Changeset 3706c7fe
- Timestamp:
- 05/24/2019 03:18:24 AM (5 years ago)
- Branches:
- 10.0, 10.1, 11.0, 11.1, 11.2, 11.3, 12.0, 12.1, 12.2, 9.0, 9.1, gimp3, kea, ken/TL2024, ken/inkscape-core-mods, ken/tuningfonts, lazarus, lxqt, plabs/newcss, plabs/python-mods, python3.11, qt5new, rahul/power-profiles-daemon, renodr/vulkan-addition, trunk, upgradedb, xry111/for-12.3, xry111/intltool, xry111/llvm18, xry111/soup3, xry111/spidermonkey128, xry111/test-20220226, xry111/xf86-video-removal
- Children:
- 274a82e9
- Parents:
- 9da30c5
- Files:
-
- 3 edited
Legend:
- Unmodified
- Added
- Removed
-
general.ent
r9da30c5 r3706c7fe 1 1 <!-- $LastChangedBy$ $Date$ --> 2 2 3 <!ENTITY day "2 1"> <!-- Always 2 digits -->3 <!ENTITY day "24"> <!-- Always 2 digits --> 4 4 <!ENTITY month "05"> <!-- Always 2 digits --> 5 5 <!ENTITY year "2019"> … … 7 7 <!ENTITY copyholder "The BLFS Development Team"> 8 8 <!ENTITY version "&year;-&month;-&day;"> 9 <!ENTITY releasedate "May 2 1st, &year;">9 <!ENTITY releasedate "May 24th, &year;"> 10 10 <!ENTITY pubdate "&year;-&month;-&day;"> <!-- metadata req. by TLDP --> 11 11 <!ENTITY blfs-version "svn"> <!-- svn|[release #] --> -
introduction/welcome/changelog.xml
r9da30c5 r3706c7fe 42 42 </listitem> 43 43 --> 44 <listitem> 45 <para>May 24th, 2019</para> 46 <itemizedlist> 47 <listitem> 48 <para>[dj] - Add Linux-PAM configuration for libcap.</para> 49 </listitem> 50 </itemizedlist> 51 </listitem> 52 44 53 <listitem> 45 54 <para>May 21st, 2019</para> -
postlfs/security/libcap.xml
r9da30c5 r3706c7fe 88 88 </sect2> 89 89 90 <sect2 role="configuration"> 91 <title>Configuring Libcap</title> 92 93 <para>In order to allow <application>Linux-PAM</application> to grant 94 privileges based on POSIX capabilites, you need to add the libcap module 95 to the begining of the <filename>/etc/pam.d/system-auth</filename> file. 96 Make the required edits with the following commands:</para> 97 98 <screen role="root"><userinput>mv -v /etc/pam.d/system-auth{,.bak} && 99 cat > /etc/pam.d/system-auth << "EOF" && 100 # Begin /etc/pam.d/system-auth 101 102 auth optional pam_cap.so 103 EOF 104 tail -n +3 /etc/pam.d/system-auth.bak << /etc/pam.d/system-auth</userinput></screen> 105 106 <para>Additonally, you'll need to modify the 107 <filename>/etc/security/capability.conf</filename> file to grant necessary 108 privileges to users, and utilize the <application>setcap</application> 109 utiltiy to set capabilities on specific utilities as needed. See 110 <command>man 8 setcap</command> and <command>man 3 cap_from_text</command> 111 for additional information.</para> 112 113 </sect2> 114 90 115 <sect2 role="content"> 91 116 <title>Contents</title>
Note:
See TracChangeset
for help on using the changeset viewer.