Browse Source

- no more /var/ssyslog (unused)

- no more /var/spool/lpd (lpd uses /var/spool/output)
- no more /var/preserve (old vi directory)
- update docs to reflect this
help with systrace provos@
help and ok millert@
OPENBSD_3_4
jmc 21 years ago
parent
commit
9c9982ecc9
4 changed files with 8 additions and 26 deletions
  1. +1
    -6
      src/etc/daily
  2. +1
    -16
      src/etc/mtree/4.4BSD.dist
  3. +3
    -3
      src/etc/printcap
  4. +3
    -1
      src/etc/systrace/usr_sbin_lpd

+ 1
- 6
src/etc/daily View File

@ -1,6 +1,6 @@
#!/bin/sh - #!/bin/sh -
# #
# $OpenBSD: daily,v 1.42 2003/02/08 10:19:30 pvalchev Exp $
# $OpenBSD: daily,v 1.43 2003/03/28 21:32:30 jmc Exp $
# From: @(#)daily 8.2 (Berkeley) 1/25/94 # From: @(#)daily 8.2 (Berkeley) 1/25/94
# #
PATH=/bin:/usr/bin:/sbin:/usr/sbin:/usr/local/bin PATH=/bin:/usr/bin:/sbin:/usr/sbin:/usr/local/bin
@ -46,11 +46,6 @@ fi
# >/dev/null 2>&1; } # >/dev/null 2>&1; }
#fi #fi
if [ -d /var/preserve -a ! -L /var/preserve ]; then
cd /var/preserve && {
find . ! -name . -mtime +7 -execdir rm -f -- {} \; ; }
fi
if [ -d /var/rwho -a ! -L /var/rwho ] ; then if [ -d /var/rwho -a ! -L /var/rwho ] ; then
cd /var/rwho && { cd /var/rwho && {
find . ! -name . -mtime +7 -execdir rm -f -- {} \; ; } find . ! -name . -mtime +7 -execdir rm -f -- {} \; ; }


+ 1
- 16
src/etc/mtree/4.4BSD.dist View File

@ -1,4 +1,4 @@
# $OpenBSD: 4.4BSD.dist,v 1.149 2003/03/17 07:38:13 deraadt Exp $
# $OpenBSD: 4.4BSD.dist,v 1.150 2003/03/28 21:32:30 jmc Exp $
/set type=dir uname=root gname=wheel mode=0755 /set type=dir uname=root gname=wheel mode=0755
# . # .
@ -1911,11 +1911,6 @@ standard
# ./var/obj XXX # ./var/obj XXX
#.. #..
# ./var/preserve
preserve
# ./var/preserve
..
# ./var/quotas # ./var/quotas
quotas gname=operator mode=0750 quotas gname=operator mode=0750
# ./var/quotas # ./var/quotas
@ -1970,11 +1965,6 @@ lock uname=uucp gname=dialer mode=1775
# ./var/spool/lock # ./var/spool/lock
.. ..
# ./var/spool/lpd
lpd gname=daemon mode=0775
# ./var/spool/lpd
..
# ./var/spool/mqueue # ./var/spool/mqueue
mqueue mode=0700 mqueue mode=0700
# ./var/spool/mqueue # ./var/spool/mqueue
@ -2105,11 +2095,6 @@ users type=dir uname=root gname=daemon mode=755
#./www #./www
.. ..
#./var/ssyslog
ssyslog type=dir uname=root gname=daemon mode=700
#./var/ssyslog
..
#./var/audit #./var/audit
audit type=dir uname=root gname=wheel mode=2770 audit type=dir uname=root gname=wheel mode=2770
#./var/audit #./var/audit


+ 3
- 3
src/etc/printcap View File

@ -1,7 +1,7 @@
# $OpenBSD: printcap,v 1.3 1999/09/23 01:31:20 deraadt Exp $
# $OpenBSD: printcap,v 1.4 2003/03/28 21:32:30 jmc Exp $
#lp|local line printer:\ #lp|local line printer:\
# :lp=/dev/lp:sd=/var/spool/lpd:lf=/var/log/lpd-errs:
# :lp=/dev/lp:sd=/var/spool/output:lf=/var/log/lpd-errs:
#rp|remote line printer:\ #rp|remote line printer:\
# :lp=:rm=printhost:rp=lp:sd=/var/spool/lpd:lf=/var/log/lpd-errs:
# :lp=:rm=printhost:rp=lp:sd=/var/spool/output:lf=/var/log/lpd-errs:

+ 3
- 1
src/etc/systrace/usr_sbin_lpd View File

@ -1,4 +1,4 @@
# $OpenBSD: usr_sbin_lpd,v 1.3 2003/02/04 14:52:33 jakob Exp $
# $OpenBSD: usr_sbin_lpd,v 1.4 2003/03/28 21:32:30 jmc Exp $
# #
# Policy for lpd. # Policy for lpd.
# This policy works for the default configuration of lpd. # This policy works for the default configuration of lpd.
@ -37,6 +37,7 @@ Policy: /usr/sbin/lpd, Emulation: native
native-fsread: filename match "/usr/share/nls/*" then permit native-fsread: filename match "/usr/share/nls/*" then permit
native-fsread: filename match "/usr/share/zoneinfo/*" then permit native-fsread: filename match "/usr/share/zoneinfo/*" then permit
native-fsread: filename match "/var/spool/lpd/*" then permit native-fsread: filename match "/var/spool/lpd/*" then permit
native-fsread: filename match "/var/spool/output/*" then permit
native-fstat: permit native-fstat: permit
native-fstatfs: permit native-fstatfs: permit
native-fswrite: filename eq "/dev/console" then permit native-fswrite: filename eq "/dev/console" then permit
@ -45,6 +46,7 @@ Policy: /usr/sbin/lpd, Emulation: native
native-fswrite: filename eq "/var/run/lpd.pid" then permit native-fswrite: filename eq "/var/run/lpd.pid" then permit
native-fswrite: filename eq "/var/run/printer" then permit native-fswrite: filename eq "/var/run/printer" then permit
native-fswrite: filename match "/var/spool/lpd/*" then permit native-fswrite: filename match "/var/spool/lpd/*" then permit
native-fswrite: filename match "/var/spool/output/*" then permit
native-ftruncate: permit native-ftruncate: permit
native-getdirentries: permit native-getdirentries: permit
native-getegid: permit native-getegid: permit


Loading…
Cancel
Save