source: chapter08/shadow.xml@ 201aa93

multilib trunk xry111/arm64 xry111/clfs-ng
Last change on this file since 201aa93 was 201aa93, checked in by Xi Ruoyao <xry111@…>, 12 days ago

Move punctuation/comma into quotes for <xref>s

We are using American rule for punctuation/comma vs. quotes. We've
fixed most cases but not <xref>s.
  • Property mode set to 100644
File size: 24.6 KB
Line 
1<?xml version="1.0" encoding="UTF-8"?>
2<!DOCTYPE sect1 PUBLIC "-//OASIS//DTD DocBook XML V4.5//EN"
3 "http://www.oasis-open.org/docbook/xml/4.5/docbookx.dtd" [
4 <!ENTITY % general-entities SYSTEM "../general.ent">
5 %general-entities;
6]>
7
8<sect1 id="ch-system-shadow" role="wrap">
9 <?dbhtml filename="shadow.html"?>
10
11 <sect1info condition="script">
12 <productname>shadow</productname>
13 <productnumber>&shadow-version;</productnumber>
14 <address>&shadow-url;</address>
15 </sect1info>
16
17 <title>Shadow-&shadow-version;</title>
18
19 <indexterm zone="ch-system-shadow">
20 <primary sortas="a-Shadow">Shadow</primary>
21 </indexterm>
22
23 <sect2 role="package">
24 <title/>
25
26 <para>The Shadow package contains programs for handling passwords in a secure
27 way.</para>
28
29 <segmentedlist>
30 <segtitle>&buildtime;</segtitle>
31 <segtitle>&diskspace;</segtitle>
32
33 <seglistitem>
34 <seg>&shadow-fin-sbu;</seg>
35 <seg>&shadow-fin-du;</seg>
36 </seglistitem>
37 </segmentedlist>
38
39 </sect2>
40
41 <sect2 role="installation">
42 <title>Installation of Shadow</title>
43
44 <important>
45 <para>
46 If you've installed Linux-PAM, you should follow
47 <ulink url='&blfs-book;postlfs/shadow.xml'>the BLFS shadow
48 page</ulink> instead of this page to build (or, rebuild or upgrade)
49 shadow.
50 </para>
51 </important>
52
53 <note>
54 <para>If you would like to enforce the use of strong passwords, refer to
55 <ulink url="&blfs-book;postlfs/cracklib.html"/> for installing
56 CrackLib prior to building Shadow. Then add
57 <parameter>--with-libcrack</parameter> to the <command>configure</command>
58 command below.</para>
59 </note>
60
61 <para>Disable the installation of the <command>groups</command> program
62 and its man pages, as Coreutils provides a better version. Also,
63 prevent the installation of manual pages that were already installed in
64 <xref linkend="ch-system-man-pages"/>:</para>
65
66<screen><userinput remap="pre">sed -i 's/groups$(EXEEXT) //' src/Makefile.in
67find man -name Makefile.in -exec sed -i 's/groups\.1 / /' {} \;
68find man -name Makefile.in -exec sed -i 's/getspnam\.3 / /' {} \;
69find man -name Makefile.in -exec sed -i 's/passwd\.5 / /' {} \;</userinput></screen>
70
71 <para id="shadow-login_defs">Instead of using the default
72 <emphasis>crypt</emphasis> method, use the much more secure
73 <emphasis>YESCRYPT</emphasis> method of password encryption, which also
74 allows passwords longer than 8 characters.
75 It is also necessary to change
76 the obsolete <filename class="directory">/var/spool/mail</filename> location
77 for user mailboxes that Shadow uses by default to the <filename
78 class="directory">/var/mail</filename> location used currently. And,
79 remove <filename class="directory">/bin</filename> and
80 <filename class="directory">/sbin</filename> from the <envar>PATH</envar>,
81 since they are simply symlinks to their counterparts in
82 <filename class="directory">/usr</filename>.</para>
83
84 <note>
85 <para>If you wish to include <filename class="directory">/bin</filename>
86 and/or <filename class="directory">/sbin</filename> in the <envar>PATH</envar>
87 for some reason, modify the
88 <envar>PATH</envar> in <filename>.bashrc</filename> after LFS has been
89 built.</para>
90 </note>
91
92<screen><userinput remap="pre">sed -e 's:#ENCRYPT_METHOD DES:ENCRYPT_METHOD YESCRYPT:' \
93 -e 's:/var/spool/mail:/var/mail:' \
94 -e '/PATH=/{s@/sbin:@@;s@/bin:@@}' \
95 -i etc/login.defs</userinput></screen>
96
97 <note>
98 <para>If you chose to build Shadow with Cracklib support, issue this command:</para>
99
100<screen role="nodump"><userinput>sed -i 's:DICTPATH.*:DICTPATH\t/lib/cracklib/pw_dict:' etc/login.defs</userinput></screen>
101 </note>
102<!--
103 <para>Make a minor change to make the first group number generated
104 by useradd 1000:</para>
105
106<screen><userinput remap="pre">sed -i 's/1000/999/' etc/useradd</userinput></screen>
107-->
108<!--
109 <para>Fix a simple programming error by modifying a file with following command:</para>
110
111<screen><userinput remap="pre">sed -e "224s/rounds/min_rounds/" -i libmisc/salt.c</userinput></screen>
112-->
113 <para>Prepare Shadow for compilation:</para>
114
115<screen><userinput remap="configure">touch /usr/bin/passwd
116./configure --sysconfdir=/etc \
117 --disable-static \
118 --with-{b,yes}crypt \
119 --without-libbsd \
120 --with-group-name-max-length=32</userinput></screen>
121
122 <variablelist>
123 <title>The meaning of the new configuration options:</title>
124
125 <varlistentry>
126 <term><command>touch /usr/bin/passwd</command></term>
127 <listitem>
128 <para>The file <filename>/usr/bin/passwd</filename> needs
129 to exist because its location is hardcoded in some programs;
130 if it does not already exist, the installation script will
131 create it in the wrong place.</para>
132 </listitem>
133 </varlistentry>
134
135 <varlistentry>
136 <term><parameter>--with-{b,yes}crypt</parameter></term>
137 <listitem>
138 <para>The shell expands this to two switches,
139 <parameter>--with-bcrypt</parameter> and
140 <parameter>--with-yescrypt</parameter>. They allow shadow to use
141 the Bcrypt and Yescrypt algorithms implemented by
142 <application>Libxcrypt</application> for hashing passwords.
143 These algorithms are more secure (in particular, much more
144 resistant to GPU-based attacks) than the traditional SHA
145 algorithms.</para>
146 </listitem>
147 </varlistentry>
148
149 <varlistentry>
150 <term><parameter>--with-group-name-max-length=32</parameter></term>
151 <listitem>
152 <para>The longest permissible user name is 32 characters. Make the maximum
153 length of a group name the same.</para>
154 </listitem>
155 </varlistentry>
156
157 <varlistentry>
158 <term><parameter>--without-libbsd</parameter></term>
159 <listitem>
160 <para>Do not use the readpassphrase function from libbsd which
161 is not in LFS. Use the internal copy instead.</para>
162 </listitem>
163 </varlistentry>
164
165 </variablelist>
166
167 <para>Compile the package:</para>
168
169 <screen><userinput remap="make">make</userinput></screen>
170
171 <para>This package does not come with a test suite.</para>
172
173 <para>Install the package:</para>
174
175 <screen><userinput remap="install">make exec_prefix=/usr install
176make -C man install-man</userinput></screen>
177
178 </sect2>
179
180 <sect2 id="conf-shadow" role="configuration">
181 <title>Configuring Shadow</title>
182
183 <indexterm zone="conf-shadow">
184 <primary sortas="a-Shadow">Shadow</primary>
185 <secondary>configuring</secondary>
186 </indexterm>
187
188 <para>This package contains utilities to add, modify, and delete users and
189 groups; set and change their passwords; and perform other administrative
190 tasks. For a full explanation of what <emphasis>password shadowing</emphasis>
191 means, see the <filename>doc/HOWTO</filename> file within the unpacked
192 source tree. If you use Shadow support, keep in mind that programs which need
193 to verify passwords (display managers, FTP programs, pop3 daemons, etc.)
194 must be Shadow-compliant. That is, they must be able to work with
195 shadowed passwords.</para>
196
197 <para>To enable shadowed passwords, run the following command:</para>
198
199<screen><userinput>pwconv</userinput></screen>
200
201 <para>To enable shadowed group passwords, run:</para>
202
203<screen><userinput>grpconv</userinput></screen>
204
205 <para>Shadow's default configuration for the <command>useradd</command>
206 utility needs some explanation. First, the default
207 action for the <command>useradd</command> utility is to create the user and
208 a group with the same name as the user. By default the user ID (UID) and
209 group ID (GID) numbers will begin at 1000. This means if you don't pass
210 extra parameters to <command>useradd</command>, each user will be a member of a
211 unique group on the system. If this behavior is undesirable, you'll need
212 to pass either the <parameter>-g</parameter> or <parameter>-N</parameter>
213 parameter to <command>useradd</command>, or else change the setting of
214 <parameter>USERGROUPS_ENAB</parameter> in
215 <filename>/etc/login.defs</filename>. See <ulink role='man'
216 url='&man;useradd.8'>useradd(8)</ulink> for more information.</para>
217
218 <para>Second, to change the default parameters, the file
219 <filename>/etc/default/useradd</filename> must be created and tailored
220 to suit your particular needs. Create it with:</para>
221
222<screen><userinput>mkdir -p /etc/default
223useradd -D --gid 999</userinput></screen>
224
225 <variablelist>
226 <title><filename>/etc/default/useradd</filename> parameter explanations</title>
227
228 <varlistentry>
229 <term><parameter>GROUP=999</parameter></term>
230 <listitem>
231 <para>This parameter sets the beginning of the group numbers used in
232 the <filename>/etc/group</filename> file. The particular value 999
233 comes from the <parameter>--gid</parameter> parameter above. You
234 may set it to any desired value.
235
236 Note that <command>useradd</command> will never reuse a UID or GID.
237 If the number identified in this parameter is used, it will use the
238 next available number. Note also that if you don't have a group with
239 an ID equal to this number on your system, then the first time you use
240 <command>useradd</command> without the <parameter>-g</parameter>
241 parameter, an error message will be generated&mdash;<computeroutput>useradd:
242 unknown GID 999</computeroutput>,
243 even though the account has been created correctly. That is why we
244 created the group <systemitem class="groupname">users</systemitem>
245 with this group ID in
246 <xref linkend='ch-tools-createfiles' role='.'/></para>
247
248 </listitem>
249 </varlistentry>
250 <varlistentry>
251 <term><parameter>CREATE_MAIL_SPOOL=yes</parameter></term>
252 <listitem>
253 <para>This parameter causes <command>useradd</command> to create a
254 mailbox file for each new user. <command>useradd</command>
255 will assign the group ownership of this file to the
256 <systemitem class="groupname">mail</systemitem> group with 0660
257 permissions. If you would rather not create these files,
258 issue the following command:</para>
259
260<screen><userinput>sed -i '/MAIL/s/yes/no/' /etc/default/useradd</userinput></screen>
261 </listitem>
262 </varlistentry>
263
264 </variablelist>
265
266 </sect2>
267
268 <sect2 role="configuration">
269 <title>Setting the Root Password</title>
270
271 <para>Choose a password for user <emphasis>root</emphasis> and set it
272 by running:</para>
273
274<screen role="nodump"><userinput>passwd root</userinput></screen>
275
276 </sect2>
277
278 <sect2 id="contents-shadow" role="content">
279 <title>Contents of Shadow</title>
280
281 <segmentedlist>
282 <segtitle>Installed programs</segtitle>
283 <segtitle>Installed directories</segtitle>
284 <segtitle>Installed libraries</segtitle>
285
286 <seglistitem>
287 <seg>chage, chfn, chgpasswd, chpasswd, chsh, expiry, faillog,
288 getsubids, gpasswd, groupadd, groupdel, groupmems, groupmod, grpck,
289 grpconv, grpunconv, login, logoutd, newgidmap, newgrp,
290 newuidmap, newusers, nologin, passwd, pwck, pwconv, pwunconv,
291 sg (link to newgrp), su, useradd, userdel, usermod,
292 vigr (link to vipw), and vipw</seg>
293 <seg>/etc/default and /usr/include/shadow</seg>
294 <seg>libsubid.so</seg>
295 </seglistitem>
296 </segmentedlist>
297
298 <variablelist>
299 <bridgehead renderas="sect3">Short Descriptions</bridgehead>
300 <?dbfo list-presentation="list"?>
301 <?dbhtml list-presentation="table"?>
302
303 <varlistentry id="chage">
304 <term><command>chage</command></term>
305 <listitem>
306 <para>Used to change the maximum number of days between obligatory
307 password changes</para>
308 <indexterm zone="ch-system-shadow chage">
309 <primary sortas="b-chage">chage</primary>
310 </indexterm>
311 </listitem>
312 </varlistentry>
313
314 <varlistentry id="chfn">
315 <term><command>chfn</command></term>
316 <listitem>
317 <para>Used to change a user's full name and other information</para>
318 <indexterm zone="ch-system-shadow chfn">
319 <primary sortas="b-chfn">chfn</primary>
320 </indexterm>
321 </listitem>
322 </varlistentry>
323
324 <varlistentry id="chgpasswd">
325 <term><command>chgpasswd</command></term>
326 <listitem>
327 <para>Used to update group passwords in batch mode</para>
328 <indexterm zone="ch-system-shadow chgpasswd">
329 <primary sortas="b-chgpasswd">chgpasswd</primary>
330 </indexterm>
331 </listitem>
332 </varlistentry>
333
334 <varlistentry id="chpasswd">
335 <term><command>chpasswd</command></term>
336 <listitem>
337 <para>Used to update user passwords in batch mode</para>
338 <indexterm zone="ch-system-shadow chpasswd">
339 <primary sortas="b-chpasswd">chpasswd</primary>
340 </indexterm>
341 </listitem>
342 </varlistentry>
343
344 <varlistentry id="chsh">
345 <term><command>chsh</command></term>
346 <listitem>
347 <para>Used to change a user's default login shell</para>
348 <indexterm zone="ch-system-shadow chsh">
349 <primary sortas="b-chsh">chsh</primary>
350 </indexterm>
351 </listitem>
352 </varlistentry>
353
354 <varlistentry id="expiry">
355 <term><command>expiry</command></term>
356 <listitem>
357 <para>Checks and enforces the current password expiration policy</para>
358 <indexterm zone="ch-system-shadow expiry">
359 <primary sortas="b-expiry">expiry</primary>
360 </indexterm>
361 </listitem>
362 </varlistentry>
363
364 <varlistentry id="faillog">
365 <term><command>faillog</command></term>
366 <listitem>
367 <para>Is used to examine the log of login failures, to set a maximum
368 number of failures before an account is blocked, and to reset the
369 failure count</para>
370 <indexterm zone="ch-system-shadow faillog">
371 <primary sortas="b-faillog">faillog</primary>
372 </indexterm>
373 </listitem>
374 </varlistentry>
375
376 <varlistentry id="getsubids">
377 <term><command>getsubids</command></term>
378 <listitem>
379 <para>Is used to list the subordinate id ranges for a user</para>
380 <indexterm zone="ch-system-shadow getsubids">
381 <primary sortas="b-getsubids">getsubids</primary>
382 </indexterm>
383 </listitem>
384 </varlistentry>
385
386 <varlistentry id="gpasswd">
387 <term><command>gpasswd</command></term>
388 <listitem>
389 <para>Is used to add and delete members and administrators to
390 groups</para>
391 <indexterm zone="ch-system-shadow gpasswd">
392 <primary sortas="b-gpasswd">gpasswd</primary>
393 </indexterm>
394 </listitem>
395 </varlistentry>
396
397 <varlistentry id="groupadd">
398 <term><command>groupadd</command></term>
399 <listitem>
400 <para>Creates a group with the given name</para>
401 <indexterm zone="ch-system-shadow groupadd">
402 <primary sortas="b-groupadd">groupadd</primary>
403 </indexterm>
404 </listitem>
405 </varlistentry>
406
407 <varlistentry id="groupdel">
408 <term><command>groupdel</command></term>
409 <listitem>
410 <para>Deletes the group with the given name</para>
411 <indexterm zone="ch-system-shadow groupdel">
412 <primary sortas="b-groupdel">groupdel</primary>
413 </indexterm>
414 </listitem>
415 </varlistentry>
416
417 <varlistentry id="groupmems">
418 <term><command>groupmems</command></term>
419 <listitem>
420 <para>Allows a user to administer his/her own group membership list
421 without the requirement of super user privileges.</para>
422 <indexterm zone="ch-system-shadow groupmems">
423 <primary sortas="b-groupmems">groupmems</primary>
424 </indexterm>
425 </listitem>
426 </varlistentry>
427
428 <varlistentry id="groupmod">
429 <term><command>groupmod</command></term>
430 <listitem>
431 <para>Is used to modify the given group's name or GID</para>
432 <indexterm zone="ch-system-shadow groupmod">
433 <primary sortas="b-groupmod">groupmod</primary>
434 </indexterm>
435 </listitem>
436 </varlistentry>
437
438 <varlistentry id="grpck">
439 <term><command>grpck</command></term>
440 <listitem>
441 <para>Verifies the integrity of the group files
442 <filename>/etc/group</filename> and
443 <filename>/etc/gshadow</filename></para>
444 <indexterm zone="ch-system-shadow grpck">
445 <primary sortas="b-grpck">grpck</primary>
446 </indexterm>
447 </listitem>
448 </varlistentry>
449
450 <varlistentry id="grpconv">
451 <term><command>grpconv</command></term>
452 <listitem>
453 <para>Creates or updates the shadow group file from the normal
454 group file</para>
455 <indexterm zone="ch-system-shadow grpconv">
456 <primary sortas="b-grpconv">grpconv</primary>
457 </indexterm>
458 </listitem>
459 </varlistentry>
460
461 <varlistentry id="grpunconv">
462 <term><command>grpunconv</command></term>
463 <listitem>
464 <para>Updates <filename>/etc/group</filename> from
465 <filename>/etc/gshadow</filename> and then deletes the latter</para>
466 <indexterm zone="ch-system-shadow grpunconv">
467 <primary sortas="b-grpunconv">grpunconv</primary>
468 </indexterm>
469 </listitem>
470 </varlistentry>
471
472 <varlistentry id="login">
473 <term><command>login</command></term>
474 <listitem>
475 <para>Is used by the system to let users sign on</para>
476 <indexterm zone="ch-system-shadow login">
477 <primary sortas="b-login">login</primary>
478 </indexterm>
479 </listitem>
480 </varlistentry>
481
482 <varlistentry id="logoutd">
483 <term><command>logoutd</command></term>
484 <listitem>
485 <para>Is a daemon used to enforce restrictions on log-on time
486 and ports</para>
487 <indexterm zone="ch-system-shadow logoutd">
488 <primary sortas="b-logoutd">logoutd</primary>
489 </indexterm>
490 </listitem>
491 </varlistentry>
492
493 <varlistentry id="newgidmap">
494 <term><command>newgidmap</command></term>
495 <listitem>
496 <para>Is used to set the gid mapping of a user namespace</para>
497 <indexterm zone="ch-system-shadow newgidmap">
498 <primary sortas="b-newgidmap">newgidmap</primary>
499 </indexterm>
500 </listitem>
501 </varlistentry>
502
503 <varlistentry id="newgrp">
504 <term><command>newgrp</command></term>
505 <listitem>
506 <para>Is used to change the current GID during a login session</para>
507 <indexterm zone="ch-system-shadow newgrp">
508 <primary sortas="b-newgrp">newgrp</primary>
509 </indexterm>
510 </listitem>
511 </varlistentry>
512
513 <varlistentry id="newuidmap">
514 <term><command>newuidmap</command></term>
515 <listitem>
516 <para>Is used to set the uid mapping of a user namespace</para>
517 <indexterm zone="ch-system-shadow newuidmap">
518 <primary sortas="b-newuidmap">newuidmap</primary>
519 </indexterm>
520 </listitem>
521 </varlistentry>
522
523 <varlistentry id="newusers">
524 <term><command>newusers</command></term>
525 <listitem>
526 <para>Is used to create or update an entire series of user
527 accounts</para>
528 <indexterm zone="ch-system-shadow newusers">
529 <primary sortas="b-newusers">newusers</primary>
530 </indexterm>
531 </listitem>
532 </varlistentry>
533
534 <varlistentry id="nologin">
535 <term><command>nologin</command></term>
536 <listitem>
537 <para>Displays a message saying an account is not available; it is designed
538 to be used as the default shell for disabled accounts</para>
539 <indexterm zone="ch-system-shadow nologin">
540 <primary sortas="b-nologin">nologin</primary>
541 </indexterm>
542 </listitem>
543 </varlistentry>
544
545 <varlistentry id="passwd">
546 <term><command>passwd</command></term>
547 <listitem>
548 <para>Is used to change the password for a user or group account</para>
549 <indexterm zone="ch-system-shadow passwd">
550 <primary sortas="b-passwd">passwd</primary>
551 </indexterm>
552 </listitem>
553 </varlistentry>
554
555 <varlistentry id="pwck">
556 <term><command>pwck</command></term>
557 <listitem>
558 <para>Verifies the integrity of the password files
559 <filename>/etc/passwd</filename> and
560 <filename>/etc/shadow</filename></para>
561 <indexterm zone="ch-system-shadow pwck">
562 <primary sortas="b-pwck">pwck</primary>
563 </indexterm>
564 </listitem>
565 </varlistentry>
566
567 <varlistentry id="pwconv">
568 <term><command>pwconv</command></term>
569 <listitem>
570 <para>Creates or updates the shadow password file from the normal
571 password file</para>
572 <indexterm zone="ch-system-shadow pwconv">
573 <primary sortas="b-pwconv">pwconv</primary>
574 </indexterm>
575 </listitem>
576 </varlistentry>
577
578 <varlistentry id="pwunconv">
579 <term><command>pwunconv</command></term>
580 <listitem>
581 <para>Updates <filename>/etc/passwd</filename> from
582 <filename>/etc/shadow</filename> and then deletes the latter</para>
583 <indexterm zone="ch-system-shadow pwunconv">
584 <primary sortas="b-pwunconv">pwunconv</primary>
585 </indexterm>
586 </listitem>
587 </varlistentry>
588
589 <varlistentry id="sg">
590 <term><command>sg</command></term>
591 <listitem>
592 <para>Executes a given command while the user's GID
593 is set to that of the given group</para>
594 <indexterm zone="ch-system-shadow sg">
595 <primary sortas="b-sg">sg</primary>
596 </indexterm>
597 </listitem>
598 </varlistentry>
599
600 <varlistentry id="su">
601 <term><command>su</command></term>
602 <listitem>
603 <para>Runs a shell with substitute user and group IDs</para>
604 <indexterm zone="ch-system-shadow su">
605 <primary sortas="b-su">su</primary>
606 </indexterm>
607 </listitem>
608 </varlistentry>
609
610 <varlistentry id="useradd">
611 <term><command>useradd</command></term>
612 <listitem>
613 <para>Creates a new user with the given name, or updates the default
614 new-user information</para>
615 <indexterm zone="ch-system-shadow useradd">
616 <primary sortas="b-useradd">useradd</primary>
617 </indexterm>
618 </listitem>
619 </varlistentry>
620
621 <varlistentry id="userdel">
622 <term><command>userdel</command></term>
623 <listitem>
624 <para>Deletes the specified user account</para>
625 <indexterm zone="ch-system-shadow userdel">
626 <primary sortas="b-userdel">userdel</primary>
627 </indexterm>
628 </listitem>
629 </varlistentry>
630
631 <varlistentry id="usermod">
632 <term><command>usermod</command></term>
633 <listitem>
634 <para>Is used to modify the given user's login name, user
635 identification (UID), shell, initial group, home directory, etc.</para>
636 <indexterm zone="ch-system-shadow usermod">
637 <primary sortas="b-usermod">usermod</primary>
638 </indexterm>
639 </listitem>
640 </varlistentry>
641
642 <varlistentry id="vigr">
643 <term><command>vigr</command></term>
644 <listitem>
645 <para>Edits the <filename>/etc/group</filename> or
646 <filename>/etc/gshadow</filename> files</para>
647 <indexterm zone="ch-system-shadow vigr">
648 <primary sortas="b-vigr">vigr</primary>
649 </indexterm>
650 </listitem>
651 </varlistentry>
652
653 <varlistentry id="vipw">
654 <term><command>vipw</command></term>
655 <listitem>
656 <para>Edits the <filename>/etc/passwd</filename> or
657 <filename>/etc/shadow</filename> files</para>
658 <indexterm zone="ch-system-shadow vipw">
659 <primary sortas="b-vipw">vipw</primary>
660 </indexterm>
661 </listitem>
662 </varlistentry>
663
664 <varlistentry id="libsubid">
665 <term><filename class='libraryfile'>libsubid</filename></term>
666 <listitem>
667 <para>library to handle subordinate id ranges for users and groups</para>
668 <indexterm zone="ch-system-shadow libsubid">
669 <primary sortas="c-libsubid">libsubid</primary>
670 </indexterm>
671 </listitem>
672 </varlistentry>
673
674 </variablelist>
675
676 </sect2>
677
678</sect1>
Note: See TracBrowser for help on using the repository browser.