Commit Graph

14 Commits

Author SHA1 Message Date
jmmv
53cb2117e8 Deprecate the pkgdb_dir settings from daily.conf and security.conf in
favor of the PKG_DBDIR variable in /etc/pkg_install.conf.  The purpose
of this is to only have to define the location of the packages database
in a single place and have all other system components pick it up.

pkgdb_dir is still honored if defined and the scripts will spit out a
warning in that case, asking the administrator to migrate to the
PKG_DBDIR setting.  We can't remove this compatibility workaround until,
at least, after NetBSD 6 is released.
2010-02-05 16:29:02 +00:00
jmmv
8026500970 Default fetch_pkg_vulnerabilities to NO and complain if it is set to that
value when packages are found (so that the user knows he is not getting the
vulnerability checks).

Why?  People is complaining.  (And somehow, the argument that NetBSD doesn't
do any network operation by default convinces me that it should continue to
do so.)

But still, I will be adding a question to sysinst to enable/disable this.
2010-01-20 22:19:20 +00:00
jmmv
497b5f8044 Add the fetch_pkg_vulnerabilities option to the daily script to keep the
packages vulnerability database up to date.  This will only fetch the
file from the server if it has changed since the last run.

Add the check_pkg_vulnerabilities and check_pkg_signatures options to the
security script to check that the installed packages are sane.

All of these options are enabled by default but they will only run if
there is, at least, one installed package.
2010-01-19 22:08:11 +00:00
bouyer
db3a18456b Add a run_fsck_flags variable to daily.conf(5), allowing extra flags to
be passed to to daily fsck run.
For example, run_fsck_flags="-Tffs:-X" will run the nighly fsck_ffs on a
snapshot :)
2008-08-30 10:53:22 +00:00
xtraeme
6efe384afc Remove references to check_uucp in daily.conf(5) and the defaults
file... uucp was removed a while ago.
2008-01-27 05:20:24 +00:00
rpaulo
aafff09728 Add ptyfs to the file-system types ignored by the find_core check.
Ok'ed by Christos Zoulas and Hubert Feyrer.
2005-06-30 18:23:26 +00:00
jwise
5b40cd9b6b With the recent fixes to cpp(1) and calendar(1), it is now safe to turn
on run_calendar by default.  Include a note advising users who replace
/usr/bin/cpp with a non-basesrc version to turn this off.
2004-11-30 02:03:57 +00:00
erh
7da8bb106d PR misc/7716: add configuration options find_core_ignore_fstypes and
check_devices_ignore_fstypes to allow the filesystem types that are
ignored during the daily and security runs to be adjusted.
2004-09-28 15:03:58 +00:00
perry
08f64583cc add show_remote_fs
Triggers showing nfs mounted file systems in the nightly report.
2003-12-08 01:14:08 +00:00
perry
f9f0805e4c add full_netstat=NO 2003-12-07 22:17:54 +00:00
christos
f32195ffa6 turn off calendar -a by default and mention why. 2003-09-30 00:23:23 +00:00
jhawk
3b390ffb5f Suppress emailing the daily security report if it is empty, unless
send_empty_security=YES. Implements change-request PR security/17249
from Takahiro Kambe <taca@sky.yamashina.kyoto.jp>.
2003-02-21 22:35:46 +00:00
lukem
2775f3b901 remind people to edit /etc/*.conf instead of /etc/defaults/*.conf 2000-11-08 23:17:50 +00:00
lukem
6d52152500 move default config files from /etc/default -> /etc/defaults, to be
consistent with what FreeBSD uses /etc/defaults for and since SVR4
uses /etc/default for another purpose. as discussed on tech-userlevel,
and no objections were made.
2000-10-01 05:46:03 +00:00