Date: Thu, 31 Aug 2006 13:53:52 +0400 From: Ruslan Ermilov <ru@FreeBSD.org> To: Garance A Drosehn <gad@FreeBSD.org> Cc: Tom Rhodes <trhodes@FreeBSD.org>, src-committers@FreeBSD.org, cvs-all@FreeBSD.org, cvs-src@FreeBSD.org Subject: Re: "Chatty" config files in /etc Message-ID: <20060831095352.GA52914@rambler-co.ru> In-Reply-To: <p0623091ec11bdac4f347@[128.113.24.47]> References: <200608290920.k7T9KmV9067843@repoman.freebsd.org> <86zmdmfoow.fsf@dwp.des.no> <p0623091cc11b704fff62@[128.113.24.47]> <20060830202834.GA11284@rambler-co.ru> <20060830192456.2497b4bd.trhodes@FreeBSD.org> <p0623091ec11bdac4f347@[128.113.24.47]>
next in thread | previous in thread | raw e-mail | index | archive | help
--/9DWx/yDrRhgMJTb Content-Type: text/plain; charset=us-ascii Content-Disposition: inline Content-Transfer-Encoding: quoted-printable On Wed, Aug 30, 2006 at 08:42:19PM -0400, Garance A Drosehn wrote: > On Aug 30/06, Tom Rhodes asks the reasonable question: > >On Thu, 31 Aug 2006 00:28:34 +0400 > >Ruslan Ermilov <ru@FreeBSD.org> wrote: > > > > > On Wed, Aug 30, 2006 at 01:41:51PM -0400, Garance A Drosehn wrote: > > > > > >> > I do think those comments and examples are useful, but it might be > > > > better to move those lines into separate files. > > > > > > I think they should be moved to /usr/share/examples/etc/ (like > >> make.conf), with files in /etc/ representing good (short) defaults > > > with a minimum of comments and probably references to examples. > > > >Question is, what files will be moved? All configuration files > >or just "some" ? >=20 > I would not move "all" of them. I think the proper rule would be > "Split up the ones which constantly annoy me when they change". > Obviously that's a rather subjective criteria... >=20 > We could pick off a few and change those, and then see if there > are anymore which should be split up. My list would be: > /etc/hosts > /etc/hosts.allow > /etc/pf.conf > /etc/printcap >=20 I'd rather start from moving TRUE example files, that are relatively large (for a quick eye inspection), including all of the files you mentioned. I'd remove /etc/hosts.allow completely since it looks (from code inspection) that doing two non-existence checks (for hosts.allow and hosts.deny) will faster result in granting access than having a one line in hosts.allow that allows everything but requires additional read(2) syscalls and parsing. I'd replace the default /etc/hosts with: 127.0.0.1 localhost ::1 localhost Cheers, --=20 Ruslan Ermilov ru@FreeBSD.org FreeBSD committer --/9DWx/yDrRhgMJTb Content-Type: application/pgp-signature Content-Disposition: inline -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.5 (FreeBSD) iD8DBQFE9rGwqRfpzJluFF4RApMvAJkBHp4qThYCqKPHrORFJ4FCRyCEAACgj/su aQyKWSRz5QXJeepT5PB9rbs= =tqVF -----END PGP SIGNATURE----- --/9DWx/yDrRhgMJTb--
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20060831095352.GA52914>