Searched hist:1.1713 (Results 1 - 4 of 4) sorted by relevance
| /src/doc/ | ||
| H A D | 3RDPARTY | 1.1713 Tue Apr 21 13:39:26 GMT 2020 sevan new openssl |
| H A D | CHANGES | 1.1713 Sat Jun 23 03:16:03 GMT 2012 christos new ip6 sysctls |
| /src/distrib/sets/lists/man/ | ||
| H A D | mi | 1.1713 Sun Jan 10 23:24:25 GMT 2021 riastradh Various entropy integration improvements. - New /etc/security check for entropy in daily security report. - New /etc/rc.d/entropy script runs (after random_seed and rndctl) to check for entropy at boot -- in rc.conf, you can: . set `entropy=check' to halt multiuser boot and enter single-user mode if not enough entropy . set `entropy=wait' to make multiuser boot wait until enough entropy Default is to always boot without waiting -- and rely on other channels like security report to alert the operator if there's a problem. - New man page entropy(7) discussing the higher-level concepts and system integration with cross-references. - New paragraph in afterboot(8) about entropy citing entropy(7) for more details. This change addresses many of the issues discussed in security/55659. This is a first draft; happy to take improvements to the man pages and scripted messages to improve clarity. I considered changing motd to include an entropy warning with a reference to the entropy(7) man page, but it's a little trickier: - Not sure it's appropriate for all users to see at login rather than users who have power to affect the entropy estimate (maybe it is, just haven't decided). - We only have a mechanism for changing once at boot; the message would remain until next boot even if an operator adds enough entropy. - The mechanism isn't really conducive to making a message appear conditionally from boot to boot. |
| /src/distrib/sets/lists/comp/ | ||
| H A D | mi | 1.1713 Mon Nov 28 16:22:15 GMT 2011 tron Don't build postscreen(8) if "MKCRYPTO" is set to "no". It cannot be built without TLS support, at least not without major surgery. I've only tested this by building with "MKCRYPTO" set to "yes" because the build fails much ealier otherwise. Problem reported by Nick Hudson in private e-mail. |
Completed in 767 milliseconds