www/143006: ACCEPT_FILTER_DATA and ACCEPT_FILTER_HTTP not enabled
by default
Roger Marquis
marquis at roble.com
Wed Jan 20 08:00:18 UTC 2010
>Number: 143006
>Category: www
>Synopsis: ACCEPT_FILTER_DATA and ACCEPT_FILTER_HTTP not enabled by default
>Confidential: no
>Severity: non-critical
>Priority: medium
>Responsible: freebsd-www
>State: open
>Quarter:
>Keywords:
>Date-Required:
>Class: sw-bug
>Submitter-Id: current-users
>Arrival-Date: Wed Jan 20 08:00:18 UTC 2010
>Closed-Date:
>Last-Modified:
>Originator: Roger Marquis
>Release: 8.0-RELEASE-p1
>Organization:
>Environment:
>Description:
The ACCEPT_FILTER_DATA and ACCEPT_FILTER_HTTP are not enabled in the GENERIC kernel. As a result there are all sorts of "help" pages instructing users to run kldload and add accf_http_load=YES and accf_data_load=YES to /boot/loader.conf. If this is not done a warning message is printed on each time httpd is loaded.
If the FreeBSD kernel is going to have these parameters, and ACCEPT_FILTER_DNS, they should be enabled by default. Even suggestions that such tuning needs to be done just to install a webserver is enough to turn novices off of FreeBSD, especially if they're used to OSs which have no such requirement.
>How-To-Repeat:
>Fix:
>Release-Note:
>Audit-Trail:
>Unformatted:
More information about the freebsd-www
mailing list