Fincer
/
openntpd-openbsd
mirror of https://github.com/Fincer/openntpd-openbsd
1
0
Fork 0
Code Issues 0 Projects 0 Releases 61 Wiki Activity
Browse Source

Move ipsec key creation before isakmpd, and sshd to become the first 

of the network daemons so that it can be used if another daemon stops
in its tracks.
ok claudio markus sthen
OPENBSD_4_7
deraadt 15 years ago
parent
315ece0432
commit
b886f3624f
1 changed files with 18 additions and 18 deletions
Unified View
Diff Options
Show Stats Download Patch File Download Diff File
  1. +18
    -18
      src/etc/rc

+ 18
- 18
src/etc/rc View File

@ -1,4 +1,4 @@
# $OpenBSD: rc,v 1.332 2009/08/12 13:21:15 deraadt Exp $
# $OpenBSD: rc,v 1.333 2009/11/23 12:14:25 deraadt Exp $
# System startup script run by init on autoboot # System startup script run by init on autoboot
# or after single-user. # or after single-user.
@ -371,6 +371,19 @@ if [ X"${named_flags}" != X"NO" ]; then
echo 'starting named'; named $named_flags echo 'starting named'; named $named_flags
fi fi
if [ ! -f /etc/isakmpd/private/local.key ]; then
echo -n "openssl: generating new isakmpd RSA key... "
if /usr/sbin/openssl genrsa -out /etc/isakmpd/private/local.key 2048 \
> /dev/null 2>&1; then
chmod 600 /etc/isakmpd/private/local.key
openssl rsa -out /etc/isakmpd/local.pub \
-in /etc/isakmpd/private/local.key -pubout > /dev/null 2>&1
echo done.
else
echo failed.
fi
fi
if [ X"${isakmpd_flags}" != X"NO" ]; then if [ X"${isakmpd_flags}" != X"NO" ]; then
if [ X"${sasyncd_flags}" != X"NO" ]; then if [ X"${sasyncd_flags}" != X"NO" ]; then
isakmpd_flags="-S ${isakmpd_flags}" isakmpd_flags="-S ${isakmpd_flags}"
@ -596,21 +609,12 @@ if [ ! -f /etc/ssh/ssh_host_key ]; then
fi fi
fi fi
if [ ! -f /etc/isakmpd/private/local.key ]; then
echo -n "openssl: generating new isakmpd RSA key... "
if /usr/sbin/openssl genrsa -out /etc/isakmpd/private/local.key 2048 \
> /dev/null 2>&1; then
chmod 600 /etc/isakmpd/private/local.key
openssl rsa -out /etc/isakmpd/local.pub \
-in /etc/isakmpd/private/local.key -pubout > /dev/null 2>&1
echo done.
else
echo failed.
fi
fi
echo -n starting network daemons: echo -n starting network daemons:
if [ X"${sshd_flags}" != X"NO" ]; then
echo -n ' sshd'; /usr/sbin/sshd ${sshd_flags};
fi
if [ X"${snmpd_flags}" != X"NO" ]; then if [ X"${snmpd_flags}" != X"NO" ]; then
echo -n ' snmpd'; /usr/sbin/snmpd $snmpd_flags echo -n ' snmpd'; /usr/sbin/snmpd $snmpd_flags
fi fi
@ -728,10 +732,6 @@ if [ X"${inetd}" = X"YES" -a -e /etc/inetd.conf ]; then
echo -n ' inetd'; inetd echo -n ' inetd'; inetd
fi fi
if [ X"${sshd_flags}" != X"NO" ]; then
echo -n ' sshd'; /usr/sbin/sshd ${sshd_flags};
fi
if [ X"${spamd_flags}" != X"NO" ]; then if [ X"${spamd_flags}" != X"NO" ]; then
if [ X"${spamd_black}" != X"NO" ]; then if [ X"${spamd_black}" != X"NO" ]; then
spamd_flags="${spamd_flags} -b" spamd_flags="${spamd_flags} -b"


Write Preview
Loading…
Cancel
Save