View Single Post
Old 6th July 2008
carpman carpman is offline
Shell Scout
 
Join Date: Jul 2008
Posts: 94
Default

Quote:
Originally Posted by richardpl View Post
Post whole contents of /etc/rc.conf

post again output of # sysctl kern.securelevel
Ok now there is something strange, even though i set it in rc.conf it does not appear to have changed ?

Quote:
# sysctl kern.securelevel
kern.securelevel: 2
rc.conf
Quote:
# Please make all changes to this file, not to /etc/defaults/rc.conf.
# This file now contains just the overrides from /etc/defaults/rc.conf.
ifconfig_fxp0="inet 85.234.***.** netmask 255.255.255.0"
defaultrouter="85.234.***.*"
hostname="my.domain.com"
keymap="uk.iso"
sshd_enable="YES"
usbd_enable="NO"
syslogd_flags="-ss"
enable_quotas="YES"
check_quotas="NO"
# Security Stuff Weak For Now
#firewall_enable="YES"
#firewall_script="/etc/rc.firewall"
#firewall_type="OPEN"
#firewall_quiet="YES"
#firewall_logging="YES"
kern_securelevel_enable="YES"
kern_securelevel="1"
tcp_extensions="NO"
tcp_keepalive="YES"
icmp_drop_redirect="YES"
icmp_bmcastecho="NO"
icmp_bandlim="YES"
log_in_vain="YES"
accounting_enable="NO"
sendmail_enable="NONE"
postgresql_enable="YES"
mysql_enable="YES"
sendmail_enable="NONE"
named_enable="NO"
# -- sysinstall generated deltas -- # Tue Nov 28 17:39:34 2006
keymap="uk.iso"
sendmail_enable="NONE"
sendmail_enable="NONE"
sendmail_enable="NONE"
smartd_enable="YES"
#firewall_enable="YES"
#firewall_script="/etc/rc.fire"
pf_enable="YES" # Enable PF (load module if required)
pf_rules="/etc/pf.conf" # rules definition file for pf
pf_flags="" # additional flags for pfctl startup
pflog_enable="YES" # start pflogd(8)
pflog_logfile="/var/log/pflog" # where pflogd should store the logfile
pflog_flags="" # additional flags for pflogd startup
sendmail_enable="NONE"
sendmail_enable="NONE"
sendmail_enable="NONE"
webmin_enable="YES"
sendmail_enable="NONE"
#
#ntpdate_enable="YES"
# ntpdate_flags="-b -t -g ntp.rz.uni-karlsruhe.de ntp1.rz.uni-karlsruhe.de"
#ntpdate_flags="-b 1.uk.pool.ntp.org chronos.csr.net audaxsystems.co.uk "
#
openntpd_enable="YES"
openntpd_flags="-s"
cheers
Reply With Quote