From owner-freebsd-stable@freebsd.org Wed Sep 23 09:57:35 2015 Return-Path: Delivered-To: freebsd-stable@mailman.ysv.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:1900:2254:206a::19:1]) by mailman.ysv.freebsd.org (Postfix) with ESMTP id 56E2FA076F2 for ; Wed, 23 Sep 2015 09:57:35 +0000 (UTC) (envelope-from bc979@lafn.org) Received: from mailman.ysv.freebsd.org (mailman.ysv.freebsd.org [IPv6:2001:1900:2254:206a::50:5]) by mx1.freebsd.org (Postfix) with ESMTP id 418FD1F99 for ; Wed, 23 Sep 2015 09:57:35 +0000 (UTC) (envelope-from bc979@lafn.org) Received: by mailman.ysv.freebsd.org (Postfix) id 3E86BA076F1; Wed, 23 Sep 2015 09:57:35 +0000 (UTC) Delivered-To: stable@mailman.ysv.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:1900:2254:206a::19:1]) by mailman.ysv.freebsd.org (Postfix) with ESMTP id 3E2BBA076F0 for ; Wed, 23 Sep 2015 09:57:35 +0000 (UTC) (envelope-from bc979@lafn.org) Received: from zoom.lafn.org (zoom.lafn.org [108.92.93.123]) by mx1.freebsd.org (Postfix) with ESMTP id 1CB401F98 for ; Wed, 23 Sep 2015 09:57:34 +0000 (UTC) (envelope-from bc979@lafn.org) Received: from [10.0.1.12] (static-71-177-216-148.lsanca.fios.verizon.net [71.177.216.148]) (authenticated bits=0) by zoom.lafn.org (8.14.7/8.14.9) with ESMTP id t8N9vRsl002049 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NO) for ; Wed, 23 Sep 2015 02:57:28 -0700 (PDT) (envelope-from bc979@lafn.org) Content-Type: text/plain; charset=utf-8 Mime-Version: 1.0 (Mac OS X Mail 8.2 \(2104\)) Subject: Re: when the sshd hits the fan From: Doug Hardie In-Reply-To: <56026686.8030308@norma.perm.ru> Date: Wed, 23 Sep 2015 02:57:27 -0700 Content-Transfer-Encoding: quoted-printable Message-Id: <8CC54339-0028-4CE4-9AAD-2248CD4E2FC9@lafn.org> References: <56026686.8030308@norma.perm.ru> To: FreeBSD Stable ML X-Mailer: Apple Mail (2.2104) X-Virus-Scanned: clamav-milter 0.98 at zoom.lafn.org X-Virus-Status: Clean X-BeenThere: freebsd-stable@freebsd.org X-Mailman-Version: 2.1.20 Precedence: list List-Id: Production branch of FreeBSD source code List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 23 Sep 2015 09:57:35 -0000 > On 23 September 2015, at 01:44, Eugene M. Zheganin = wrote: >=20 > Hi. >=20 > I'm trying to understand why the sshd still starts after local = daemons, > out-of-the-box, and what it takes to make this extremely vital service > to start before non-system (local) ones. I bet I'm not the first one = to > ask, so why isn't this already done ? Seems quite easy for me. The fix is quite simple: Add # BEFORE: mail to /etc/rc.d/sshd I tried to submit a PR on that about a year ago, but it never seemed to = make it into the PR system. Many of my servers are remote and if there = is an issue with a port, I still need a way into the system other than = driving for hours. This works. Sshd is started early in the sequence = and I can at least ssh into the server. It won=E2=80=99t help though if = there is a syntax error in /etc/rc.conf. Those are pretty much fatal.