Changeset 47274444 for postlfs/security/libcap.xml

Timestamp:

03/24/2020 07:19:44 PM (4 years ago)

Author:

Pierre Labastie <pieere@…>

Branches:

10.0, 10.1, 11.0, 11.1, 11.2, 11.3, 12.0, 12.1, kea, ken/TL2024, ken/inkscape-core-mods, ken/tuningfonts, lazarus, lxqt, plabs/newcss, plabs/python-mods, python3.11, qt5new, rahul/power-profiles-daemon, renodr/vulkan-addition, trunk, upgradedb, xry111/intltool, xry111/llvm18, xry111/soup3, xry111/test-20220226, xry111/xf86-video-removal

Children:

fa3edfef

Parents:

914049f6

Message:

Format postlfs/security and misc/forgotten

git-svn-id: svn://svn.linuxfromscratch.org/BLFS/trunk/BOOK@22884 af4574ff-66df-0310-9fd7-8a98e5e911e0

File:

• postlfs/security/libcap.xml (modified) (5 diffs)

postlfs/security/libcap.xml

@@ -30 +30 @@
     <title>Introduction to libcap with PAM</title>
 
-    <para>The <application>libcap</application> package was installed in 
-    LFS, but if <application>Linux-PAM</application> support is desired,
-    the PAM module must be built (after installation of
-    <application>Linux-PAM</application>).</para>
+    <para>
+      The <application>libcap</application> package was installed in 
+      LFS, but if <application>Linux-PAM</application> support is desired,
+      the PAM module must be built (after installation of
+      <application>Linux-PAM</application>).
+    </para>
 
     &lfs91_checked;
@@ -40 +42 @@
     <itemizedlist spacing="compact">
       <listitem>
-        <para>Download (HTTP): <ulink url="&libcap-download-http;"/></para>
+        <para>
+          Download (HTTP): <ulink url="&libcap-download-http;"/>
+        </para>
       </listitem>
       <listitem>
-        <para>Download (FTP): <ulink url="&libcap-download-ftp;"/></para>
+        <para>
+          Download (FTP): <ulink url="&libcap-download-ftp;"/>
+        </para>
       </listitem>
       <listitem>
-        <para>Download MD5 sum: &libcap-md5sum;</para>
+        <para>
+          Download MD5 sum: &libcap-md5sum;
+        </para>
       </listitem>
       <listitem>
-        <para>Download size: &libcap-size;</para>
+        <para>
+          Download size: &libcap-size;
+        </para>
       </listitem>
       <listitem>
-        <para>Estimated disk space required: &libcap-buildsize;</para>
+        <para>
+          Estimated disk space required: &libcap-buildsize;
+        </para>
       </listitem>
       <listitem>
-        <para>Estimated build time: &libcap-time;</para>
+        <para>
+          Estimated build time: &libcap-time;
+        </para>
       </listitem>
     </itemizedlist>
@@ -75 +89 @@
 
     <note>
-      <para>If you are upgrading libcap from a previous version, use the
-      instructions in 
-      <ulink url="../../../../lfs/view/development/chapter06/libcap.html">LFS libcap page</ulink>
-      to upgrade libcap. If the PAM module has been built, it will automatically
-      be picked up.</para>
+      <para>
+        If you are upgrading libcap from a previous version, use the
+        instructions in
+        <ulink url="../../../../lfs/view/development/chapter06/libcap.html">
+          LFS libcap page
+        </ulink> to upgrade libcap. If <xref linkend="linux-pam"/> has been
+        built, the PAM module will automatically be built too.
+      </para>
     </note>
 
-    <para>Install <application>libcap</application> by running the following
-    commands:</para>
+    <para>
+      Install <application>libcap</application> by running the following
+      commands:
+    </para>
 
 <screen><userinput>make -C pam_cap</userinput></screen>
 
-    <para>This package does not come with a test suite.</para>
+    <para>
+      This package does not come with a test suite.
+    </para>
 
-    <para>Now, as the <systemitem class="username">root</systemitem> user:</para>
+    <para>
+      Now, as the <systemitem class="username">root</systemitem> user:
+    </para>
 
 <screen role="root"><userinput>install -v -m755 pam_cap/pam_cap.so /lib/security &amp;&amp;
@@ -99 +122 @@
     <title>Configuring Libcap</title>
 
-    <para>In order to allow <application>Linux-PAM</application> to grant
-    privileges based on POSIX capabilites, you need to add the libcap module
-    to the begining of the <filename>/etc/pam.d/system-auth</filename> file.
-    Make the required edits with the following commands:</para>
+    <para>
+      In order to allow <application>Linux-PAM</application> to grant
+      privileges based on POSIX capabilites, you need to add the libcap module
+      to the begining of the <filename>/etc/pam.d/system-auth</filename> file.
+      Make the required edits with the following commands:
+    </para>
 
 <screen role="root"><userinput>mv -v /etc/pam.d/system-auth{,.bak} &amp;&amp;
@@ -112 +137 @@
 tail -n +3 /etc/pam.d/system-auth.bak &gt;&gt; /etc/pam.d/system-auth</userinput></screen>
 
-    <para>Additonally, you'll need to modify the
-    <filename>/etc/security/capability.conf</filename> file to grant necessary
-    privileges to users, and utilize the <command>setcap</command>
-    utility to set capabilities on specific utilities as needed. See
-    <command>man 8 setcap</command> and <command>man 3 cap_from_text</command>
-    for additional information.</para>
+    <para>
+      Additonally, you'll need to modify the
+      <filename>/etc/security/capability.conf</filename> file to grant
+      necessary privileges to users, and utilize the <command>setcap</command>
+      utility to set capabilities on specific utilities as needed. See
+      <command>man 8 setcap</command> and
+      <command>man 3 cap_from_text</command> for additional information.
+    </para>
  
   </sect2>