rc.conf revision 1.58
1 # $NetBSD: rc.conf,v 1.58 2004/04/18 03:49:43 dbj Exp $ 2 # 3 # /etc/defaults/rc.conf -- 4 # default configuration of /etc/rc.conf 5 # 6 # see rc.conf(5) for more information. 7 # 8 # DO NOT EDIT THIS FILE DIRECTLY; IT MAY BE REPLACED DURING A SYSTEM UPGRADE. 9 # EDIT /etc/rc.conf INSTEAD. 10 # 11 # DEVELOPERS: Please edit share/sushi/system/rcconf/form when modifying this 12 # file to keep it in sync. 13 14 # 15 # Use program=YES to enable program, NO to disable it. program_flags are 16 # passed to the program on the command line. 17 # 18 19 # Uncomment this if you want to use local paths in rc. 20 # 21 #export PATH=$PATH:/usr/pkg/sbin:/usr/pkg/bin:/usr/local/sbin:/usr/local/bin 22 23 # Uncomment the following to execute each /etc/rc.d script in 24 # the current shell rather than in a subshell. This may be 25 # faster on very slow machines that have an expensive fork(2). 26 # NOTE: USE THIS AT YOUR OWN RISK; A ROGUE COMMAND 27 # MAY INADVERTENTLY PREVENT BOOT TO MULTIUSER. 28 # 29 #rc_fast_and_loose=YES 30 31 # Additional flags to the rcorder(8) that's run by /etc/rc. 32 # 33 rc_rcorder_flags="" 34 35 # If this is set to NO, shutdown(8) will not run /etc/rc.shutdown. 36 # 37 do_rcshutdown=YES 38 39 # Additional flags to the rcorder(8) that's run by /etc/rc.shutdown. 40 # 41 rcshutdown_rcorder_flags="" 42 43 # If this is non-blank, use as the number of seconds to run a watchdog 44 # timer which will terminate /etc/rc.shutdown if the timeout expires. 45 # 46 rcshutdown_timeout="" 47 48 49 # Basic network configuration 50 # 51 52 # Fully Qualified Internet Domain Name (a.k.a. hostname, e.g. foo.baz.edu). 53 # If blank, use /etc/myname. 54 # 55 hostname="" 56 57 # If there's only one way out of your network, set this to the hostname 58 # or the IP address of the router that will get your packets off the LAN. 59 # If blank, use /etc/mygate. 60 # 61 defaultroute="" 62 63 # The NIS domain name (formerly known as Yellow Pages); not in any way 64 # related to Internet domain names. 65 # If blank, use /etc/defaultdomain. 66 # 67 domainname="" 68 69 # Filesystems to mount early in boot-up. 70 # Note that `/var' is needed in $critical_filesystems_local (or 71 # implied as part of `/') as certain services that need /var (such as 72 # dhclient) may be needed to get the network operational enough to mount 73 # the $critical_filesystems_remote. 74 # 75 critical_filesystems_local="/var" 76 critical_filesystems_remote="/usr" 77 78 # Swap device controls. 79 # 80 no_swap=NO # Set to YES if you have purposefully setup no swap 81 # partitions and don't want to be warned about it. 82 swapoff=NO # Remove block-type swap partitions upon shutdown 83 84 # Concatenated disk driver. 85 # 86 ccd=YES 87 88 # RAIDframe driver (manually configured devices). 89 # 90 raidframe=YES 91 92 # Crypto file system. 93 # 94 cgd=YES 95 96 # One-time actions and programs on boot-up. 97 # 98 lkm=NO # Run /etc/rc.lkm. /usr needs to be part of /, or 99 # part of critical_filesystems_local. 100 101 savecore=YES savecore_flags="-z" 102 clear_tmp=YES # clear /tmp after reboot 103 update_motd=YES # updates /etc/motd 104 dmesg=YES dmesg_flags="" # write /var/run/dmesg.boot 105 accounting=NO # uses /var/account/acct 106 newsyslog=NO newsyslog_flags="" # trim log files 107 108 # cope with other OSes using the real time clock at localtime on this 109 # machine (by adjusting kern.rtc_offset at boot) 110 rtclocaltime=NO 111 112 # NOTE: default coredump name now set in /etc/sysctl.conf 113 114 # Automatically check for and repair the botched superblock problem 115 fixsb=YES 116 117 # 118 # File system check flags; default to preen mode, checking filesystems 119 # that are listed in /etc/fstab in parallel as the fsck pass number 120 # permits. Fix minor faults automatically, and exit with non 0 only 121 # when major errors occur. 122 # 123 fsck_flags=-p 124 125 # Security setting. If $securelevel is non-empty, the system securelevel 126 # is set to this value early in the boot sequence. Otherwise the default 127 # action is taken (see init(8)). 128 # 129 securelevel="" # securelevel to set to 130 131 # To set the IP address of an interface either use 132 # ifconfig_xxN="IP-NO" 133 # where xxN is the interface. If this variable is not set then 134 # contents of the file /etc/ifconfig.xxN is used. 135 136 # Networking startup. 137 # 138 ipfilter=NO # uses /etc/ipf.conf 139 ipnat=NO # uses /etc/ipnat.conf 140 ipfs=NO ipfs_flags="" # save/load ipnat and ipf states 141 ipsec=NO # uses /etc/ipsec.conf 142 ipmon=NO ipmon_flags="-Dns" # syslog ipfilter messages 143 racoon=NO # IKE daemon 144 auto_ifconfig=YES # config all avail. interfaces 145 net_interfaces="" # used only if above is NO 146 flushroutes=YES # flush routes in netstart 147 dhclient=NO # behave as a DHCP client 148 dhclient_flags="" # blank: config all interfaces 149 ntpdate=NO ntpdate_flags="-b -s" # May need '-u' thru firewall 150 ppp_peers="" # /etc/ppp/peers to call 151 ip6mode=host # host, autohost or router 152 ip6sitelocal=NO # IPv6 sitelocal addrs 153 rtsol=NO rtsol_flags="-a" # for ip6mode=autohost only 154 155 # Special treatment for interfaces that need to be downed on 156 # shutdown (because they might cause unecessary costs or block resources 157 # on the peer). All pppoe* interfaces are automatically included in this 158 # list, add others here manually. 159 #force_down_interfaces="" 160 161 ifwatchd=NO # execute up/down scripts for in-kernel PPPoE interfaces 162 ifwatchd_flags="-u /etc/ppp/ip-up -d /etc/ppp/ip-down pppoe0" 163 164 # ALTQ configuration/monitoring daemon 165 altqd=NO altqd_flags="" 166 167 # Daemons required by servers. These are not needed for strictly client use. 168 # 169 170 # inetd is used to start the IP-based services enabled in /etc/inetd.conf 171 # 172 inetd=YES inetd_flags="-l" # -l logs libwrap 173 174 # identd 175 # 176 identd=NO identd_flags="-b -l -u nobody" 177 178 # rpcbind (formerly known as 'portmap') is used to look up RPC-based services. 179 # 180 rpcbind=NO rpcbind_flags="-l" # -l logs libwrap 181 182 # Commonly used daemons. 183 # 184 syslogd=YES syslogd_flags="-s" # -s "secure" unix domain only 185 cron=YES 186 named=NO named_flags="" # see below for named_chrootdir 187 timed=NO timed_flags="" 188 ntpd=NO ntpd_flags="" # see below for ntpd_chrootdir 189 postfix=NO 190 lpd=NO lpd_flags="-s" # -s "secure" unix domain only 191 sshd=NO sshd_flags="" 192 ssh_keygen_flags="-b 1024" # generate 1024 bit keys if host keys missing 193 194 # sendmail can now be run either as a suid root binary or as a sgid 195 # smmsp binary. In the former case, you must not have the file 196 # /etc/mail/submit.cf, otherwise sendmail will behave as if it was 197 # sgid. This can result in mail not being delivered. 198 # 199 # For those people who wish only to send mail (locally or remotely), 200 # but not receive mail (via the network) in the sgid case, you must 201 # also run the sendmail daemon with one of the following two options: 202 # 203 # -ODaemonPortOptions=Family=inet,Addr=127.0.0.1,Name=MTA 204 # -ODaemonPortOptions=Family=inet6,Addr=::1,Name=MTA6 205 # 206 # The smmsp process is a sendmail helper that periodically flushes the 207 # "client" queue in the sgid case. If you are using sendmail as a 208 # suid root program, then smmsp is not needed. 209 # 210 sendmail=NO sendmail_flags="-Lsm-mta -bd -q30m" 211 sendmail_suidroot=NO 212 smmsp=NO smmsp_flags="-Lsm-msp-queue -Ac -q30m" 213 214 215 # To run the named(8) DNS server as an unprivileged user under a 216 # chroot(2) cage, uncomment the following after migrating the contents 217 # of /etc/namedb to /var/chroot/named/etc/namedb 218 # 219 #named_chrootdir="/var/chroot/named" 220 221 # To run the ntpd(8) NTP server as an unprivileged user under a 222 # chroot(2) cage, uncomment the following, after ensuring that: 223 # - The kernel has "pseudo-device clockctl" compiled in 224 # - /dev/clockctl is present 225 # 226 #ntpd_chrootdir="/var/chroot/ntpd" 227 228 # Routing daemons. 229 # 230 routed=NO routed_flags="-q" 231 gated=NO 232 mrouted=NO mrouted_flags="" 233 route6d=NO route6d_flags="" 234 rtsold=NO rtsold_flags="" # for ip6mode=autohost only 235 236 # Daemons used to boot other hosts over a network. 237 # 238 rarpd=NO rarpd_flags="-a" 239 bootparamd=NO bootparamd_flags="" 240 dhcpd=NO dhcpd_flags="-q" 241 dhcrelay=NO dhcrelay_flags="" 242 rbootd=NO rbootd_flags="" 243 mopd=NO mopd_flags="-a" 244 ndbootd=NO ndbootd_flags="-s /tftpboot /tftpboot/bootyy" 245 rtadvd=NO rtadvd_flags="" 246 247 # X11 daemons. 248 # 249 xfs=NO xfs_flags="" # X11 font server 250 xdm=NO xdm_flags="" # X11 display manager; needs 251 # wscons=YES for local displays. 252 253 # YP (NIS) daemons. 254 # 255 ypbind=NO ypbind_flags="" 256 ypserv=NO ypserv_flags="-d" 257 yppasswdd=NO yppasswdd_flags="" 258 259 # NFS daemons and parameters. 260 # 261 mountd=NO mountd_flags="" # NFS mount requests daemon 262 nfs_client=NO # enable client daemons 263 nfs_server=NO # enable server daemons 264 nfsd_flags="-6tun 4" 265 lockd=NO lockd_flags="" 266 statd=NO statd_flags="" 267 amd=NO amd_flags="-l syslog -x error,noinfo,nostats" 268 amd_dir=/amd # mount dir 269 270 # Heimdal Kerberos 5 KDC (with Kerberos IV compatibility) 271 kdc=NO kdc_flags="" 272 273 # ISDN daemon 274 isdnd=NO isdnd_flags="" 275 276 # Other daemons. 277 # 278 rwhod=NO 279 280 # Hardware daemons. 281 # 282 apmd=NO apmd_flags="" # APM power management daemon. 283 poffd=NO # x68k power switch monitor 284 poffd_flags="'shutdown -p now'" 285 powerd=NO powerd_flags="" # power management daemon 286 screenblank=NO screenblank_flags="" # wscons and FBIO screenblanker 287 288 moused=NO # serial mouse handler 289 moused_flags="-p /dev/tty00" 290 291 wdogctl=NO # watchdog timer control 292 # wdogctl_flags="-k devicename" 293 294 # Configuration of "wscons" console driver virtual screens. 295 # 296 wscons=NO wscons_flags="" # setup wscons from wscons.conf 297 298 # Configuration of "wsmoused" console driver cut-n-paste support 299 # 300 wsmoused=NO wsmoused_flags="" 301 302 # Configuration of "tpctl" touch panel calibration utility 303 # 304 tpctl=NO tpctl_flags="" 305 306 # Mixer setting 307 # 308 mixerctl=NO mixerctl_mixers="" # "mixer0 mixer1" means saving 309 # and restoring their settings 310 311 # Vi recovery notification. Vi(1)'s -r option can recover files which were 312 # accidentaly closed. See vi(1) for more details. 313 # 314 virecover=YES 315 316 # Verified exec signature loading. 317 # 318 veriexec=NO 319
Indexes created Sat Oct 18 17:09:52 GMT 2025