From 2664108efdd290383c7fb1979d9d245adf52cb46 Mon Sep 17 00:00:00 2001
From: Ossi Salmi <osalmi@iki.fi>
Date: Wed, 28 Dec 2016 16:22:43 +0200
Subject: [PATCH] ldap: Update OpenBSD's login.conf template

Also, increase dovecot's open files limit.
---
 ldap/templates/login.conf.erb | 31 ++++++++++++++++++++++++-------
 1 file changed, 24 insertions(+), 7 deletions(-)

diff --git a/ldap/templates/login.conf.erb b/ldap/templates/login.conf.erb
index 675e22f..0c121dd 100644
--- a/ldap/templates/login.conf.erb
+++ b/ldap/templates/login.conf.erb
@@ -1,4 +1,4 @@
-# $OpenBSD: login.conf,v 1.2 2014/04/22 11:03:40 reyk Exp $
+# $OpenBSD: login.conf,v 1.7 2016/06/26 20:32:31 tedu Exp $
 
 #
 # Sample login.conf file.  See login.conf(5) for details.
@@ -47,8 +47,7 @@ default:\
 	:maxproc-cur=128:\
 	:openfiles-cur=512:\
 	:stacksize-cur=4M:\
-	:localcipher=blowfish,8:\
-	:ypcipher=old:\
+	:localcipher=blowfish,a:\
 	:tc=auth-defaults:\
 	:tc=auth-ftp-defaults:
 
@@ -61,19 +60,19 @@ daemon:\
 	:ignorenologin:\
 	:datasize=infinity:\
 	:maxproc=infinity:\
-	:openfiles-cur=1024:\
+	:openfiles-cur=128:\
 	:stacksize-cur=8M:\
-	:localcipher=blowfish,9:\
+	:localcipher=blowfish,a:\
 	:tc=default:
 
 #
 # Staff have fewer restrictions and can login even when nologins are set.
 #
 staff:\
-	:datasize-cur=512M:\
+	:datasize-cur=1536M:\
 	:datasize-max=infinity:\
 	:maxproc-max=512:\
-	:maxproc-cur=128:\
+	:maxproc-cur=256:\
 	:ignorenologin:\
 	:requirehome@:\
 	:tc=default:
@@ -86,6 +85,16 @@ authpf:\
 	:shell=/usr/sbin/authpf:\
 	:tc=default:
 
+#
+# Building ports with DPB uses raised limits
+#
+pbuild:\
+	:datasize-max=infinity:\
+	:datasize-cur=4096M:\
+	:maxproc-max=1024:\
+	:maxproc-cur=256:\
+	:tc=default:
+
 #
 # Override resource limits for certain daemons started by rc.d(8)
 #
@@ -93,6 +102,14 @@ bgpd:\
 	:openfiles-cur=512:\
 	:tc=daemon:
 
+unbound:\
+	:openfiles-cur=512:\
+	:tc=daemon:
+
+dovecot:\
+	:openfiles-cur=1024:\
+	:tc=daemon:
+
 <%
 require 'uri'