From owner-freebsd-questions@freebsd.org Tue Oct 31 13:13:48 2017 Return-Path: Delivered-To: freebsd-questions@mailman.ysv.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:1900:2254:206a::19:1]) by mailman.ysv.freebsd.org (Postfix) with ESMTP id DB354E5A153 for ; Tue, 31 Oct 2017 13:13:48 +0000 (UTC) (envelope-from smithi@nimnet.asn.au) Received: from sola.nimnet.asn.au (paqi.nimnet.asn.au [115.70.110.159]) (using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits)) (Client did not present a certificate) by mx1.freebsd.org (Postfix) with ESMTPS id 5E19675722 for ; Tue, 31 Oct 2017 13:13:47 +0000 (UTC) (envelope-from smithi@nimnet.asn.au) Received: from localhost (localhost [127.0.0.1]) by sola.nimnet.asn.au (8.14.2/8.14.2) with ESMTP id v9VDDau5002153; Wed, 1 Nov 2017 00:13:37 +1100 (EST) (envelope-from smithi@nimnet.asn.au) Date: Wed, 1 Nov 2017 00:13:36 +1100 (EST) From: Ian Smith To: Yasuhiro KIMURA cc: freebsd-questions@freebsd.org Subject: Re: Three '450.status-security' scripts enabled by default In-Reply-To: Message-ID: <20171031230333.K40402@sola.nimnet.asn.au> References: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.23 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 31 Oct 2017 13:13:49 -0000 In freebsd-questions Digest, Vol 700, Issue 2, Message: 10 On Tue, 31 Oct 2017 19:52:58 +0900 (JST) Yasuhiro KIMURA wrote: > Hello, Konnichiwa, > While investigating the delay of daily periodic jobs, I found there > are three '450.status-security' scripts under /etc/periodic, that is, > /etc/periodic/{dairy,monthry,weekly}/450.status-security. All of them > executes 'periodic security' and only difference is how often they are > executed. So I think the purpose of them is to provide user option > how often 'periodic security' is executed. OK, I understand it. But I > can't understand setting about them in /etc/defaults/periodic.conf > because all of them are enabled by default. If the purpose is what I > explained, normal user expects at most one of them is enabled. So are > there any reason that all of them are enabled by default? 450.status-security is run (YES) each of those times, but unless you set variables in /etc/periodic.conf that override /etc/default/periodic.conf settings, it'll still use the default of 'daily' for the various scripts run by that one. See periodic.conf(5) and /etc/defaults/periodic.conf near the end. I was curious as my (cough) 9.3 system precedes this feature, so dug around to find this, which likely explains the rationale well enough: https://svnweb.freebsd.org/base?view=revision&revision=254974 Most people likely won't exercise this feature, if they know it exists. Oh, and whether using pkg(8) or source updating isn't relevant to this. cheers, Ian