Freebsd-users digest, Vol 1 #886 - 12 msgs

Rik rik at spoon.pkl.net
Fri Feb 8 01:34:22 GMT 2002


On Thu, Feb 07, 2002 at 10:13:24PM +0000, Ben Paley wrote:
> I'll stick to my question: I don't have /etc/make.conf. If I make one with 
> just that line in it, will that work?

Yes. The way I've been making /etc/make.conf is by copying
/etc/defaults/make.conf and editing, then removing everything beginning
with a "#", and everything I haven't changed.

For reference, I have the SUP_UPDATE section uncommented and filled in
(allows make update in /usr/{src,ports,doc}), FETCH_BEFORE_ARGS,
WITH_SSL=yes, WITH_MUTT_SSL=yes, CFLAGS and a couple of system specific
things (no uucp, no X on the server, no sendmail, etc). I also have one
other thing that I'm passing on, specifically for shell machines:

# Override insecure console check for opie. Let the users decide for
# themselves whether they're secure or not.
.if ${.CURDIR} == "/usr/src/contrib/opie"
CFLAGS+=    -DINSECURE_OVERRIDE
.endif
.if ${.CURDIR} == "/usr/src/usr.bin/opieinfo"
CFLAGS+=    -DINSECURE_OVERRIDE
.endif
.if ${.CURDIR} == "/usr/src/usr.bin/opiekey"
CFLAGS+=    -DINSECURE_OVERRIDE
.endif
.if ${.CURDIR} == "/usr/src/usr.bin/opiepasswd"
CFLAGS+=    -DINSECURE_OVERRIDE
.endif

Without that in /etc/make.conf, you have to be sat at the console, or
some other "secure" device to make OPIE passwords. Aparently, ssh isn't
secure enough...

rik
-- 
PGP Key: D2729A3F - Keyserver: wwwkeys.uk.pgp.net - rich at rdrose dot org
Key fingerprint = 5EB1 4C63 9FAD D87B 854C  3DED 1408 ED77 D272 9A3F
Public key also encoded with outguess on http://rikrose.net




More information about the Ukfreebsd mailing list