Age | Commit message (Collapse) | Author |
|
|
|
|
|
* added /config/scripts/vyatta-postconfig-bootup.script that gets called from
/etc/rc.local. Users/Support can put in any workarounds in the script for
unfixed bugs and enhancements that are not in Vyatta yet. Placing the
script under /config makes sure that changes to the script will be
preserved for the new image
|
|
This script executes scripts lying in the following directory:
/opt/vyatta/bin/sudo-users/check-params-on-reboot.d
Scripts in check-params-on-reboot.d are intended for parameters
that require a reboot to take effect after they are set/changed.
Because of the reboot requirement, underlying value and related
config paramter value can become out-of-sync in couple of cases:
1. change parameter value, don't save config, reboot. Underlying
value is different than the value in config file.
2. install new image; when new image boots, underlying value is
the default Vyatta shipped value not the value in config file.
More info: http://bugzilla.vyatta.com/show_bug.cgi?id=6915#c1
This check-in also adds ipv6_disable_blacklist script in
check-params-on-reboot.d to fix the above mentioned problem
for 'system ipv6 disable' and 'system ipv6 blacklist'
|
|
to push users towards putting scripts in /config/scripts
|
|
Bug 6243
More complete validation of host name and domain name
|
|
The net-snmp has snmpd.init script which is installed in standard
place. Invoke it with standard mechanism to avoid any security or
other problems. Also allows debugging snmpd by changing /etc/default/snmp.
|
|
Previously, log file rotation was checked by cron daily. Some log
file -- such as those generated by PPP -- can grow rapidly. Such
infrequent checking can lead to running out of disk space on systems
with small disk drives or flash storage. This change checks for
rotation hourly.
|
|
If cpufrequtils is installed, then want the default to be full performance.
|
|
Avoid the overhead of perl compilation of vyatta-interfaces for each
address added. Handle the case of deleting address on deleted device
cleanly.
Clean up dhcpv6 script so it can be used on interfaces other
than ethernet.
|
|
These are new C language utilites to replace the Perl utility
when checking interface addresses. Perl compilation is major component
of slow boot time.
Note: this changes the package from pure scripts (arch independent)
to arch dependent
|
|
Need to leave gre0 around for case of multiple tunnels
|
|
Consolidate bridge port management into a single perl script.
Done to fix the following bug.
Bug 4745
Don't allow interface with address to be added to bridge.
|
|
Replace old script with new cleaner script that handles both
IRQ affinity and Receive Packet Steering. Instead of two scripts
(one for mask and one for auto), do it all with one script.
Receive Packet Steering is supported in two ways.
If 'auto' is used, then both threads on HT system will be
used for receive processing.
If explicit mask is given, then two masks can be used to set
both IRQ cpus and RPS cpus.
|
|
New script to produce ifAlias information from sysfs.
|
|
|
|
mendocino
|
|
|
|
Use existing config parser and perl to handle udev device naming.
Do renaming early in udev boot, and fixup config file later.
This avoids rescanning udev devices on boot and adds preliminary
support for hotplug.
|
|
|
|
|
|
Allows starting NTP server once at boot speeding up boot time
and allows specifying some NTP server options
|
|
This fixes case where rsyslog finds no targets on boot
|
|
mendocino
|
|
Configuration file is /etc/rsyslog.conf and it is supports
directory of include parameters so do not need to edit
rsyslog.conf directly
|
|
|
|
Udev rules have moved from /etc/udev to /lib/udev on Debian Squeeze
|
|
|
|
|
|
This sets file capability attributes during package
installation (and build) to allow better security models.
|
|
|
|
* fix this for eth, eth.vif, bond, bond.vif interfaces
* also, bridge-group code for bonding interfaces wasn't changed
with commit ec080f99 that re-strucutred bridging code in eth and
eth.vifs to fix bug 4708. bridge-group code for bond and bond.vif
interfaces is now similar to the fix for 4708
|
|
All interface related files are in vyatta-cfg-system package.
|
|
Fix help text (Bug 5254) and allow IPV6 static mapping (Bug 5298)
|
|
Instead of white-listing special system users, just go with the
Debian policy that all users with uid < 1000 are system accounts
|
|
If user exists in NSS (LDAP, TACACS+) but not on local machine,
then it can not be changed with CLI. useradd will fail (user exists),
and usermod will fail (can't find user in passwd file).
Bug 5249
|
|
|
|
Moved from vyatta-cfg
|
|
|
|
Variation on existing config file loader that is useful
for loading public key.
|
|
1. Complete migration of protected-users from hardcoded in User.pm
to /opt/vyatta/etc/protected-user
2. Put mapping from level to group in file.
|
|
Use a reasonable suffix for file type
|
|
|
|
This keeps radius from fighting with tacacs+
|
|
replaced with Debian branding during full-upgrade to Jenner
(cherry picked from commit cbdcd18b2e5328d24a9dfe04dfa015f8375b50ac)
|
|
support image install on an existing Vyatta union-installed system.
|
|
Bug 4591
Consolidate check for telnet login
Don't remove /etc/securetty edit it
(cherry picked from commit c6c477f2ffb0f2fd4cf12882f22c2c44ab57cc46)
|
|
Bug 4504
(cherry picked from commit 84219ff7c3399ae24edb7a925d03adf17ac4f18c)
|
|
Translate radius-server to Vyatta::Login::RadiusServer
(cherry picked from commit bf86040fef55fdb644b3670a9e1ec093e67df828)
|
|
Use a wrapper script in vyatta_update_login.pl and per login method
objects for the update.
|