interfaces and perform actions upon address changes. Passes .Sy ifwatchd_flags . .It Sy altqd .Sq YES or .Sq NO . ALTQ configuration/monitoring daemon. Passes .Sy altqd_flags . d696 1 a696 1 .It Sy syslogd d700 3 a702 5 Runs .Xr syslogd 8 and passes .Sy syslogd_flags . .It Sy cron d706 7 a712 2 Run .Xr cron 8 . a737 19 .It Sy timed .Sq YES or .Sq NO . Runs .Xr timed 8 and passes .Sy timed_flags . The .Dq Li -M option allows .Xr timed 8 to be a master time source as well as a slave. If you are also running .Xr ntpd 8 , only one machine running both should have the .Dq Li -M flag given to .Xr timed 8 . d768 7 d807 1 a807 1 .It Sy postfix d811 5 a815 4 Starts .Xr postfix 1 mail system. .It Sy lpd d820 1 a820 1 .Xr lpd 8 d822 2 a823 5 .Sy lpd_flags . The .Dq Li -l flag will turn on extra logging. .It Sy sshd d828 1 a828 1 .Xr sshd 8 d830 12 a841 1 .Sy sshd_flags . a844 15 .It Sy routed .Sq YES or .Sq NO . Runs .Xr routed 8 , the RIP routing protocol daemon. Passes .Sy routed_flags . .\" This should be .\" .Sq NO .\" if .\" .Sy gated .\" is .\" .Sq YES . d863 15 a900 11 .It Sy rarpd .Sq YES or .Sq NO . Runs .Xr rarpd 8 , the reverse ARP daemon, often used to boot .Nx and Sun workstations. Passes .Sy rarpd_flags . a932 13 .It Sy rbootd .Sq YES or .Sq NO . Runs .Xr rbootd 8 , the .Tn HP boot protocol daemon; used for booting .Tn HP workstations. Passes .Sy rbootd_flags . d958 24 a999 7 .It Sy xfs .Sq YES or .Sq NO . Runs the .Xr xfs 1 X11 font server, which supplies local X font files to X terminals. d1009 7 d1032 11 d1060 23 a1082 1 .It Sy yppasswdd d1087 7 a1093 4 .Xr yppasswdd 8 , which allows remote .Tn NIS users to update password on master server. d1095 1 a1095 4 .Sy yppasswdd_flags . .El .Ss NFS daemons and parameters .Bl -tag -width net_interfaces a1117 14 .It Sy lockd .Sq YES or .Sq NO . Runs .Xr rpc.lockd 8 if .Sy nfs_server and/or .Sy nfs_client are set to .Sq YES . Passes .Sy lockd_flags . a1133 19 .It Sy amd .Sq YES or .Sq NO . Runs .Xr amd 8 , the automounter daemon, which automatically mounts NFS file systems whenever a file or directory within that file system is accessed. Passes .Sy amd_flags . .It Sy amd_dir A string. The .Xr amd 8 mount directory. Used only if .Sy amd is set to .Sq YES . a1136 8 .It Sy kdc .Sq YES or .Sq NO . Runs the .Xr kdc 8 Kerberos v4 and v5 server. This should be run on Kerberos master and slave servers. d1159 8 d1189 9 a1216 9 .It Sy moused .Sq YES or .Sq NO . Runs .Xr moused 8 , to pass serial mouse data to the wscons mouse mux. Passes .Sy moused_flags . a1253 1 .Xr ifconfig.if 5 , d1256 1 d1258 1 a1258 1 .Xr sysctl 8 @ 1.86 log @Refine English. From Luke. @ text @d1 1 a1 1 .\" $NetBSD: rc.conf.5,v 1.85 2004/01/12 04:40:00 uebayasi Exp $ d35 1 a35 1 .Dd January 12, 2004 d350 8 @ 1.85 log @Now /etc/rc.d/virecover can be configurable by rc.conf(5). Reflect it. Bump date. @ text @d1 1 a1 1 .\" $NetBSD: rc.conf.5,v 1.84 2003/12/02 13:14:28 wiz Exp $ d343 1 a343 1 Send notification mails to users if any recoverable file exists in @ 1.84 log @Fix typo. Closes PR 23622 by James Whitwell. @ text @d1 1 a1 1 .\" $NetBSD: rc.conf.5,v 1.83 2003/10/26 08:11:51 wiz Exp $ d35 1 a35 1 .Dd October 26, 2003 d339 11 @ 1.83 log @Bump date for previous. Do not turn off hyphenation (no reason). @ text @d1 1 a1 1 .\" $NetBSD: rc.conf.5,v 1.82 2003/10/26 07:58:44 martti Exp $ d632 1 a632 1 .It Sy altq @ 1.82 log @Added descripton about fsck_flags @ text @d1 1 a1 1 .\" $NetBSD: rc.conf.5,v 1.81 2003/06/27 22:33:19 wiz Exp $ d35 1 a35 1 .Dd April 5, 2003 a37 2 .\" turn off hyphenation .hym 999 @ 1.81 log @Pa Sy -> Sy. @ text @d1 1 a1 1 .\" $NetBSD: rc.conf.5,v 1.80 2003/04/06 15:24:09 wiz Exp $ d222 17 @ 1.80 log @Document mixerctl behaviour during startup better. Based on PR 21023 by Quentin Garnier. @ text @d1 1 a1 1 .\" $NetBSD: rc.conf.5,v 1.79 2003/04/02 19:19:18 wiz Exp $ d697 1 a697 1 .Pa Sy named_chrootdir Ns /var/run/log d741 1 a741 1 .Pa Sy ntpd_chrootdir Ns Pa /var/run/log @ 1.79 log @Bump date. @ text @d1 1 a1 1 .\" $NetBSD: rc.conf.5,v 1.78 2003/04/02 18:26:53 atatat Exp $ d35 1 a35 1 .Dd April 2, 2003 d313 11 d768 1 a768 1 process. d773 1 a773 1 Runs d776 1 a776 1 .Sy smmsp_flags . @ 1.78 log @Documentation for the new sendmail related rc.conf variables, and the interactions between them. @ text @d1 1 a1 1 .\" $NetBSD: rc.conf.5,v 1.77 2003/03/10 22:47:44 wiz Exp $ d35 1 a35 1 .Dd November 25, 2002 @ 1.77 log @x68k, not x86k. PR 20650 by Josh Glover. @ text @d1 1 a1 1 .\" $NetBSD: rc.conf.5,v 1.76 2003/02/25 10:35:15 wiz Exp $ d747 24 @ 1.76 log @.Nm does not need a dummy argument ("") before punctuation or for correct formatting of the SYNOPSIS any longer. @ text @d1 1 a1 1 .\" $NetBSD: rc.conf.5,v 1.75 2002/12/18 19:29:26 wiz Exp $ d1128 1 a1128 1 .Nx Ns /x86k ) . @ 1.75 log @Grammar fix, and drop a trailing space. @ text @d1 1 a1 1 .\" $NetBSD: rc.conf.5,v 1.74 2002/12/04 22:59:51 martin Exp $ d94 1 a94 1 .Nm "" . d1175 1 a1175 1 .Nm "" , @ 1.74 log @Document the force_down_interfaces variable. @ text @d1 1 a1 1 .\" $NetBSD: rc.conf.5,v 1.73 2002/11/29 19:11:45 wiz Exp $ d190 1 a190 1 This interfaces will be configured down when going from multiuser to singleuser d195 1 a195 1 have no direct means of noticing @ 1.73 log @New sentence, new line. @ text @d1 1 a1 1 .\" $NetBSD: rc.conf.5,v 1.72 2002/11/26 12:25:53 grant Exp $ d188 16 @ 1.72 log @Improve ipmon_flags. From Jason Lingohr . @ text @d1 1 a1 1 .\" $NetBSD: rc.conf.5,v 1.71 2002/11/25 08:07:04 grant Exp $ d376 2 a377 1 A string. Specifies arguments to supply to @ 1.71 log @New sentence, new line. @ text @d1 1 a1 1 .\" $NetBSD: rc.conf.5,v 1.70 2002/11/25 08:06:37 grant Exp $ d376 5 a380 7 Set to .Dq Li -ns by default. This variable contains flags passed to the .Xr ipmon 8 program. Another typical example would be d386 3 a388 1 Make sure to adjust d390 1 a390 1 in such case like this: @ 1.70 log @add ipmon_flags. from freebsd. @ text @d1 1 a1 1 .\" $NetBSD: rc.conf.5,v 1.69 2002/10/25 21:00:45 wiz Exp $ d65 2 a66 2 relevant manual pages. Third party packages may test for additional variables. d284 2 a285 1 to trim logfiles before syslogd starts. Intended for laptop users. @ 1.69 log @Mention wsmoused(8) in some places (based on patch from PR 18801 by Julio Merino). @ text @d1 1 a1 1 .\" $NetBSD: rc.conf.5,v 1.68 2002/10/02 15:26:29 wiz Exp $ d35 1 a35 1 .Dd June 17, 2002 d374 19 @ 1.68 log @file systems, not filesystems. @ text @d1 1 a1 1 .\" $NetBSD: rc.conf.5,v 1.67 2002/08/29 10:45:17 wiz Exp $ d1119 9 @ 1.67 log @Drop trailing space. @ text @d1 1 a1 1 .\" $NetBSD: rc.conf.5,v 1.66 2002/08/27 14:16:02 takemura Exp $ d478 1 a478 1 If you must run the DHCP client before mounting critical filesystems, @ 1.66 log @Added touch panel calibration utility. @ text @d1 1 a1 1 .\" $NetBSD: rc.conf.5,v 1.65 2002/08/26 17:46:58 abs Exp $ d48 1 a48 1 .Pa /etc/rc @ 1.65 log @Append ' - see rc.conf(5)' to unset variable warning: /etc/rc.d/fu: WARNING: $fu is not set properly - see rc.conf(5). Add a note to rc.conf that third party packages may test for additional variables. @ text @d1 1 a1 1 .\" $NetBSD: rc.conf.5,v 1.64 2002/07/08 16:15:35 atatat Exp $ d287 9 @ 1.64 log @Cross reference rc.subr(8) from rc.conf(5). @ text @d1 1 a1 1 .\" $NetBSD: rc.conf.5,v 1.63 2002/06/17 06:47:59 lukem Exp $ d61 1 a61 1 Listed below are the d65 2 a66 1 relevant manual pages. @ 1.63 log @ntpd_chrootdir needs /dev/clockctl as well @ text @d1 1 a1 1 .\" $NetBSD: rc.conf.5,v 1.62 2002/06/15 02:00:06 lukem Exp $ d1132 1 @ 1.62 log @$ntpd_chroot requires "pseudo-device clockctl" in the kernel @ text @d1 1 a1 1 .\" $NetBSD: rc.conf.5,v 1.61 2002/05/19 01:01:34 lukem Exp $ d35 1 a35 1 .Dd June 15, 2002 d689 3 a691 1 compiled in. @ 1.61 log @Add two new rc.conf(5) variables: rc_rcorder_flags extra flags to rcorder(8) in /etc/rc rcshutdown_rcorder_flags extra flags to rcorder(8) in /etc/rc.shutdown This can be used to specify extra directories to search for rc.d scripts in. For example, adding the following to rc.conf(5): rc_rcorder_flags="/usr/pkg/etc/rc.d/*" rcshutdown_rcorder_flags="/usr/pkg/etc/rc.d/*" will add the files in /usr/pkg/etc/rc.d to the list of files that rcorder(8) uses to build the list of scripts to start or stop. I proposed this functionality on tech-userlevel@@ over one month ago. Closes the recent [misc/16888], which asked for a similar feature. @ text @d1 1 a1 1 .\" $NetBSD: rc.conf.5,v 1.60 2002/04/29 10:27:14 lukem Exp $ d35 1 a35 1 .Dd May 19, 2002 d687 3 @ 1.61.2.1 log @Pull up revision 1.62 (requested by lukem in ticket #278): $ntpd_chroot requires "pseudo-device clockctl" in the kernel @ text @d1 1 a1 1 .\" $NetBSD$ d35 1 a35 1 .Dd June 15, 2002 a686 3 This option requires that the kernel has .Dl pseudo-device clockctl compiled in. @ 1.61.2.2 log @Pull up revision 1.63 (requested by lukem in ticket #294): ntpd_chrootdir needs /dev/clockctl as well @ text @d1 1 a1 1 .\" $NetBSD: rc.conf.5,v 1.61.2.1 2002/06/15 02:15:00 lukem Exp $ d35 1 a35 1 .Dd June 17, 2002 d689 1 a689 3 compiled in, and that .Pa /dev/clockctl is present. @ 1.61.2.3 log @Pull up revision 1.65 (requested by abs in ticket #732): Append ' - see rc.conf(5)' to unset variable warning: /etc/rc.d/fu: WARNING: $fu is not set properly - see rc.conf(5). Add a note to rc.conf that third party packages may test for additional variables. @ text @d1 1 a1 1 .\" $NetBSD$ d61 1 a61 1 Listed below are the standard d65 1 a65 2 relevant manual pages. Third party packages may test for additional variables. @ 1.61.2.4 log @Pullup rev 1.82 (requested by martti in ticket #1543) Allow custom fsck options via fsck_flags. @ text @d1 1 a1 1 .\" $NetBSD: rc.conf.5,v 1.61.2.3 2002/11/24 15:42:48 tron Exp $ a205 17 .It Sy fsck_flags A string. A file system is checked with .Xr fsck 8 during boot before mounting it. This option may be used to override the default command-line options passed to the .Xr fsck 8 program. .Pp When set to .Fl y , .Xr fsck 8 assumes yes as the answer to all operator questions during file system checks. This might be important with hosts where the administrator does not have access to the console and an unsuccessful shutdown must not make the host unbootable even if the file system checks would fail in preen mode. @ 1.61.2.5 log @Pullup rev 1.84 (requested by wiz in ticket #1574) Fix typo. PR#23622 and PR#23722 @ text @d1 1 a1 1 .\" $NetBSD: rc.conf.5,v 1.61.2.4 2003/10/27 04:42:54 jmc Exp $ d577 1 a577 1 .It Sy altqd @ 1.60 log @- deprecate ip6forwarding in favour of ip6mode - various grammar fixes @ text @d1 1 a1 1 .\" $NetBSD: rc.conf.5,v 1.59 2002/04/29 05:56:25 lukem Exp $ d35 1 a35 1 .Dd April 29, 2002 d138 6 d152 6 @ 1.59 log @deprecate $sshd_conf_dir (and hardcode as "/etc/ssh"). $sshd_conf_dir wasn't as flexible as liked (it didn't work for ssh(1), host keys or known_hosts). @ text @d1 1 a1 1 .\" $NetBSD: rc.conf.5,v 1.58 2002/04/18 12:13:07 lukem Exp $ d494 1 a494 1 or host d497 1 a497 1 based on the information advertised by adjacent IPv6 router. d519 1 a519 1 If you intend to use IPv6 site-local address in your site, set it to d521 2 a522 2 Otherwise, reject route will get installed on boot to avoid misconfiguration regarding to site-local addresses. d529 2 a530 2 router solicitation command for IPv6 host. On nomadic host like notebook computers, you may want to enable d535 1 a535 1 This is only for autoconfigured IPv6 host, so set d537 3 a539 1 to autohost if you use it. d753 5 a757 6 periodically transmits router solicitation packet to find IPv6 router on the network. This configuration is mainly for nomadic host like notebook computers. Stationary host should work fine with .Sy rtsol only. d760 1 a760 1 This is only for autoconfigured IPv6 host, so set d762 3 a764 1 to autohost if you use it. d859 2 a860 2 This is only for IPv6 router, so set .Sy ip6forwarding d862 1 a862 1 .Sq YES @ 1.58 log @improve /etc/rc.conf.d/* documentation, as per reminder from matt green. @ text @d1 1 a1 1 .\" $NetBSD: rc.conf.5,v 1.57 2002/03/27 08:53:43 lukem Exp $ d35 1 a35 1 .Dd April 18, 2002 a706 4 .It Sy sshd_conf_dir Location for .Xr sshd 8 configuration and key files. @ 1.57 log @Replace $critical_filesystems_beforenet with $critical_filesystems_local . Replace $critical_filesystems with $critical_filesystems_remote . The new names are now consistent with the type argument that mount_critical_filesystems() is called with, and allows for other types to be easily supported by that function. For backwards compatibility purposes, if the now obsolete variable is defined (even empty), it takes precedence over the new form, and you will be warned. If you want to stop the warnings, update your rc.conf(5) settings! @ text @d1 1 a1 1 .\" $NetBSD: rc.conf.5,v 1.56 2002/03/21 23:14:03 lukem Exp $ d35 1 a35 1 .Dd March 27, 2002 d48 5 a52 1 .Pa /etc/rc . d56 2 a57 2 .Pa /etc/rc if it exists, meaning that d82 1 a82 1 .Pa /etc/rc d85 31 d292 2 a293 2 .Pa /etc/rc finishes. d1103 8 a1110 1 .Nm "" . @ 1.56 log @swapoff @ text @d1 1 a1 1 .\" $NetBSD: rc.conf.5,v 1.55 2002/03/01 16:52:04 mrg Exp $ d35 1 a35 1 .Dd March 22, 2002 d143 1 a143 1 .It Sy critical_filesystems_beforenet d152 1 a152 1 .It Sy critical_filesystems d396 1 a396 1 .Sy critical_filesystems_beforenet , @ 1.55 log @note that securelevel=0 ends up -> securelevel=1 (part of PR#13647) @ text @d1 1 a1 1 .\" $NetBSD: rc.conf.5,v 1.54 2002/02/25 04:23:20 lukem Exp $ d35 1 a35 1 .Dd February 25, 2002 d171 6 @ 1.54 log @the rc_fast_and_loose behaviour is enabled if the variable != "", not if it == "YES", so fix the documentation... @ text @d1 1 a1 1 .\" $NetBSD: rc.conf.5,v 1.53 2002/02/24 13:00:41 lukem Exp $ d244 9 @ 1.53 log @sshd_conf_dir @ text @d1 1 a1 1 .\" $NetBSD: rc.conf.5,v 1.52 2002/02/11 10:19:58 martti Exp $ d6 1 a6 1 .\" Copyright (c) 1998-2000 The NetBSD Foundation, Inc. d35 1 a35 1 .Dd February 24, 2001 d91 1 a91 5 .Sq YES or .Sq NO . If set to .Sq YES , @ 1.52 log @ipfs allows state information created for NAT entries and rules using keep state to be locked (modification prevented) and then saved to disk, allowing for the system to experience a reboot, followed by the restoration of that information, resulting in connections not being interrupted. To activate this feature, set ipfs=YES in /etc/rc.conf @ text @d1 1 a1 1 .\" $NetBSD: rc.conf.5,v 1.51 2002/01/21 15:55:36 wiz Exp $ d35 1 a35 1 .Dd January 22, 2001 d661 4 @ 1.51 log @Punctuation nit, file system separation, and slight formatting improvements. @ text @d1 1 a1 1 .\" $NetBSD: rc.conf.5,v 1.50 2002/01/21 15:40:55 lukem Exp $ d273 13 @ 1.50 log @- document rc_fast_and_loose, racoon, ifwatchd, altq, named_chrootdir, ntpd_chrootdir, ndbootd, isdnd, isdn_autoupdown, poffd, moused - reorder some entries - add "passes xxxx_flags" for some entries - clarify the types of a few variables - fix typos @ text @d1 1 a1 1 .\" $NetBSD: rc.conf.5,v 1.49 2001/09/08 01:29:07 wiz Exp $ d103 1 a103 1 .It Em Note: d376 1 a376 1 filesystem by modifying the d610 1 a610 1 .Pa Sy ntpd_chrootdir Ns /var/run/log d927 1 a927 1 whenever a file or directory within that filesystem is accessed. d1002 1 a1002 1 .Nx x86k ) . @ 1.49 log @Whitespace/punctuation fixes. @ text @d1 1 a1 1 .\" $NetBSD: rc.conf.5,v 1.48 2001/08/18 19:50:20 ad Exp $ d35 1 a35 1 .Dd June 17, 2001 d84 4 a87 1 If this is not set to d90 17 d108 3 d117 1 d126 1 d131 6 d138 1 a143 5 .It Sy defaultroute Default network route. If empty or not set, then the contents of .Pa /etc/mygate (if it exists) are used. d148 1 d157 1 d163 3 d171 1 a171 1 If not set, or set to anything other than d235 2 d263 3 d293 7 d313 1 d331 1 d414 2 d417 1 d421 1 a421 1 .Pa /etc/netstart d424 1 a424 1 for a coresponding ppp configuration file in d432 1 d479 14 d526 2 d553 17 d597 17 d778 9 d896 1 a896 1 if either d898 1 a898 1 or d900 1 a900 1 is (or both are) set to d912 1 a912 1 is running, if either d914 1 a914 1 or d916 1 a916 1 is (or both are) set to d931 1 d942 30 a982 8 .It Sy kdc .Sq YES or .Sq NO . Runs the .Xr kdc 8 Kerberos v4 and v5 server. This should be run on Kerberos master and slave servers. d994 11 d1013 9 @ 1.48 log @Make newsyslog at boot optional, as it should have been. @ text @d1 1 a1 1 .\" $NetBSD: rc.conf.5,v 1.47 2001/06/17 01:14:15 lukem Exp $ d81 1 a81 1 .Ss Overall control: d99 1 a99 1 .Ss Basic network configuration: d118 1 a118 1 .Ss Boottime file-system and swap configuration: d144 1 a144 1 .Ss One-time actions to perform or programs to run on boot-up: d204 1 a204 1 .Ss System security setting: d215 1 a215 1 .Ss Networking startup: d430 1 a430 1 .Ss Daemons required by other daemons: d463 1 a463 1 .Ss Commonly used daemons: d549 1 a549 1 .Ss Routing daemons: d604 1 a604 1 .Ss Daemons used to boot other hosts over a network: d694 1 a694 1 .Ss X Window System daemons: d713 1 a713 1 .Ss NIS (YP) daemons: d757 1 a757 1 .Ss NFS daemons and parameters: d830 1 a830 1 .Ss Other daemons: d852 1 a852 1 .Ss Hardware daemons: @ 1.47 log @document $rcshutdown_timeout. document $mountd. (this one fixes [misc/13135]) remove $amd_master. (this one fixes [misc/11971]) @ text @d1 1 a1 1 .\" $NetBSD: rc.conf.5,v 1.46 2001/04/25 08:53:31 mjl Exp $ d196 7 @ 1.46 log @Fix typo and missing word. PR/12744 by Gael Queri. @ text @d1 1 a1 1 .\" $NetBSD: rc.conf.5,v 1.45 2001/04/09 16:39:31 wiz Exp $ d35 1 a35 1 .Dd October 1, 2000 d93 5 d752 8 d771 1 a771 3 .Xr mountd 8 and .Xr nfsd 8 , d773 1 a773 4 .Sy mountd_flags and .Sy nfsd_flags to them, respectively. a817 8 Used only if .Sy amd is set to .Sq YES . .It Sy amd_master The .Xr amd 8 automounter master map. @ 1.45 log @Remove paragraph about gated(8). Noted by Hubert Feyrer. @ text @d1 1 a1 1 .\" $NetBSD: rc.conf.5,v 1.44 2001/04/04 11:13:44 wiz Exp $ d199 1 a199 1 If set to nothing, the default action is taken, as described d201 1 a201 1 which contains definative information about the system securelevel. @ 1.44 log @dhclient(8), not (1), but postfix(1), not (8). @ text @d1 1 a1 1 .\" $NetBSD: rc.conf.5,v 1.43 2001/02/24 14:07:22 mrg Exp $ d548 6 a553 27 This should be .Sq NO if .Sy gated is .Sq YES . .It Sy gated .Sq YES or .Sq NO . Runs .Xr gated 8 , the multiprotocol routing daemon. Passes .Sy gated_flags . This should be .Sq NO if .Sy routed is .Sq YES . .Xr gated 8 is not included with the standard .Nx installation, although it is part of the optional .Nx package collection. @ 1.43 log @sshd is part of NetBSD these days.... this should have been updated when ssh was integrated into netbsd, so as not to confuse people who think they need to (and do) install some other ssh package on 1.5 or later machines. @ text @d1 1 a1 1 .\" $NetBSD: rc.conf.5,v 1.42 2001/01/11 17:56:17 itojun Exp $ d121 1 a121 1 .Xr dhclient 1 d515 1 a515 1 .Xr postfix 8 @ 1.42 log @extend /etc/ifconfig.xxN, for comment lines (#) and shell script fragment (!). inspired by openbsd /etc/hostname.xxN. @ text @d1 1 a1 1 .\" $NetBSD: rc.conf.5,v 1.41 2001/01/03 17:54:05 itojun Exp $ a535 6 .Xr sshd 8 is not included with the standard .Nx installation, although it is part of the optional .Nx package collection. @ 1.41 log @add $ip6sitelocal, to control installation of reject route for fec0::/10. @ text @d1 1 a1 1 .\" $NetBSD: rc.conf.5,v 1.40 2000/11/17 10:14:20 lukem Exp $ d258 1 a258 1 For each interface "xxn", the system first looks for ifconfig d260 1 a260 1 .Pa /etc/ifconfig.xxn d262 1 a262 1 .Sy ifconfig_xxn . d269 4 d911 1 @ 1.40 log @use Dq as appropriate @ text @d1 1 a1 1 .\" $NetBSD: rc.conf.5,v 1.39 2000/10/01 06:04:43 lukem Exp $ d390 8 @ 1.39 log @also note /etc/defaults/rc.conf @ text @d1 1 a1 1 .\" $NetBSD: rc.conf.5,v 1.38 2000/08/11 02:39:27 thorpej Exp $ d253 1 a253 1 .Ar -l d271 1 a271 1 .Sq Ar "address netmask" d278 1 a278 1 .Ar netmask d389 1 a389 1 .Li autohost . d420 1 a420 1 .Ar -l d472 1 a472 1 .Ar -M d479 1 a479 1 .Ar -M d514 1 a514 1 .Ar -l d744 1 a744 1 .Ar -d @ 1.38 log @Clarify kdc section. @ text @d1 1 a1 1 .\" $NetBSD: rc.conf.5,v 1.37 2000/08/11 02:25:52 itojun Exp $ d35 1 a35 1 .Dd August 9, 2000 d888 10 a897 1 .Pa /etc/rc.conf @ 1.37 log @kdc superseded kerberos. not sure if the description is 100% right. @ text @d1 1 a1 1 .\" $NetBSD: rc.conf.5,v 1.36 2000/08/08 19:01:03 lukem Exp $ d857 2 a858 2 kerberos server. This should only be run on the kerberos master server. @ 1.36 log @document sshd. add note that whilst sshd & gated are not part of the base system they are available in the optional package collection. @ text @d1 1 a1 1 .\" $NetBSD: rc.conf.5,v 1.35 2000/07/26 06:34:47 lukem Exp $ d851 1 a851 1 .It Sy kerberos d855 3 a857 4 Runs the kerberos server .Xr kerberos 8 and the kerberos admininstration server, .Xr kadmind 8 . a858 2 Both servers implement version IV of the Kerberos protocol, not the newer Kerberos version 5. @ 1.35 log @* update to match etc/rc.conf * clean up formatting @ text @d1 1 a1 1 .\" $NetBSD: rc.conf.5,v 1.34 2000/07/03 07:16:04 enami Exp $ d35 1 a35 1 .Dd July 26, 2000 d516 14 d564 5 a568 2 is not included with .Nx . @ 1.34 log @Sync with reality: - Remove update and defcorename. - portmap is replaced with rpcbind. - xntpd is replaced with ntpd. - Add clear_tmp and postfix. - Remove description about nfsiod and describe that the number of asynchronous i/o server is controlled via sysctl. Cosmetic changes: - Remove an empty line in the source. - Break line at the end of statement. @ text @d1 1 a1 1 .\" $NetBSD: rc.conf.5,v 1.33 2000/06/20 16:48:21 itojun Exp $ d6 1 a6 1 .\" Copyright (c) 1998, 1999 The NetBSD Foundation, Inc. d35 1 a35 1 .Dd November 23, 1999 d47 1 a47 1 the startup script d68 4 a71 1 and are set to "YES" or "NO". d81 13 a93 1 .Pp a112 1 .Pp d114 9 a122 1 .Bl -tag -width critfs_require_network d124 1 a124 1 File systems mounted very early in the system boot, except for the d126 2 a127 13 and .Pa /var file-systems. .It Sy critfs_require_network YES or NO. Set the .Sy critfs_require_network variable to YES if the network must be configured before critical filesystems can be mounted. This should be set to NO if you are using the DHCP client, because the DHCP client needs to store its lease database in the .Pa /var/db directory. d131 6 a136 2 variable to YES if you have configured your system with no swap on purpose. If not set, or set to anything other than YES, and no swap devices a138 1 .Pp d142 3 a144 1 YES or NO. d148 3 a150 1 YES or NO. d157 3 a159 1 YES or NO. d162 3 a164 1 YES or NO. d173 3 a175 1 YES or NO. d183 3 a185 1 YES or NO. a191 1 .Pp d193 1 a193 1 .Bl -tag -width securelevel a202 1 .Pp d206 3 a208 1 YES or NO. d215 9 a223 1 .Xr ipf 5 . d225 3 a227 1 YES or NO. d233 11 d245 3 a247 1 YES or NO. d289 3 a291 1 YES or NO. d296 6 a301 2 YES or NO. Set to YES to configure some or all network interfaces using d305 9 a313 3 to YES, you must either set .Sy critfs_require_network to NO or direct the DHCP client to store the leases file on the root d323 4 a326 2 .It Sy dhclient_flags Flags to pass to the DHCP client. d341 3 a343 1 YES or NO. d391 3 a393 1 YES or NO. a405 1 .Pp d409 3 a411 1 YES or NO. d423 3 a425 1 YES or NO. a438 1 .Pp d442 3 a444 1 YES or NO. d449 6 d456 3 a458 1 YES or NO. d464 3 a466 1 YES or NO. d483 3 a485 1 YES or NO. d491 3 a493 1 YES or NO. d499 3 a501 1 YES or NO. d506 3 a508 1 YES or NO. a516 1 .Pp d520 3 a522 1 YES or NO. d528 3 a530 1 This should be NO if d532 2 a533 1 is YES. d535 3 a537 1 YES or NO. d543 3 a545 1 This should be NO if d547 2 a548 1 is YES. d553 3 a555 1 YES or NO. d562 3 a564 1 YES or NO. d571 3 a573 1 YES or NO. a589 1 .Pp d593 3 a595 1 YES or NO. d604 3 a606 1 YES or NO. d618 3 a620 1 YES or NO. d627 8 d636 3 a638 1 YES or NO. d649 3 a651 1 YES or NO. d665 3 a667 1 YES or NO. d676 22 a697 1 to YES if you use it. a698 1 .Pp d702 3 a704 1 YES or NO. d715 3 a717 1 YES or NO. d732 3 a734 1 YES or NO. a742 1 .Pp d746 3 a748 1 YES or NO. d752 3 a754 1 YES or NO. d765 3 a767 1 YES or NO. d774 2 a775 1 is (or both are) set to YES. d779 3 a781 1 YES or NO. d790 2 a791 1 is (or both are) set to YES. d795 3 a797 1 YES or NO. d810 2 a811 1 is set to YES. d818 2 a819 17 is set to YES. .El .Pp .Ss X Window System daemons: .Bl -tag -width net_interfaces .It Sy xfs YES or NO. Runs the .Xr xfs 1 X11 font server, which supplies local X font files to X terminals. .It Sy xdm YES or NO. Runs the .Xr xdm 1 X display manager. These X daemons are available only with the optional X distribution of .Nx . a820 1 .Pp a822 6 .It Sy apmd YES or NO. Runs .Xr apmd 8 and passes .Sy apmd_flags . d824 3 a826 1 YES or NO. d835 3 a837 1 YES or NO. d845 11 a855 2 The kerberos server is only available with the USA distribution of .Nx . d857 3 a859 1 YES or NO. d864 8 @ 1.33 log @remove ip6defaultif configuration. because: - ndp is in /usr/sbin, chokes on NFS-mounted /usr installation - the option is just for IPv6 specification geek, not for normal users @ text @d1 1 a1 1 .\" $NetBSD: rc.conf.5,v 1.32 2000/06/13 16:33:18 itojun Exp $ d112 2 a113 1 can be mounted. This should be set to NO if you are using the DHCP client, d138 3 a164 11 .It Sy defcorename A string. This sets the default core name template, from which are derived core dump files names. The template can include format charaters which are dynamically interpreted. See .Xr core 5 for details of the format. If set to nothing, the default compiled-in value is keept (see .Xr options 4 , .Xr sysctl 3 ). d170 2 a171 1 A number. The system securelevel is set to the specified value early d173 2 a174 2 that run users job, are started. If set to nothing, the default action is taken, as described d247 2 a248 1 the DHCP client. If you set d255 4 a258 3 variable. You must not provide ifconfig information or ifaliases information for any interface that is to be configured using the DHCP client. Interface aliases can be set up in the DHCP client configuration d263 2 a264 1 Flags to pass to the DHCP client. See d266 2 a267 1 for complete documentation. If you wish to configure all broadcast a276 1 d354 1 a354 1 .It Sy portmap d357 1 a357 1 .Xr portmap 8 a371 6 .It Sy update YES or NO. Runs .Xr update 8 and passes .Sy update_flags . d396 1 a396 1 .Xr xntpd 8 , d401 1 a401 1 .It Sy xntpd d404 1 a404 1 .Xr xntpd 8 d406 1 a406 1 .Sy xntpd_flags . d413 5 d599 2 a600 5 Runs .Xr nfsiod 8 to increase performance of an NFS client host. Passes .Sy nfsiod_flags . d715 2 a716 1 .Xr rc 8 @ 1.32 log @add ipsec configuration. @ text @d1 1 a1 1 .\" $NetBSD: rc.conf.5,v 1.31 2000/02/13 07:47:27 itojun Exp $ a327 16 .It Sy ip6defaultif This configuration is just for very rare case, you can leave it empty. IPv6 neighbor discovery specification (RFC2461 section 5.2) says that if you have no router known to you, you need to treat all the destination as being on-link. .Sy ip6defaultif configures the outgoing interface in this situation. See .Xr ndp 8 , option .Fl I for more detail. The setting is for IPv6 hosts only. It will be ignored if .Sy ip6mode is set to .Li router . @ 1.32.2.1 log @remove ip6defaultif configuration, which is not for common installation. approved by: releng-1-5 @ text @d1 1 a1 1 .\" $NetBSD: rc.conf.5,v 1.32 2000/06/13 16:33:18 itojun Exp $ d328 16 @ 1.32.2.2 log @Pull up rev. 1.34: Sync with reality: - Remove update and defcorename. - portmap is replaced with rpcbind. - xntpd is replaced with ntpd. - Add clear_tmp and postfix. - Remove description about nfsiod and describe that the number of asynchronous i/o server is controlled via sysctl. Cosmetic changes: - Remove an empty line in the source. - Break line at the end of statement. @ text @d1 1 a1 1 .\" $NetBSD: rc.conf.5,v 1.32.2.1 2000/06/20 17:53:46 itojun Exp $ d112 1 a112 2 can be mounted. This should be set to NO if you are using the DHCP client, a136 3 .It Sy clear_tmp YES or NO. Clear /tmp after reboot. d161 11 d177 1 a177 2 A number. The system securelevel is set to the specified value early d179 2 a180 2 that run users job, are started. If set to nothing, the default action is taken, as described d253 1 a253 2 the DHCP client. If you set d260 3 a262 4 variable. You must not provide ifconfig information or ifaliases information for any interface that is to be configured using the DHCP client. Interface aliases can be set up in the DHCP client configuration d267 1 a267 2 Flags to pass to the DHCP client. See d269 1 a269 2 for complete documentation. If you wish to configure all broadcast d279 1 d357 1 a357 1 .It Sy rpcbind d360 1 a360 1 .Xr rpcbind 8 d375 6 d405 1 a405 1 .Xr ntpd 8 , d410 1 a410 1 .It Sy ntpd d413 1 a413 1 .Xr ntpd 8 d415 1 a415 1 .Sy ntpd_flags . a421 5 .It Sy postfix YES or NO. Starts .Xr postfix 8 mail system. d603 5 a607 2 The number of local NFS asynchronous I/O server is now controlled via .Xr sysctl 8 . d722 1 a722 2 .Xr rc 8 , .Xr sysctl 8 @ 1.32.2.3 log @pull up rev 1.35-1.36 approved by thorpej 1.35: * update to match etc/rc.conf * clean up formatting 1.36: document sshd. add note that whilst sshd & gated are not part of the base system they are available in the optional package collection. @ text @d1 1 a1 1 .\" $NetBSD: rc.conf.5,v 1.36 2000/08/08 19:01:03 lukem Exp $ d6 1 a6 1 .\" Copyright (c) 1998-2000 The NetBSD Foundation, Inc. d35 1 a35 1 .Dd August 9, 2000 d47 1 a47 1 the startup scripts invoked by d68 1 a68 4 and are set to .Sq YES or .Sq NO . d78 1 a78 13 .Ss Overall control: .Bl -tag -width net_interfaces .It Sy rc_configured If this is not set to .Sq YES then the system will drop into single-user mode during boot. .It Sy do_rcshutdown If set to .Sq NO , .Xr shutdown 8 will not run .Pa /etc/rc.shutdown . .El d98 1 d100 1 a100 9 .Bl -tag -width net_interfaces .It Sy critical_filesystems_beforenet File systems mounted very early in the system boot before networking services are available. Usually .Pa /var is part of this, because it is needed by services such as .Xr dhclient 1 which may be required to get the network operational. d102 1 a102 1 File systems such as d104 13 a116 2 that may require network services to be available to mount, that must be available early in the system boot for general services to use. d120 2 a121 6 variable to .Sq YES if you have configured your system with no swap on purpose. If not set, or set to anything other than .Sq YES , and no swap devices d124 1 d128 1 a128 3 .Sq YES or .Sq NO . d132 1 a132 3 .Sq YES or .Sq NO . d139 1 a139 3 .Sq YES or .Sq NO . d142 1 a142 3 .Sq YES or .Sq NO . d151 1 a151 3 .Sq YES or .Sq NO . d159 1 a159 3 .Sq YES or .Sq NO . d166 1 d168 1 a168 1 .Bl -tag -width net_interfaces d178 1 d182 1 a182 3 .Sq YES or .Sq NO . d189 1 a189 9 .Xr ipf.conf 5 . .It Sy ipnat Runs .Xr ipnat 8 to load in the IP network address translation (NAT) rules from .Pa /etc/ipnat.conf at network boot time, before any interfaces are configured. See .Xr ipnat.conf 5 . d191 1 a191 3 .Sq YES or .Sq NO . a196 11 .It Sy ipmon .Sq YES or .Sq NO . Runs .Xr ipmon 8 to read .Xr ipf 8 packet log information and log it to a file or the system log. Passes .Sy ipmon_flags . d198 1 a198 3 .Sq YES or .Sq NO . d240 1 a240 3 .Sq YES or .Sq NO . d245 2 a246 6 .Sq YES or .Sq NO . Set to .Sq YES to configure some or all network interfaces using d250 3 a252 9 to .Sq YES , you must either have .Pa /var in .Sy critical_filesystems_beforenet , as part of .Pa / , or direct the DHCP client to store the leases file on the root d262 2 a263 4 .Pp Passes .Sy dhclient_flags to the DHCP client. d278 1 a278 3 .Sq YES or .Sq NO . d326 1 a326 3 .Sq YES or .Sq NO . d339 1 d343 1 a343 3 .Sq YES or .Sq NO . d355 1 a355 3 .Sq YES or .Sq NO . d369 1 d373 1 a373 3 .Sq YES or .Sq NO . a377 6 .It Sy cron .Sq YES or .Sq NO . Run .Xr cron 8 . d379 1 a379 3 .Sq YES or .Sq NO . d385 1 a385 3 .Sq YES or .Sq NO . d402 1 a402 3 .Sq YES or .Sq NO . d408 1 a408 3 .Sq YES or .Sq NO . d414 1 a414 3 .Sq YES or .Sq NO . d419 1 a419 3 .Sq YES or .Sq NO . a426 14 .It Sy sshd .Sq YES or .Sq NO . Runs .Xr sshd 8 and passes .Sy sshd_flags . .Xr sshd 8 is not included with the standard .Nx installation, although it is part of the optional .Nx package collection. d428 1 d432 1 a432 3 .Sq YES or .Sq NO . d438 1 a438 3 This should be .Sq NO if d440 1 a440 2 is .Sq YES . d442 1 a442 3 .Sq YES or .Sq NO . d448 1 a448 3 This should be .Sq NO if d450 1 a450 2 is .Sq YES . d452 2 a453 5 is not included with the standard .Nx installation, although it is part of the optional .Nx package collection. d455 1 a455 3 .Sq YES or .Sq NO . d462 1 a462 3 .Sq YES or .Sq NO . d469 1 a469 3 .Sq YES or .Sq NO . d486 1 d490 1 a490 3 .Sq YES or .Sq NO . d499 1 a499 3 .Sq YES or .Sq NO . d511 1 a511 3 .Sq YES or .Sq NO . a517 8 .It Sy dhcrelay .Sq YES or .Sq NO . Runs .Xr dhcrelay 8 . Passes .Sy dhcrelay_flags . d519 1 a519 3 .Sq YES or .Sq NO . d530 1 a530 3 .Sq YES or .Sq NO . d544 1 a544 3 .Sq YES or .Sq NO . d553 1 a553 22 to .Sq YES if you use it. .El .Ss X Window System daemons: .Bl -tag -width net_interfaces .It Sy xfs .Sq YES or .Sq NO . Runs the .Xr xfs 1 X11 font server, which supplies local X font files to X terminals. .It Sy xdm .Sq YES or .Sq NO . Runs the .Xr xdm 1 X display manager. These X daemons are available only with the optional X distribution of .Nx . d555 1 d559 1 a559 3 .Sq YES or .Sq NO . d570 1 a570 3 .Sq YES or .Sq NO . d585 1 a585 3 .Sq YES or .Sq NO . d594 1 d598 1 a598 3 .Sq YES or .Sq NO . d602 1 a602 3 .Sq YES or .Sq NO . d613 1 a613 3 .Sq YES or .Sq NO . d620 1 a620 2 is (or both are) set to .Sq YES . d624 1 a624 3 .Sq YES or .Sq NO . d633 1 a633 2 is (or both are) set to .Sq YES . d637 1 a637 3 .Sq YES or .Sq NO . d650 1 a650 2 is set to .Sq YES . d657 1 a657 2 is set to .Sq YES . d659 17 d678 6 d685 1 a685 3 .Sq YES or .Sq NO . d694 1 a694 3 .Sq YES or .Sq NO . d702 2 a703 11 .El .Ss Hardware daemons: .Bl -tag -width net_interfaces .It Sy apmd .Sq YES or .Sq NO . Runs .Xr apmd 8 and passes .Sy apmd_flags . d705 1 a705 3 .Sq YES or .Sq NO . a709 8 .It Sy wscons .Sq YES or .Sq NO . Configures the .Xr wscons 4 console driver, from the configuration file .Pa /etc/wscons.conf . @ 1.32.2.4 log @Pull up revision 1.43 (requested by mrg): Sshd is now integrated on NetBSD, so don't say otherwise. @ text @d1 1 a1 1 .\" $NetBSD: rc.conf.5,v 1.32.2.3 2000/08/09 19:15:32 lukem Exp $ d524 6 @ 1.32.2.5 log @Pull up revision 1.44 (requested by wiz): Correct dhclient(8) and postfix(1) references. @ text @d1 1 a1 1 .\" $NetBSD: rc.conf.5,v 1.32.2.4 2001/02/26 22:40:35 he Exp $ d121 1 a121 1 .Xr dhclient 8 d503 1 a503 1 .Xr postfix 1 @ 1.32.2.6 log @Pull up revision 1.42 (requested by itojun): Add support for "!" and "#" syntax in /etc/ifconfig.*. @ text @d1 1 a1 1 .\" $NetBSD: rc.conf.5,v 1.32.2.5 2001/04/26 09:34:43 he Exp $ d258 1 a258 1 For each interface "xxN", the system first looks for ifconfig d260 1 a260 1 .Pa /etc/ifconfig.xxN d262 1 a262 1 .Sy ifconfig_xxN . a268 4 Refer to .Xr ifconfig.if 5 for more details on .Pa /etc/ifconfig.xxN . a886 1 .Xr ifconfig.if 5 , @ 1.32.2.7 log @Pull up revision 1.52 (requested by martti): Added ipfs to save state tables. Use -D for ipmon. @ text @d1 1 a1 1 .\" $NetBSD: rc.conf.5,v 1.32.2.6 2001/05/02 22:51:58 he Exp $ a223 13 .It Sy ipfs .Sq YES or .Sq NO . Runs .Xr ipfs 8 to save and restore information for ipnat and ipfilter state tables. The information is stored in .Pa /var/db/ipf/ipstate.ipf and .Pa /var/db/ipf/ipnat.ipf . Passes .Sy ipfs_flags . @ 1.31 log @add ip6defaultif configuration variable in rc.conf, for configuring default outgoing interface for IPv6 host when default router list is empty. the configuration is just for very rare case. it is safe to leave it empty. @ text @d1 1 a1 1 .\" $NetBSD: rc.conf.5,v 1.30 2000/02/11 03:14:02 itojun Exp $ d196 7 @ 1.31.2.1 log @Sync w/ netbsd-1-5-base. @ text @d1 1 a1 1 .\" $NetBSD: rc.conf.5,v 1.32 2000/06/13 16:33:18 itojun Exp $ a195 7 .It Sy ipsec YES or NO. Runs .Xr setkey 8 to load in IPsec manual keys and policies from .Pa /etc/ipsec.conf at network boot time, before any interfaces are configured. @ 1.30 log @recommend ifconfig_ifN over ifaliases_ifN, for non-IPv4 cases as well. ifaliases_ifN does not cover p2p case. @ text @d1 1 a1 1 .\" $NetBSD: rc.conf.5,v 1.29 2000/02/05 17:02:44 itojun Exp $ d321 16 @ 1.29 log @change IPv6 configuration syntax to avoid ambiguity. ip6mode=host: IPv6 host ip6mode=autohost: IPv6 host, with autoconfig ip6mode=router: IPv6 router backward compatibility to "ip6forwading" is provided. @ text @d1 1 a1 1 .\" $NetBSD: rc.conf.5,v 1.28 1999/11/29 01:40:34 itojun Exp $ d234 1 a234 1 covers IPv4 case only and considered unrecommended. @ 1.28 log @recommend use of multi-line /etc/ifconfig.xxN than /etc/ifaliases, or $ifaliases_xxN in /etc/rc.conf. (no behavior change in /etc/netstart, comments only) see recent tech-userlevel for discussions. @ text @d1 1 a1 1 .\" $NetBSD: rc.conf.5,v 1.27 1999/11/23 08:12:22 lukem Exp $ d297 1 a297 2 .It Sy ip6forwarding YES or NO. d302 2 d305 16 a320 3 .Sy ip6forwarding to YES, the node will become an IPv6 router. Note that this is orthogonal to IPv4 forwarding/routing. a325 2 By setting this option to YES, your host will be autoconfigured based on the information advertised by adjacent IPv6 router. d331 3 a333 4 This is only for IPv6 host, so set .Sy ip6forwarding to NO if you use .Sy rtsol . d479 3 a481 3 This is only for IPv6 host, so set .Sy ip6forwarding to NO if you use it. @ 1.27 log @- document $accounting, $dmesg (and $dmesg_flags) - cull copyright. @ text @d1 1 a1 1 .\" $NetBSD: rc.conf.5,v 1.26 1999/09/28 14:52:33 bouyer Exp $ d232 6 @ 1.26 log @Document CTL_PROC, the core filename format it core(5), and xref sysctl(8), sysctl(3), core(5) in various place. Document 'options DEFCORENAME' inj options(4) and $defcorename in rc.conf(5). @ text @d1 1 a1 32 .\" $NetBSD: rc.conf.5,v 1.25 1999/09/03 14:36:43 itojun Exp $ .\" .\" Copyright (c) 1998, 1999 The NetBSD Foundation, Inc. .\" All rights reserved. .\" .\" This code is derived from software contributed to The NetBSD Foundation .\" by Luke Mewburn. .\" .\" Redistribution and use in source and binary forms, with or without .\" modification, are permitted provided that the following conditions .\" are met: .\" 1. Redistributions of source code must retain the above copyright .\" notice, this list of conditions and the following disclaimer. .\" 2. Redistributions in binary form must reproduce the above copyright .\" notice, this list of conditions and the following disclaimer in the .\" documentation and/or other materials provided with the distribution. .\" 3. All advertising materials mentioning features or use of this software .\" must display the following acknowledgement: .\" This product includes software developed by Luke Mewburn. .\" 4. The name of the author may not be used to endorse or promote products .\" derived from this software without specific prior written permission. .\" .\" THIS SOFTWARE IS PROVIDED BY THE AUTHOR ``AS IS'' AND ANY EXPRESS OR .\" IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES .\" OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED. .\" IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR ANY DIRECT, INDIRECT, .\" INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, .\" BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS .\" OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND .\" ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR .\" TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE .\" USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE. d6 1 d9 3 d35 1 a35 1 .Dd February 15, 1999 d146 15 @ 1.25 log @document rtsold. improve rtsol section. @ text @d1 1 a1 1 .\" $NetBSD: rc.conf.5,v 1.24 1999/07/03 03:29:30 itojun Exp $ d173 11 @ 1.25.2.1 log @Pull up to last week's -current. @ text @d1 32 a32 1 .\" $NetBSD: rc.conf.5,v 1.28 1999/11/29 01:40:34 itojun Exp $ a36 1 .\" Copyright (c) 1998, 1999 The NetBSD Foundation, Inc. a38 3 .\" This document is derived from works contributed to The NetBSD Foundation .\" by Luke Mewburn. .\" d62 1 a62 1 .Dd November 23, 1999 a172 26 .It Sy dmesg YES or NO. Create .Pa /var/run/dmesg.boot from the output of .Xr dmesg 8 . Passes .Sy dmesg_flags . .It Sy accounting YES or NO. Enables process accounting with .Xr accton 8 . Requires .Pa /var/account/acct to exist. .It Sy defcorename A string. This sets the default core name template, from which are derived core dump files names. The template can include format charaters which are dynamically interpreted. See .Xr core 5 for details of the format. If set to nothing, the default compiled-in value is keept (see .Xr options 4 , .Xr sysctl 3 ). a232 6 .Pp .Sy ifaliases_* covers IPv4 case only and considered unrecommended. We recommend using .Pa /etc/ifconfig.xxN with multiple lines instead. @ 1.24 log @add IPv6 configuration (ip6forwarding, rtsol, route6d and rtadvd). Right now netsetart does not bother you even if you do not have "options INET6" in the kernel. @ text @d1 1 a1 1 .\" $NetBSD: rc.conf.5,v 1.23 1999/03/24 17:29:07 mellon Exp $ d309 3 d449 17 d532 3 a534 3 Should only be used on IPv6 router. If you use this make sure to check .Sy ip6forwarding . @ 1.23 log @Document new variables required to automate DHCP client startup. @ text @d1 1 a1 1 .\" $NetBSD: rc.conf.5,v 1.22 1999/03/18 20:30:22 is Exp $ d292 23 d439 7 d504 11 @ 1.22 log @domestic'' is a relative specification @ text @d1 1 a1 1 .\" $NetBSD: rc.conf.5,v 1.21 1999/03/17 20:19:47 garbled Exp $ d127 1 a127 1 .Bl -tag -width critical_filesystems d134 9 d238 30 @ 1.21 log @More and more .Os cleanups. .Os is defined in the tmac.doc-common file, so we shouldn't override it with versions in the manpages. Many more to come. @ text @d1 1 a1 1 .\" $NetBSD: rc.conf.5,v 1.20 1999/02/15 12:42:12 lukem Exp $ d586 1 a586 1 The kerberos server is only available with the domestic distribution of @ 1.20 log @use .Ss to separate subsections, add TNF copyright for bits i've added @ text @d1 1 a1 1 .\" $NetBSD: rc.conf.5,v 1.19 1999/01/31 08:46:58 mrg Exp $ d64 1 a64 1 .Os NetBSD 1.3 @ 1.19 log @increase the securelevel (using the same rules as before) much earlier in the boot process. before cron, sendmail, inetd, etc, are run, but after lkms are loaded. this avoids the chances of `@@reboot', mail .forwards, remote logins, etc., happening before the securelevel has been raised. @ text @d1 32 a32 1 .\" $NetBSD: rc.conf.5,v 1.18 1999/01/16 14:16:43 lukem Exp $ d62 1 a62 1 .Dd January 16, 1999 d106 1 a106 1 Basic network configuration: d126 1 a126 1 Boottime file-system and swap configuration: d142 1 a142 1 One-time actions to perform or programs to run on boot-up: d166 1 a166 1 System security setting: d177 1 a177 1 Networking startup: d255 1 a255 1 Daemons required by other daemons: d285 1 a285 1 Commonly used daemons: d345 1 a345 1 Routing daemons: d379 1 a379 1 Daemons used to boot other hosts over a network: d437 1 a437 2 .Tn NIS (YP) daemons: d476 1 a476 1 NFS daemons and parameters: d544 1 a544 1 X Window System daemons: d560 1 a560 1 Other daemons: @ 1.18 log @reference nsswitch.conf(5) as necessary change references from YP to NIS. @ text @d1 1 a1 1 .\" $NetBSD: rc.conf.5,v 1.17 1998/04/29 11:33:58 fair Exp $ d133 11 @ 1.17 log @fix bad .Xr references @ text @d1 1 a1 1 .\" $NetBSD: rc.conf.5,v 1.16 1998/04/07 04:47:53 mrg Exp $ d31 1 a31 1 .Dd March 22, 1997 d83 2 a84 1 YP (NIS) domain of host. d234 2 a235 1 These include NFS, YP, d395 2 a396 1 YP (NIS) daemons: d402 5 a406 1 which lets YP (NIS) clients use information from a YP server. d413 3 a415 1 the YP (NIS) server for distributing information from certain files in d428 3 a430 1 which allows remote YP users to update password on master server. @ 1.16 log @document "screenblank." @ text @d1 1 a1 1 .\" $NetBSD: rc.conf.5,v 1.15 1997/11/23 04:18:14 mrg Exp $ d60 2 a61 1 variables. Enabling variables, such as d64 2 a65 1 and are set to "YES" or "NO". Flags variables, such as d105 3 a107 3 variable to YES if you have configured your system with no swap on purpose. If not set, or set to anything other than YES, and no swap devices are configured, the system will warn you. d113 2 a114 1 YES or NO. Runs d117 2 a118 1 YES or NO. Runs the d120 2 a121 1 utility. Passes d124 2 a125 1 YES or NO. Updates the d129 2 a130 1 file to reflect the version of the running kernel. See d137 2 a138 1 YES or NO. Runs d142 2 a143 1 at network boot time, before any interfaces are configured. See d146 2 a147 1 YES or NO. Sets the d163 2 a164 1 after the interface name. If d182 4 a185 3 YES or NO. Flushes the route table on networking startup. Useful when coming up to multiuser mode after going down to single-user mode. d187 2 a188 1 YES or NO. Runs d211 1 a211 1 .Pp d215 2 a216 1 YES or NO. Runs the d220 2 a221 1 as necessary. Passes d227 2 a228 1 YES or NO. The d232 2 a233 1 services. These include NFS, YP, d244 2 a245 1 YES or NO. Runs d250 2 a251 1 YES or NO. Runs d256 2 a257 1 YES or NO. Runs d262 2 a263 1 YES or NO. Runs d271 2 a272 1 to be a master time source as well as a slave. If you are also running d279 2 a280 1 YES or NO. Runs d285 2 a286 1 YES or NO. Runs d291 2 a292 1 YES or NO. Runs d304 2 a305 1 YES or NO. Runs d307 2 a308 1 the RIP routing protocol daemon. Passes d314 2 a315 1 YES or NO. Runs d317 2 a318 1 the multiprotocol routing daemon. Passes d323 1 a323 1 .Xr Gated 8 d327 2 a328 1 YES or NO. Runs d330 2 a331 1 the DVMRP multicast routing protocol daemon. Passes d338 2 a339 1 YES or NO. Runs d343 2 a344 1 and Sun workstations. Passes d347 2 a348 1 YES or NO. Runs d352 2 a353 1 as options. Used to boot d355 3 a357 1 and SunOS 4.x systems. d359 2 a360 1 YES or NO. Runs d362 3 a364 2 the Dynamic Host Configuration Protocol daemon, for assigning IP addresses to hosts and passing boot information. Passes d367 2 a368 1 YES or NO. Runs d370 6 a375 1 the HP boot protocol daemon; used for booting HP workstations. Passes d378 2 a379 1 YES or NO. Runs d381 8 a388 1 the DEC MOP protocol daemon; used for booting VAX and other DEC machines. d396 2 a397 1 YES or NO. Runs d399 2 a400 1 which lets YP (NIS) clients use information from a YP server. Passes d403 2 a404 1 YES or NO. Runs d416 2 a417 1 YES or NO. Runs d419 2 a420 1 which allows remote YP users to update password on master server. Passes d427 2 a428 1 YES or NO. Runs d430 2 a431 1 to increase performance of an NFS client host. Passes d434 2 a435 1 YES or NO. Sets up a host to be a NFS server by running d438 2 a439 1 .Xr nfsd 8 , and passing d445 2 a446 1 YES or NO. Runs d452 2 a453 1 is (or both are) set to YES. Passes d456 2 a457 1 YES or NO. Runs d460 1 a460 1 .Xr lockd 8 d465 2 a466 1 is (or both are) set to YES. Passes a467 1 d469 2 a470 1 YES or NO. Runs d473 2 a474 1 whenever a file or directory within that filesystem is accessed. Passes d478 3 a480 2 .Xr amd 8 mount directory. Used only if d485 1 a485 1 .Xr amd 8 d495 2 a496 1 YES or NO. Runs the d500 2 a501 1 YES or NO. Runs the a503 1 d511 2 a512 1 YES or NO. Runs d517 2 a518 1 YES or NO. Runs d522 3 a524 1 command. d526 2 a527 1 YES or NO. Runs the kerberos server d529 1 a529 1 and the kerberos admininstration server, d537 3 a539 2 YES or NO. Runs .Xr screenblank 8 @ 1.15 log @document critical_filesystems and no_swap @ text @d1 1 a1 1 .\" $NetBSD: rc.conf.5,v 1.14 1997/11/17 17:45:34 mrg Exp $ d462 5 @ 1.14 log @document ppp_peers @ text @d1 1 a1 1 .\" $NetBSD: rc.conf.5,v 1.13 1997/11/11 02:29:01 jonathan Exp $ d90 16 @ 1.13 log @Add options to rc.conf and rc to start xfs (x font server) and xdm. Add entries to rc.conf.5. While we're here, note that the domestic kerberos damons are still Kerberos IV, not kerberos version 5. @ text @d1 1 a1 1 .\" $NetBSD: rc.conf.5,v 1.12 1997/10/10 05:40:07 mrg Exp $ d167 14 @ 1.12 log @remove advertising clause from all my licenses. @ text @d1 1 a1 1 .\" $NetBSD: rc.conf.5,v 1.11 1997/09/02 03:03:49 mikel Exp $ d394 15 d423 1 a423 1 YES or NO. Runs the kerberos server d425 1 a425 1 and the kerberos admininstration server, d428 2 @ 1.12.2.1 log @Pull rev 1.13 up from trunk (jonathan) @ text @d1 1 a1 1 .\" $NetBSD: rc.conf.5,v 1.13 1997/11/11 02:29:01 jonathan Exp $ a393 15 X Window System daemons: .Bl -tag -width net_interfaces .It Sy xfs YES or NO. Runs the .Xr xfs 1 X11 font server, which supplies local X font files to X terminals. .It Sy xdm YES or NO. Runs the .Xr xdm 1 X display manager. These X daemons are available only with the optional X distribution of .Nx . .El .Pp d408 1 a408 1 YES or NO. Runs the kerberos server d410 1 a410 1 and the kerberos admininstration server, a412 2 Both servers implement version IV of the Kerberos protocol, not the newer Kerberos version 5. @ 1.12.2.2 log @Pull rev 1.14 up from trunk (mrg) @ text @d1 1 a1 1 .\" $NetBSD: rc.conf.5,v 1.12.2.1 1997/11/13 00:06:14 mellon Exp $ a166 14 .It Sy ppp_peers If .Sy ppp_peers is not empty, then .Pa /etc/netstart will check each word in .Sy ppp_peers for a coresponding ppp configuration file in .Pa /etc/ppp/peers and will call .Xr pppd 8 with the .Dq call Sy peer option. @ 1.12.2.3 log @Pull rev 1.15 up from trunk (mrg) @ text @d1 1 a1 1 .\" $NetBSD: rc.conf.5,v 1.12.2.2 1997/11/18 01:43:08 mellon Exp $ a89 16 .El .Pp Boottime file-system and swap configuration: .Bl -tag -width critical_filesystems .It Sy critical_filesystems File systems mounted very early in the system boot, except for the .Pa /usr and .Pa /var file-systems. .It Sy no_swap Set the .Sy no_swap variable to YES if you have configured your system with no swap on purpose. If not set, or set to anything other than YES, and no swap devices are configured, the system will warn you. @ 1.11 log @make some changes, from Enami Tsugutomo in PR misc/4066. I also made some changes of my own. @ text @d1 1 a1 1 .\" $NetBSD: rc.conf.5,v 1.10 1997/08/29 02:27:31 cjs Exp $ d16 1 a16 5 .\" 3. All advertising materials mentioning features or use of this software .\" must display the following acknowledgement: .\" This product includes software developed by Matthew R. Green for .\" the NetBSD Project. .\" 4. The name of the author may not be used to endorse or promote products @ 1.10 log @Split rc.conf variables for starting programs into two: an on/off switch and a set of flags. Get rid of DEFAULT flags entirely. Print warnings if on/off switches are not set, or are set incorrectly. Add a shell function to simplify this on/off switch testing. @ text @d1 1 a1 1 .\" $NetBSD: rc.conf.5,v 1.9 1997/05/12 11:28:19 lukem Exp $ d53 1 a53 2 if it exists, meaning that d59 1 a59 1 variables that may be set, the values that each may be set to, d78 1 a78 1 .Bl -tag -width bootparamd_flags d96 2 a97 2 One time actions to perform or programs to run on boot-up: .Bl -tag -width bootparamd_flags d99 2 a100 1 YES or NO. Runs /etc/rc.lkm. d104 1 a104 1 program. Passes d116 1 a116 1 .Bl -tag -width bootparamd_flags d120 1 a120 1 to load in a packet filter specifications from d130 1 a130 1 .Sy -l d139 1 a139 1 .Sy ifconfig_xnn . d174 1 a174 1 .Bl -tag -width bootparamd_flags d178 1 a178 1 daemon to start other internet programs (as listed in d199 1 a199 1 .Bl -tag -width bootparamd_flags d237 2 a238 2 .Xr sendmail 8 . and passes it d251 1 a251 1 .Bl -tag -width bootparamd_flags d268 1 a268 1 .Xr gated 8 d279 1 a279 1 .Bl -tag -width bootparamd_flags d291 1 a291 1 .Sy bootpramd_flags d315 1 a315 1 .Bl -tag -width bootparamd_flags d341 1 a341 1 .Bl -tag -width bootparamd_flags d399 6 a404 1 .Bl -tag -width bootparamd_flags d407 1 a407 1 .Xr rwhod 8 . d409 1 a409 1 .Xr rwho 8 @ 1.9 log @document $hostname, $domainname, $defaultroute and $ifaliases_XXX @ text @d1 1 a1 1 .\" $NetBSD: rc.conf.5,v 1.8 1997/05/12 05:21:51 mikel Exp $ d62 15 a76 9 relevant manual pages. Most variables have three values: a list of parameters to pass on the command line, "DEFAULT" for a reasonable default set of parameters, or "NO" if the daemon is not to be run at all. Some programs don't take a set of flags, and may only be set to "YES" or "NO". A few are always run, and will not take "NO." The arguments passed if "DEFAULT" is chosen are listed in .Nm itself. d86 1 a86 1 YP domain of host. d97 1 a97 1 Actions to perform on boot-up: d99 7 d115 1 a115 1 Programs run on boot-up: a116 14 .It Sy savecore_flags Parameters, DEFAULT or NO. Saves a copy of the kernel and crash dump when the system comes up after a crash. The .Ar -z parameter will compress the kernel and crash dump. See .Xr savecore 8 . .It Sy lkm_init YES or NO. Loads .Xr lkm 4 modules based on information in .Pa /etc/lkm.conf . See .Xr lkm.conf 5 . d118 1 a118 1 YES or NO. Runs d120 1 a120 1 to load in packet filter specifications from d124 4 a127 16 .It Sy ntpdate_hosts Parameters, DEFAULT or NO. List of time servers for .Xr ntpdate 8 . If DEFAULT, the list of servers is loaded from .Pa /etc/ntp.conf . .El .Pp Interface boot-up configuration: .Bl -tag -width bootparamd_flags .It Sy net_interfaces Parameters, DEFAULT, or NO. Lists a set of interfaces to be configured with .Xr ifconfig 8 at boot time. If DEFAULT, the interfaces are found by running d130 15 a144 23 .Fl l flag. Usually, the parameters for the subsequent .Xr ifconfig 8 commands are found in files named .Pa /etc/ifconfig.* , where .Dq * is the name of each interface (e.g. .Pa /etc/ifconfig.le0 ) . Alternatively, the parameters may be taken from an .Sy ifconfig_* variable (see below). In either case, the parameters have the interface name prepended to them and are then handed to .Xr ifconfig 8 . .It Sy ifconfig_* Parameters only. Supplies a set of parameters for configuring the given interface .Dq * (e.g. .Sy ifconfig_le0 ) . See .Sy net_interfaces above. d158 13 d172 2 a173 2 .Pp Daemons required for other daemons: d175 4 a178 3 .It Sy inetd_flags Parameters, DEFAULT or NO. Starts other internet programs (as listed in d180 3 a182 1 as necessary. The d184 1 a184 2 option turns on libwrap connection logging. See .Xr inetd 8 . d200 2 a201 2 .It Sy update_flags Parameters or DEFAULT. The d203 24 a226 8 daemon flushes cached disk pages that are dirty to disk at regular intervals. .It Sy syslogd_flags Parameters, DEFAULT or NO. Syslog daemon; logs messages to logfiles. See .Xr syslogd 8 . .It Sy timed_flags Parameters, DEFAULT or NO. Local area network time synchronisation daemon. The d228 1 a228 1 parameter allows this host to be a master, as well as a slave. See d230 7 a236 11 .It Sy xntpd_flags Parameters, DEFAULT or NO. Local and wide area network time synchronisation daemon. If this is used, .Sy timed_flags should be set to .Dq Ar -M -F localhost on one xntp-using host on the network, and to "NO" on any other xntp-using host. .It Sy sendmail_flags Parameters, DEFAULT or NO. Sendmail SMTP mail transport agent. See d238 7 a244 7 .It Sy named_flags Parameters, DEFAULT or NO. BIND domain name resolver and server. See .Xr named 8 . .It Sy lpd_flags Parameters, DEFAULT or NO. Line printer daemon; allows other hosts to print to the local host's printer. d247 1 a247 2 option turns on extra logging. See .Xr lpd 8 . d252 13 a264 9 .It Sy routed_flags Parameters, DEFAULT or NO. RIP routing protocol daemon. This should be NO if .Sy gated_flags is anything but NO. See .Xr routed 8 . .It Sy gated_flags Parameters, DEFAULT or NO. Routing daemon for many IP routing protocols. d266 2 a267 2 .Sy routed_flags is anything but NO. d271 5 a275 4 .It Sy mrouted_flags Parameters, DEFAULT or NO. DVMRP multicast routing protocol daemon. See .Xr mrouted 8 . d280 4 a283 3 .It Sy rarpd_flags Parameters, DEFAULT or NO. Reverse ARP daemon; used to boot d285 8 a292 5 and Sun workstations. See .Xr rarpd 8 . .It Sy bootparamd_flags Parameters, DEFAULT or NO. Boot parameter server; used for booting d294 18 a311 15 and SunOS 4.x systems. See .Xr bootparamd 8 . .It Sy dhcpd_flags Parameters, DEFAULT or NO. Dynamic Host Configuration Protocol daemon, for assigning IP addresses to hosts and passing boot information. See .Xr dhcpd 8 . .It Sy rbootd_flags Parameters, DEFAULT or NO. HP boot protocol daemon; used for booting HP workstations. See .Xr rbootd 8 . .It Sy mopd_flags Parameters, DEFAULT or NO. DEC MOP protocol daemon; used for booting VAX and other DEC machines. See .Xr mopd 8 . d316 9 a324 7 .It Sy ypbind_flags Parameters, DEFAULT or NO. Run on YP (NIS) clients to use information from a YP server. See .Xr ypbind 8 . .It Sy ypserv_flags Parameters, DEFAULT or NO. YP (NIS) server for distributing information from certain files in d326 12 a337 6 See .Xr ypserv 8 . .It Sy yppasswdd_flags Parameters, DEFAULT or NO. Allows remote YP users to update password on master server. See .Xr yppasswdd 8 . d340 1 a340 1 Network file system daemons: d345 2 a346 7 to increase performance of an NFS client host. .It Sy nfsiod_flags Parameters or DEFAULT. Flags passed to .Xr nfsiod 8 if .Sy nfs_client is set to YES. d351 9 a359 5 .Xr nfsd 8 . .It Sy mountd_flags Parameters or DEFAULT. These are passed to .Xr mountd 8 if d361 1 a361 11 is set to YES. .It Sy nfsd_flags Parameters or DEFAULT. These are passed to .Xr nfsd 8 if .Sy nfs_server is set to YES. .It Sy lockd_flags Parameters, DEFAULT or NO. Provides locking for NFS. Ignored if .Sy nfs_server and d363 8 a370 4 are both set to NO. See .Xr rpc.lockd 8 . .It Sy statd_flags Parameters, DEFAULT or NO. Ignored if d372 1 a372 1 and d374 5 a378 7 are both set to NO. Status monitoring daemon used when .Xr rpc.lockd 8 is running. See .Xr rpc.statd 8 . .It Sy amd_flags Parameters, DEFAULT or NO. The automounter daemon, d380 3 a382 2 automatically mounts NFS file systems whenever a file or directory within that filesystem is accessed. d387 2 a388 2 .Sy amd_flags is not set to NO. d394 2 a395 2 .Sy amd_flags is not set to NO. d401 3 a403 1 YES or NO. Daemon to support d405 2 a406 3 command. See .Xr rwhod 8 . .It Sy kerberos_server @ 1.8 log @update to match reality. changes include: - add missing update_motd and ntpdate_hosts variables - fix incorrect variable names (syslogd_flags and kerberos_server) - xntpd(8) has been integrated - kerberos_server is no longer used by rc.local - add some xrefs plus some misc. cleanup. @ text @d1 1 a1 1 .\" $NetBSD: rc.conf.5,v 1.7 1997/04/02 02:02:51 cjs Exp $ d72 19 d166 13 @ 1.7 log @Move network interface config after programs run on boot-up, to match the order this actually happens in at boot time. Fix a few minor typos. @ text @d1 1 a1 1 .\" $NetBSD: rc.conf.5,v 1.6 1997/04/01 20:17:43 perry Exp $ d5 1 d56 1 a56 1 must be valid shell commands. d59 1 a59 1 .Sy daemon_flags d61 2 a62 3 a brief description of what each daemon does, and a reference to each daemon's manual page. Most .Sy daemon_flags d72 11 d106 6 d124 1 a124 1 .Ar -l d134 1 a134 1 .Em ifconfig_* d143 1 a143 1 .Em ifconfig_le0 ) . d145 1 a145 1 .Em net_interfaces , d162 3 a164 1 daemon is required for any Sun RPC based services. These include NFS, YP, d171 1 d178 1 a178 1 .It Sy syslog_flags d193 1 a193 1 .Ar -M -F localhost a195 3 .Xr xntpd 8 is not included with .Nx . d212 1 d235 1 d240 3 a242 1 Reverse ARP daemon; used to boot NetBSD and Sun workstations. See d246 3 a248 1 Boot parameter server; used for booting NetBSD and SunOS 4.x systems. See d264 1 d282 1 d348 1 d356 1 a356 1 .It Sy kerberos d368 2 a369 9 .Xr boot 8 .Sh BUGS The .Sy kerberos_server variable is actually used by the default .Pa /etc/rc.local script, not the .Pa /etc/rc script. @ 1.6 log @document net_interfaces, ifconfig_* @ text @d1 1 a1 1 .\" $NetBSD: rc.conf.5,v 1.5 1997/03/23 07:57:22 cjs Exp $ d72 25 d115 2 a116 2 .Pa /etc/ifconfig_le0 ) . However, parameters may alternatively be found in an d118 3 a120 1 variable (see below). d131 1 a131 24 Programs run on boot-up: .Bl -tag -width bootparamd_flags .It Sy savecore_flags Parameters, DEFAULT or NO. Saves a copy of the kernel and crash dump when the system comes up after a crash. The .Ar -z parameter will compress the kernel and crash dump. See .Xr savecore 8 . .It Sy lkm_init YES or NO. Loads .Xr lkm 4 modules based on information in .Pa /etc/lkm.conf . See .Xr lkm.conf 5 . .It Sy ipfilter YES or NO. Runs .Xr ipf 8 to load in packet filter specifications from .Pa /etc/ipf.conf at network boot time, before any interfaces are configured. See .Xr ipf 5 . .El @ 1.5 log @Re-write. @ text @d1 1 a1 1 .\" $NetBSD: rc.conf.5,v 1.4 1997/03/17 01:22:49 cjs Exp $ d72 32 @ 1.4 log @Rewrote second paragraph, and added mopd in a new format. All the other entries will be converted soon after feedback is received. @ text @d1 1 a1 1 .\" $NetBSD: rc.conf.5,v 1.3 1997/03/10 07:06:17 scottr Exp $ d4 1 d34 1 a34 1 .Dd December 30, 1996 d37 2 d66 2 a67 1 take a set of flags, and may only be set to "YES" or "NO". d72 1 d74 48 d123 2 a124 1 Typically set to "" if system logging is to be performed by d126 35 d162 14 a175 3 Typically set to "-q" if .Xr routed 8 is used, or "NO". d177 6 a182 3 Typically set to "" if .Xr mrouted 8 is used, or "NO". d184 3 a186 3 Typically set to "-a" if .Xr rarpd 8 is used, or "NO". d188 8 a195 3 Typically set to "" if .Xr bootparamd 8 is used, or "NO". d197 3 a199 3 Typically set to "" if .Xr rbootd 8 is used, or "NO". d202 1 a202 2 DEC MOP protocol daemon; used for booting VAX and other DEC machines. See d204 7 a210 24 .It Sy sendmail_flags Typically set to "-bd -q30" if .Xr sendmail 8 is used, or "NO". .It Sy named_flags Typically set to "" if .Xr named 8 is used, or "NO". .It Sy dhcpd_flags Typically set to "" if .Xr dhcpd 8 is used, or "NO". .It Sy timed_flags Typically set to "" if .Xr timed 8 is used, or "NO". .It Sy inetd_flags Typically set to "" or "-l" (for extra logging), if .Xr inetd 8 is used, or "NO". .It Sy lpd_flags Typically set to "" or "-l" (for extra logging), if the printer daemon, .Xr lpd 8 , is used, or "NO". d212 5 a216 3 Typically set to "-d" if your system is to be a YP server, .Xr ypserv 8 is used, or "NO". d218 3 a220 17 Typically set to "" if your system is to be a YP password server, .Xr yppasswdd 8 is used, or "NO". .It Sy ypbind_flags Typically set to "" if your system is to be a YP client, .Xr ypbind 8 is used, or "NO". .It Sy savecore_flags Typically set to "" if your system is to check for kernel crash dumps with .Xr savecore 8 , or "NO". .It Sy gated_flags Typically set to "" if .Xr gated 8 is used, or "NO". Note that gated is not supplied with .Nx . d222 1 a222 1 .Pp d224 10 a233 17 The following variables turn services on or off: .It Sy ipfilter Set to YES if ip-filter will be run. Typically reads .Pa /etc/ipf.conf at network boot time, before any interfaces are, configured. .It Sy lkm_init Set to YES if .Xr lkm 4 modules are to be loaded, from the file .Pa /etc/lkm.conf , whose configuration is described in .Xr lkm.conf 5 . .It Sy rwhod Set to "YES" if .Xr rwhod 8 is to be run. d235 2 a236 2 Set to "YES" if the nfs server, .Xr nfsd 8 , d238 3 a241 7 are to be run. Additional variables available .Sy nfs_server enabled: .Bl -tag -width mountd_flags .It Sy mountd_flags These are flags passed to .Xr 8 mountd , d244 1 a244 1 is configured. d246 2 a247 2 These are flags passed to .Xr 8 nfsd , d250 5 a254 6 is configured. They default to ``-tun 4''. .El .It Sy nfs_client Set to "YES" if the nfs client, .Xr nfsiod 8 , is to be run. Additional variables available d256 2 a257 9 enabled: .Bl -tag -width nfsiod_flags .It Sy nfsiod_flags These are flags passed to .Xr nfsiod 8 if .Sy nfs_client is configured. They default to ``-n 4'' .El d259 1 a259 4 Typically set to "" if your system is to run the status monitoring daemon, .Xr rpc.statd 8 , or "NO"; ignored if neither d261 1 a261 1 nor d263 7 a269 26 are set to "YES". .It Sy lockd_flags Typically set to "" if your system is to run the NFS locking daemon, .Xr rpc.lockd 8 , or "NO"; ignored if neither .Sy nfs_server nor .Sy nfs_client are set to "YES". .It Sy kerberos Set to "YES" if the kerberos server, .Xr kerberos 8 , and the kerberos admininstration server, .Xr kadmind 8 , are to be run. This should only be run on the kerberos master server. Note that the kerberos server is only available with the domestic distribution of .Nx . .It Sy portmap Set to "NO" if the port mapper, .Xr portmap 8 , is not run. .It Sy amd Set to "YES" if automounter, d271 2 a272 8 is to be run. Additional variables available with .Sy amd enabled: .Bl -tag -width amd_master .It Sy amd_flags The flags used for logging, etc, for .Xr amd 8 . Typically "-l syslog -x error,noinfo,nostats". d276 3 a278 1 mount directory. Typically /amd. d283 3 d287 15 a302 17 .Pp The .Sy portmap keyword must be "YES" if any of the .Sy ypserv_flags , .Sy yppasswdd_flags , .Sy ypbind_flags , .Sy bootparamd_flags , .Sy nfs_server , .Sy nfs_client keywords are not "NO", as they all depend on the portmapper. .Pp Only one of the .Sy routed_flags or .Sy gated_flags keywords should be set. @ 1.3 log @Document statd_flags and lockd_flags @ text @d1 1 a1 1 .\" $NetBSD: rc.conf.5,v 1.2 1997/01/07 05:37:36 tls Exp $ d54 13 a66 3 Unless specified otherwise below, the variables of the from daemon_flags are set to the flags to be passed to the program, or "NO" if the program is not to be executed. a67 1 The following variables are used: d92 5 @ 1.2 log @change rc.conf.5 to reflect change to Kerberos stuff in rc.local, as per mrg @ text @d1 1 a1 1 .\" $NetBSD: rc.conf.5,v 1.1 1997/01/05 11:50:17 mrg Exp $ d185 18 @ 1.1 log @add man pages for mostly new and some old configuration files. @ text @d1 1 a1 1 .\" $NetBSD$ d187 4 a190 2 .Xr kerberos 8 , is to be run. This d192 1 a192 1 the kerkeros server is only available with the domestic distribution @