mirror of
https://git.hardenedbsd.org/hardenedbsd/HardenedBSD.git
synced 2025-01-11 17:04:19 +01:00
89a14234bd
boot menu on and off. Reviewed by: scottl
345 lines
15 KiB
Plaintext
345 lines
15 KiB
Plaintext
# This is loader.conf - a file full of useful variables that you can
|
|
# set to change the default load behavior of your system. You should
|
|
# not edit this file! Put any overrides into one of the
|
|
# loader_conf_files instead and you will be able to update these
|
|
# defaults later without spamming your local configuration information.
|
|
#
|
|
# All arguments must be in double quotes.
|
|
#
|
|
# $FreeBSD$
|
|
|
|
##############################################################
|
|
### Basic configuration options ############################
|
|
##############################################################
|
|
|
|
exec=".( Loading /boot/defaults/loader.conf ) cr"
|
|
|
|
kernel="kernel" # /boot sub-directory containing kernel and modules
|
|
bootfile="kernel" # Kernel name (possibly absolute path)
|
|
kernel_options=""
|
|
|
|
userconfig_script_load="NO"
|
|
userconfig_script_name="/boot/kernel.conf"
|
|
userconfig_script_type="userconfig_script"
|
|
|
|
loader_conf_files="/boot/device.hints /boot/loader.conf /boot/loader.conf.local"
|
|
nextboot_conf="/boot/nextboot.conf"
|
|
nextboot_enable="NO"
|
|
|
|
verbose_loading="NO" # Set to YES for verbose loader output
|
|
|
|
|
|
##############################################################
|
|
### Splash screen configuration ############################
|
|
##############################################################
|
|
|
|
splash_bmp_load="NO" # Set this to YES for bmp splash screen!
|
|
splash_pcx_load="NO" # Set this to YES for pcx splash screen!
|
|
vesa_load="NO" # Set this to YES to load the vesa module
|
|
bitmap_load="NO" # Set this to YES if you want splash screen!
|
|
bitmap_name="splash.bmp" # Set this to the name of the bmp or pcx file
|
|
bitmap_type="splash_image_data" # and place it on the module_path
|
|
|
|
|
|
##############################################################
|
|
### Loader settings ########################################
|
|
##############################################################
|
|
|
|
#autoboot_delay="10" # Delay in seconds before autobooting
|
|
#beastie_disable="NO" # Turn the beastie boot menu on and off
|
|
#console="vidconsole" # Set the current console
|
|
#currdev="disk1s1a" # Set the current device
|
|
module_path="/boot/kernel;/boot/modules" # Set the module search path
|
|
#prompt="\\${interpret}" # Set the command prompt
|
|
#root_disk_unit="0" # Force the root disk unit number
|
|
#rootdev="disk1s1a" # Set the root filesystem
|
|
|
|
|
|
##############################################################
|
|
### Kernel settings ########################################
|
|
##############################################################
|
|
|
|
# The following boot_ variables are enabled
|
|
# by setting them to any value.
|
|
#boot_askname="" # Prompt the user for the name of the root device
|
|
#boot_ddb="" # Instructs the kernel to start in the DDB debugger
|
|
#boot_gdb="" # Selects gdb-remote mode for the kernel debugger
|
|
#boot_single="" # Start system in single-user mode
|
|
#boot_userconfig="" # Run kernel's interactive device configuration program
|
|
#boot_verbose="" # Causes extra debugging information to be printed
|
|
#init_path="/sbin/init:/sbin/oinit:/sbin/init.bak:/stand/sysinstall"
|
|
# Sets the list of init candidates
|
|
#dumpdev="ad0s1b" # Set device for crash dumps
|
|
|
|
|
|
##############################################################
|
|
### Kernel tunables ########################################
|
|
##############################################################
|
|
|
|
#hw.physmem="1G" # Limit phyiscal memory. See loader(8)
|
|
#kern.dfldsiz="" # Set the initial data size limit
|
|
#kern.dflssiz="" # Set the initial stack size limit
|
|
#kern.hz="100" # Set the kernel interval timer rate
|
|
#kern.maxbcache="" # Set the max buffer cache KVA storage
|
|
#kern.maxdsiz="" # Set the max data size
|
|
#kern.maxfiles="" # Set the sys. wide open files limit
|
|
#kern.maxproc="" # Set the maximum # of processes
|
|
#kern.maxssiz="" # Set the max stack size
|
|
#kern.maxswzone="" # Set the max swmeta KVA storage
|
|
#kern.maxtsiz="" # Set the max text size
|
|
#kern.maxusers="32" # Set size of various static tables
|
|
#kern.nbuf="" # Set the number of buffer headers
|
|
#kern.ncallout="" # Set the maximum # of timer events
|
|
#kern.sgrowsiz="" # Set the amount to grow stack
|
|
#kern.cam.scsi_delay="2000" # Delay (in ms) before probing SCSI
|
|
#kern.ipc.maxsockets="" # Set the maximum number of sockets avaliable
|
|
#kern.ipc.nmbclusters="" # Set the number of mbuf clusters
|
|
#kern.ipc.nmbufs="" # Set the maximum number of mbufs
|
|
#kern.ipc.nsfbufs="" # Set the number of sendfile(2) bufs
|
|
#kern.vm.kmem.size="" # Sets the size of kernel memory (bytes)
|
|
#net.inet.tcp.tcbhashsize="" # Set the value of TCBHASHSIZE
|
|
#vfs.root.mountfrom="" # Specify root partition in a way the
|
|
# kernel understands
|
|
#debug.ktr.cpumask="0xf" # Bitmask of CPUs to enable KTR on
|
|
#debug.ktr.mask="0x1200" # Bitmask of KTR events to enable
|
|
#debug.ktr.verbose="1" # Enable console dump of KTR events
|
|
#net.graph.maxalloc="128" # Maximum number of queue items to allocate
|
|
#net.graph.ngqfreemax="64" # Maximum number of free queue items to cache
|
|
|
|
|
|
##############################################################
|
|
### Filesystem and related modules #########################
|
|
##############################################################
|
|
|
|
# Filesystems
|
|
|
|
cd9660_load="NO" # ISO 9660 filesystem
|
|
coda_load="NO" # CODA filesystem
|
|
fdescfs_load="NO" # Filedescriptors filesystem
|
|
msdosfs_load="NO" # FAT-12/16/32
|
|
nfs_load="NO" # NFS
|
|
ntfs_load="NO" # NTFS
|
|
nullfs_load="NO" # Null filesystem
|
|
portalfs_load="NO" # Portal filesystem
|
|
procfs_load="NO" # Process filesystem
|
|
umapfs_load="NO" # User-id map filesystem
|
|
unionfs_load="NO" # Union filesystem
|
|
|
|
# Related stuff
|
|
|
|
ccd_load="NO" # Concatenated disk driver
|
|
vinum_load="NO" # Concatenated/mirror/raid driver
|
|
md_load="NO" # Memory disk driver (vnode/swap/malloc)
|
|
|
|
|
|
##############################################################
|
|
### Screen saver modules ###################################
|
|
##############################################################
|
|
|
|
# This is best done in rc.conf
|
|
|
|
screensave_load="NO" # Set to YES to load a screensaver module
|
|
screensave_name="green_saver" # Set to the name of the screensaver module
|
|
|
|
|
|
##############################################################
|
|
### Emulation modules ######################################
|
|
##############################################################
|
|
|
|
fpu_load="NO" # Floating point emulation
|
|
gnufpu_load="NO" # GNU floating point emulation
|
|
ibcs2_load="NO" # IBCS2 (SCO) emulation
|
|
ibcs2_coff_load="NO"
|
|
linux_load="NO" # Linux emulation
|
|
svr4_load="NO" # SystemV R4 emulation
|
|
streams_load="NO" # System V streams module
|
|
|
|
|
|
##############################################################
|
|
### Networking modules #####################################
|
|
##############################################################
|
|
|
|
if_disc_load="NO" # Discard device
|
|
if_ef_load="NO" # pseudo-device providing support for multiple ethernet frame types
|
|
if_faith_load="NO" # IPv6-to-IPv4 TCP relay capturing interface
|
|
if_gif_load="NO" # generic tunnel interface
|
|
if_gre_load="NO" # encapsulating network device
|
|
if_ppp_load="NO" # Kernel ppp
|
|
if_sl_load="NO" # SLIP
|
|
if_stf_load="NO" # 6to4 tunnel interface
|
|
if_tap_load="NO" # Ethernet tunnel software network interface
|
|
if_tun_load="NO" # Tunnel driver (user process ppp)
|
|
if_vlan_load="NO" # IEEE 802.1Q VLAN network interface
|
|
ipfw_load="NO" # Firewall
|
|
|
|
|
|
##############################################################
|
|
### Networking drivers #####################################
|
|
##############################################################
|
|
|
|
miibus_load="NO" # miibus support, needed for some drivers
|
|
if_an_load="NO" # Aironet 4500/4800 802.11 wireless NICs
|
|
if_ar_load="NO" # Digi SYNC/570i
|
|
if_awi_load="NO" # AMD PCnetMobile IEEE 802.11 wireless NICs
|
|
if_bge_load="NO" # Broadcom BCM570x PCI gigabit ethernet
|
|
if_cm_load="NO" # SMC (90c26, 90c56, 90c66)
|
|
if_dc_load="NO" # DEC/Intel 21143 and various workalikes
|
|
if_de_load="NO" # DEC DC21x4x ethernet
|
|
if_ed_load="NO" # National Semiconductor DS8390/WD83C690 ethernet
|
|
if_el_load="NO" # 3Com Etherlink 3C501
|
|
if_em_load="NO" # Intel(R) PRO/1000 gigabit ethernet
|
|
if_en_load="NO" # Midway-based ATM interfaces
|
|
if_ep_load="NO" # 3Com Etherlink III (3c5x9)
|
|
if_ex_load="NO" # Intel EtherExpress Pro/10 ethernet
|
|
if_fe_load="NO" # Fujitsu MB86960A/MB86965A based Ethernet adapters
|
|
if_fxp_load="NO" # Intel EtherExpress PRO/100B (82557, 82558)
|
|
if_gx_load="NO" # Intel Pro/1000 gigabit ethernet
|
|
if_ie_load="NO" # Intel 82586
|
|
if_lge_load="NO" # Level 1 LXT1001 NetCellerator PCI gigabit ethernet
|
|
if_lnc_load="NO" # AMD Lance/PCnet Ethernet
|
|
if_my_load="NO" # Myson PCI fast ethernet
|
|
if_nge_load="NO" # National Semiconductor PCI gigabit ethernet
|
|
if_oltr_load="NO" # Olicom
|
|
if_pcn_load="NO" # AMD PCnet PCI
|
|
if_ray_load="NO" # Raytheon Raylink/Webgear Aviator PCCard
|
|
if_rl_load="NO" # RealTek 8129/8139
|
|
if_sbni_load="NO" # Granch SBNI12 leased line adapters
|
|
if_sf_load="NO" # Adaptec Duralink PCI (AIC-6915 "starfire")
|
|
if_sis_load="NO" # Silicon Integrated Systems SiS 900/7016
|
|
if_sk_load="NO" # SysKonnect SK-984x series PCI gigabit ethernet
|
|
if_sn_load="NO" # SMC 91Cxx
|
|
if_sr_load="NO" # synchronous RISCom/N2 / WANic 400/405
|
|
if_ste_load="NO" # Sundance Technologies ST201 fast ethernet
|
|
if_ti_load="NO" # Alteon Networks Tigon 1 and Tigon 2
|
|
if_tl_load="NO" # Texas Instruments TNETE100 ("ThunderLAN")
|
|
if_tx_load="NO" # SMC 83c17x fast ethernet
|
|
if_txp_load="NO" # 3Com 3XP Typhoon/Sidewinder (3CR990)
|
|
if_vr_load="NO" # VIA Rhine I and Rhine II
|
|
if_vx_load="NO" # 3Com 3C590 family
|
|
if_wb_load="NO" # Winbond W89C840F
|
|
if_wi_load="NO" # WaveLAN/IEEE 802.11 wireless NICs
|
|
if_wx_load="NO" # Intel Gigabit Ethernet
|
|
if_xe_load="NO" # Xircom CreditCard PCMCIA
|
|
if_xl_load="NO" # 3Com Etherlink XL (3c900, 3c905, 3c905B)
|
|
|
|
##############################################################
|
|
### Netgraph modules #######################################
|
|
##############################################################
|
|
|
|
ng_UI_load="NO" # UI netgraph node type
|
|
ng_async_load="NO" # asynchronous framing netgraph node type
|
|
ng_bpf_load="NO" # Berkeley packet filter netgraph node type
|
|
ng_bridge_load="NO" # Ethernet bridging netgraph node type
|
|
ng_cisco_load="NO" # Cisco HDLC protocol netgraph node type
|
|
ng_echo_load="NO" # Netgraph echo node type
|
|
ng_ether_load="NO" # Ethernet netgraph node type
|
|
ng_frame_relay_load="NO" # frame relay netgraph node type
|
|
ng_hole_load="NO" # Netgraph discard node type
|
|
ng_iface_load="NO" # interface Netgraph node type
|
|
ng_ksocket_load="NO" # kernel socket netgraph node type
|
|
ng_lmi_load="NO" # frame relay LMI protocol netgraph node type
|
|
ng_mppc_load="NO" # Microsoft MPPC/MPPE compression and encryption netgraph node type
|
|
ng_one2many_load="NO" # packet multiplexing netgraph node type
|
|
ng_ppp_load="NO" # PPP protocol netgraph node type
|
|
ng_pppoe_load="NO" # RFC 2516 PPPOE protocol netgraph node type
|
|
ng_pptpgre_load="NO" # PPTP GRE protocol netgraph node type
|
|
ng_rfc1490_load="NO" # RFC 1490 netgraph node type
|
|
ng_socket_load="NO" # Netgraph socket node type
|
|
ng_tee_load="NO" # Netgraph ``tee'' node type
|
|
ng_tty_load="NO" # Netgraph node type that is also a line discipline
|
|
ng_vjc_load="NO" # Van Jacobsen compression netgraph node type
|
|
|
|
##############################################################
|
|
### Sound modules ##########################################
|
|
##############################################################
|
|
|
|
snd_pcm_load="NO" # Digital sound subsystem
|
|
snd_ad1816_load="NO" # ad1816
|
|
snd_cmi_load="NO" # cmi
|
|
snd_csa_load="NO" # csa
|
|
snd_cs4281_load="NO" # cs4281
|
|
snd_ds1_load="NO" # ds1
|
|
snd_emu10k1_load="NO" # Creative Sound Blaster Live
|
|
snd_ess_load="NO" # ess
|
|
snd_es137x_load="NO" # es137x
|
|
snd_fm801_load="NO" # fm801
|
|
snd_ich_load="NO" # Intel ICH
|
|
snd_maestro_load="NO" # Maestro
|
|
snd_maestro3_load="NO" # Maestro3
|
|
snd_mss_load="NO" # Mss
|
|
snd_neomagic_load="NO" # Neomagic
|
|
snd_sbc_load="NO" # Sbc
|
|
snd_sb8_load="NO" # Sound Blaster Pro
|
|
snd_sb16_load="NO" # Sound Blaster 16
|
|
snd_solo_load="NO" # Solo
|
|
snd_t4dwave_load="NO" # t4dwave
|
|
snd_via8233_load="NO" # via8233
|
|
snd_via82c686_load="NO" # via82c686
|
|
snd_driver_load="NO" # All sound drivers
|
|
|
|
##############################################################
|
|
### USB modules ############################################
|
|
##############################################################
|
|
|
|
usb_load="NO" # USB subsystem
|
|
udbp_load="NO" # USB double bulk pipe host 2 host cables
|
|
ugen_load="NO" # USB generic device, if all else fails ...
|
|
ufm_load="NO" # Fm Radio
|
|
uhid_load="NO" # Human Interface Devices
|
|
ukbd_load="NO" # Keyboard
|
|
ulpt_load="NO" # Printer
|
|
ums_load="NO" # Mouse
|
|
umass_load="NO" # Mass Storage Devices
|
|
umodem_load="NO" # Modems
|
|
uscanner_load="NO" # Scanners
|
|
if_aue_load="NO" # ADMtek USB ethernet
|
|
if_axe_load="NO" # ASIX Electronics AX88172 USB ethernet
|
|
if_cue_load="NO" # CATC USB ethernet
|
|
if_kue_load="NO" # Kawasaki LSI USB ethernet
|
|
|
|
##############################################################
|
|
### Other modules ##########################################
|
|
##############################################################
|
|
|
|
bktr_load="NO" # Brooktree Bt848/Bt878 TV/Video Capture Card
|
|
ispfw_load="NO" # Qlogic ISP Firmware
|
|
agp_load="NO" # agp module
|
|
accf_data_load="NO" # Wait for data accept filter
|
|
accf_http_load="NO" # Wait for full HTTP request accept filter
|
|
random_load="NO" # Random device
|
|
atspeaker_load="NO" # AT speaker module
|
|
|
|
##############################################################
|
|
### ACPI settings ##########################################
|
|
##############################################################
|
|
|
|
acpi_dsdt_load="NO" # DSDT Overriding
|
|
acpi_dsdt_type="acpi_dsdt" # Don't change this
|
|
acpi_dsdt_name="/boot/acpi_dsdt.aml"
|
|
# Override DSDT in BIOS by this file
|
|
|
|
##############################################################
|
|
### TrustedBSD MAC settings ##################################
|
|
##############################################################
|
|
|
|
mac_biba_load="NO" # Biba MAC policy
|
|
mac_bsdextended_load="NO" # BSD/extended MAC policy
|
|
mac_ifoff="NO" # Interface silencing policy
|
|
mac_mls_load="NO" # MLS MAC policy
|
|
mac_none_load="NO" # Null MAC policy
|
|
mac_partition_load="NO" # Partition MAC policy
|
|
mac_seeotheruids_load="NO" # UID visbility MAC policy
|
|
|
|
##############################################################
|
|
### Module loading syntax example ##########################
|
|
##############################################################
|
|
|
|
#module_load="YES" # loads module "module"
|
|
#module_name="realname" # uses "realname" instead of "module"
|
|
#module_type="type" # passes "-t type" to load
|
|
#module_flags="flags" # passes "flags" to the module
|
|
#module_before="cmd" # executes "cmd" before loading the module
|
|
#module_after="cmd" # executes "cmd" after loading the module
|
|
#module_error="cmd" # executes "cmd" if load fails
|
|
|