source: chapter08/shadow.xml@ 4aa6831f

12.1 multilib trunk xry111/arm64 xry111/loongarch xry111/loongarch-12.1 xry111/mips64el
Last change on this file since 4aa6831f was ea93c11, checked in by Xi Ruoyao <xry111@…>, 4 months ago

treewide: Use <ulink> instead of <filename> for man pages

"gcc(1)" is really not a file name.

Use <ulink> and link to the online man page on
https://man.archlinux.org/ so the user can refer to the man pages more
easily.

The change is done via a sed command and long lines are wrapped
manually.
  • Property mode set to 100644
File size: 24.3 KB
Line 
1<?xml version="1.0" encoding="UTF-8"?>
2<!DOCTYPE sect1 PUBLIC "-//OASIS//DTD DocBook XML V4.5//EN"
3 "http://www.oasis-open.org/docbook/xml/4.5/docbookx.dtd" [
4 <!ENTITY % general-entities SYSTEM "../general.ent">
5 %general-entities;
6]>
7
8<sect1 id="ch-system-shadow" role="wrap">
9 <?dbhtml filename="shadow.html"?>
10
11 <sect1info condition="script">
12 <productname>shadow</productname>
13 <productnumber>&shadow-version;</productnumber>
14 <address>&shadow-url;</address>
15 </sect1info>
16
17 <title>Shadow-&shadow-version;</title>
18
19 <indexterm zone="ch-system-shadow">
20 <primary sortas="a-Shadow">Shadow</primary>
21 </indexterm>
22
23 <sect2 role="package">
24 <title/>
25
26 <para>The Shadow package contains programs for handling passwords in a secure
27 way.</para>
28
29 <segmentedlist>
30 <segtitle>&buildtime;</segtitle>
31 <segtitle>&diskspace;</segtitle>
32
33 <seglistitem>
34 <seg>&shadow-fin-sbu;</seg>
35 <seg>&shadow-fin-du;</seg>
36 </seglistitem>
37 </segmentedlist>
38
39 </sect2>
40
41 <sect2 role="installation">
42 <title>Installation of Shadow</title>
43
44 <note>
45 <para>If you would like to enforce the use of strong passwords, refer to
46 <ulink url="&blfs-book;postlfs/cracklib.html"/> for installing
47 CrackLib prior to building Shadow. Then add
48 <parameter>--with-libcrack</parameter> to the <command>configure</command>
49 command below.</para>
50 </note>
51
52 <para>Disable the installation of the <command>groups</command> program
53 and its man pages, as Coreutils provides a better version. Also,
54 prevent the installation of manual pages that were already installed in
55 <xref linkend="ch-system-man-pages"/>:</para>
56
57<screen><userinput remap="pre">sed -i 's/groups$(EXEEXT) //' src/Makefile.in
58find man -name Makefile.in -exec sed -i 's/groups\.1 / /' {} \;
59find man -name Makefile.in -exec sed -i 's/getspnam\.3 / /' {} \;
60find man -name Makefile.in -exec sed -i 's/passwd\.5 / /' {} \;</userinput></screen>
61
62 <para id="shadow-login_defs">Instead of using the default
63 <emphasis>crypt</emphasis> method, use the much more secure
64 <emphasis>YESCRYPT</emphasis> method of password encryption, which also
65 allows passwords longer than 8 characters.
66 It is also necessary to change
67 the obsolete <filename class="directory">/var/spool/mail</filename> location
68 for user mailboxes that Shadow uses by default to the <filename
69 class="directory">/var/mail</filename> location used currently. And,
70 remove <filename class="directory">/bin</filename> and
71 <filename class="directory">/sbin</filename> from the <envar>PATH</envar>,
72 since they are simply symlinks to their counterparts in
73 <filename class="directory">/usr</filename>.</para>
74
75 <note>
76 <para>If you wish to include <filename class="directory">/bin</filename>
77 and/or <filename class="directory">/sbin</filename> in the <envar>PATH</envar>
78 for some reason, modify the
79 <envar>PATH</envar> in <filename>.bashrc</filename> after LFS has been
80 built.</para>
81 </note>
82
83<screen><userinput remap="pre">sed -e 's:#ENCRYPT_METHOD DES:ENCRYPT_METHOD YESCRYPT:' \
84 -e 's:/var/spool/mail:/var/mail:' \
85 -e '/PATH=/{s@/sbin:@@;s@/bin:@@}' \
86 -i etc/login.defs</userinput></screen>
87
88 <note>
89 <para>If you chose to build Shadow with Cracklib support, issue this command:</para>
90
91<screen role="nodump"><userinput>sed -i 's:DICTPATH.*:DICTPATH\t/lib/cracklib/pw_dict:' etc/login.defs</userinput></screen>
92 </note>
93<!--
94 <para>Make a minor change to make the first group number generated
95 by useradd 1000:</para>
96
97<screen><userinput remap="pre">sed -i 's/1000/999/' etc/useradd</userinput></screen>
98-->
99<!--
100 <para>Fix a simple programming error by modifying a file with following command:</para>
101
102<screen><userinput remap="pre">sed -e "224s/rounds/min_rounds/" -i libmisc/salt.c</userinput></screen>
103-->
104 <para>Prepare Shadow for compilation:</para>
105
106<screen><userinput remap="configure">touch /usr/bin/passwd
107./configure --sysconfdir=/etc \
108 --disable-static \
109 --with-{b,yes}crypt \
110 --without-libbsd \
111 --with-group-name-max-length=32</userinput></screen>
112
113 <variablelist>
114 <title>The meaning of the new configuration options:</title>
115
116 <varlistentry>
117 <term><command>touch /usr/bin/passwd</command></term>
118 <listitem>
119 <para>The file <filename>/usr/bin/passwd</filename> needs
120 to exist because its location is hardcoded in some programs;
121 if it does not already exist, the installation script will
122 create it in the wrong place.</para>
123 </listitem>
124 </varlistentry>
125
126 <varlistentry>
127 <term><parameter>--with-{b,yes}crypt</parameter></term>
128 <listitem>
129 <para>The shell expands this to two switches,
130 <parameter>--with-bcrypt</parameter> and
131 <parameter>--with-yescrypt</parameter>. They allow shadow to use
132 the Bcrypt and Yescrypt algorithms implemented by
133 <application>Libxcrypt</application> for hashing passwords.
134 These algorithms are more secure (in particular, much more
135 resistant to GPU-based attacks) than the traditional SHA
136 algorithms.</para>
137 </listitem>
138 </varlistentry>
139
140 <varlistentry>
141 <term><parameter>--with-group-name-max-length=32</parameter></term>
142 <listitem>
143 <para>The longest permissible user name is 32 characters. Make the maximum
144 length of a group name the same.</para>
145 </listitem>
146 </varlistentry>
147
148 <varlistentry>
149 <term><parameter>--without-libbsd</parameter></term>
150 <listitem>
151 <para>Do not use the readpassphrase function from libbsd which
152 is not in LFS. Use the internal copy instead.</para>
153 </listitem>
154 </varlistentry>
155
156 </variablelist>
157
158 <para>Compile the package:</para>
159
160 <screen><userinput remap="make">make</userinput></screen>
161
162 <para>This package does not come with a test suite.</para>
163
164 <para>Install the package:</para>
165
166 <screen><userinput remap="install">make exec_prefix=/usr install
167make -C man install-man</userinput></screen>
168
169 </sect2>
170
171 <sect2 id="conf-shadow" role="configuration">
172 <title>Configuring Shadow</title>
173
174 <indexterm zone="conf-shadow">
175 <primary sortas="a-Shadow">Shadow</primary>
176 <secondary>configuring</secondary>
177 </indexterm>
178
179 <para>This package contains utilities to add, modify, and delete users and
180 groups; set and change their passwords; and perform other administrative
181 tasks. For a full explanation of what <emphasis>password shadowing</emphasis>
182 means, see the <filename>doc/HOWTO</filename> file within the unpacked
183 source tree. If you use Shadow support, keep in mind that programs which need
184 to verify passwords (display managers, FTP programs, pop3 daemons, etc.)
185 must be Shadow-compliant. That is, they must be able to work with
186 shadowed passwords.</para>
187
188 <para>To enable shadowed passwords, run the following command:</para>
189
190<screen><userinput>pwconv</userinput></screen>
191
192 <para>To enable shadowed group passwords, run:</para>
193
194<screen><userinput>grpconv</userinput></screen>
195
196 <para>Shadow's default configuration for the <command>useradd</command>
197 utility needs some explanation. First, the default
198 action for the <command>useradd</command> utility is to create the user and
199 a group with the same name as the user. By default the user ID (UID) and
200 group ID (GID) numbers will begin at 1000. This means if you don't pass
201 extra parameters to <command>useradd</command>, each user will be a member of a
202 unique group on the system. If this behavior is undesirable, you'll need
203 to pass either the <parameter>-g</parameter> or <parameter>-N</parameter>
204 parameter to <command>useradd</command>, or else change the setting of
205 <parameter>USERGROUPS_ENAB</parameter> in
206 <filename>/etc/login.defs</filename>. See <ulink role='man'
207 url='&man;useradd.8'>useradd(8)</ulink> for more information.</para>
208
209 <para>Second, to change the default parameters, the file
210 <filename>/etc/default/useradd</filename> must be created and tailored
211 to suit your particular needs. Create it with:</para>
212
213<screen><userinput>mkdir -p /etc/default
214useradd -D --gid 999</userinput></screen>
215
216 <variablelist>
217 <title><filename>/etc/default/useradd</filename> parameter explanations</title>
218
219 <varlistentry>
220 <term><parameter>GROUP=999</parameter></term>
221 <listitem>
222 <para>This parameter sets the beginning of the group numbers used in
223 the <filename>/etc/group</filename> file. The particular value 999
224 comes from the <parameter>--gid</parameter> parameter above. You
225 may set it to any desired value.
226
227 Note that <command>useradd</command> will never reuse a UID or GID.
228 If the number identified in this parameter is used, it will use the
229 next available number. Note also that if you don't have a group with
230 an ID equal to this number on your system, then the first time you use
231 <command>useradd</command> without the <parameter>-g</parameter>
232 parameter, an error message will be generated&mdash;<computeroutput>useradd:
233 unknown GID 999</computeroutput>,
234 even though the account has been created correctly. That is why we
235 created the group <systemitem class="groupname">users</systemitem>
236 with this group ID in <xref linkend='ch-tools-createfiles'/>.</para>
237
238 </listitem>
239 </varlistentry>
240 <varlistentry>
241 <term><parameter>CREATE_MAIL_SPOOL=yes</parameter></term>
242 <listitem>
243 <para>This parameter causes <command>useradd</command> to create a
244 mailbox file for each new user. <command>useradd</command>
245 will assign the group ownership of this file to the
246 <systemitem class="groupname">mail</systemitem> group with 0660
247 permissions. If you would rather not create these files,
248 issue the following command:</para>
249
250<screen><userinput>sed -i '/MAIL/s/yes/no/' /etc/default/useradd</userinput></screen>
251 </listitem>
252 </varlistentry>
253
254 </variablelist>
255
256 </sect2>
257
258 <sect2 role="configuration">
259 <title>Setting the Root Password</title>
260
261 <para>Choose a password for user <emphasis>root</emphasis> and set it
262 by running:</para>
263
264<screen role="nodump"><userinput>passwd root</userinput></screen>
265
266 </sect2>
267
268 <sect2 id="contents-shadow" role="content">
269 <title>Contents of Shadow</title>
270
271 <segmentedlist>
272 <segtitle>Installed programs</segtitle>
273 <segtitle>Installed directories</segtitle>
274 <segtitle>Installed libraries</segtitle>
275
276 <seglistitem>
277 <seg>chage, chfn, chgpasswd, chpasswd, chsh, expiry, faillog,
278 getsubids, gpasswd, groupadd, groupdel, groupmems, groupmod, grpck,
279 grpconv, grpunconv, login, logoutd, newgidmap, newgrp,
280 newuidmap, newusers, nologin, passwd, pwck, pwconv, pwunconv,
281 sg (link to newgrp), su, useradd, userdel, usermod,
282 vigr (link to vipw), and vipw</seg>
283 <seg>/etc/default and /usr/include/shadow</seg>
284 <seg>libsubid.so</seg>
285 </seglistitem>
286 </segmentedlist>
287
288 <variablelist>
289 <bridgehead renderas="sect3">Short Descriptions</bridgehead>
290 <?dbfo list-presentation="list"?>
291 <?dbhtml list-presentation="table"?>
292
293 <varlistentry id="chage">
294 <term><command>chage</command></term>
295 <listitem>
296 <para>Used to change the maximum number of days between obligatory
297 password changes</para>
298 <indexterm zone="ch-system-shadow chage">
299 <primary sortas="b-chage">chage</primary>
300 </indexterm>
301 </listitem>
302 </varlistentry>
303
304 <varlistentry id="chfn">
305 <term><command>chfn</command></term>
306 <listitem>
307 <para>Used to change a user's full name and other information</para>
308 <indexterm zone="ch-system-shadow chfn">
309 <primary sortas="b-chfn">chfn</primary>
310 </indexterm>
311 </listitem>
312 </varlistentry>
313
314 <varlistentry id="chgpasswd">
315 <term><command>chgpasswd</command></term>
316 <listitem>
317 <para>Used to update group passwords in batch mode</para>
318 <indexterm zone="ch-system-shadow chgpasswd">
319 <primary sortas="b-chgpasswd">chgpasswd</primary>
320 </indexterm>
321 </listitem>
322 </varlistentry>
323
324 <varlistentry id="chpasswd">
325 <term><command>chpasswd</command></term>
326 <listitem>
327 <para>Used to update user passwords in batch mode</para>
328 <indexterm zone="ch-system-shadow chpasswd">
329 <primary sortas="b-chpasswd">chpasswd</primary>
330 </indexterm>
331 </listitem>
332 </varlistentry>
333
334 <varlistentry id="chsh">
335 <term><command>chsh</command></term>
336 <listitem>
337 <para>Used to change a user's default login shell</para>
338 <indexterm zone="ch-system-shadow chsh">
339 <primary sortas="b-chsh">chsh</primary>
340 </indexterm>
341 </listitem>
342 </varlistentry>
343
344 <varlistentry id="expiry">
345 <term><command>expiry</command></term>
346 <listitem>
347 <para>Checks and enforces the current password expiration policy</para>
348 <indexterm zone="ch-system-shadow expiry">
349 <primary sortas="b-expiry">expiry</primary>
350 </indexterm>
351 </listitem>
352 </varlistentry>
353
354 <varlistentry id="faillog">
355 <term><command>faillog</command></term>
356 <listitem>
357 <para>Is used to examine the log of login failures, to set a maximum
358 number of failures before an account is blocked, and to reset the
359 failure count</para>
360 <indexterm zone="ch-system-shadow faillog">
361 <primary sortas="b-faillog">faillog</primary>
362 </indexterm>
363 </listitem>
364 </varlistentry>
365
366 <varlistentry id="getsubids">
367 <term><command>getsubids</command></term>
368 <listitem>
369 <para>Is used to list the subordinate id ranges for a user</para>
370 <indexterm zone="ch-system-shadow getsubids">
371 <primary sortas="b-getsubids">getsubids</primary>
372 </indexterm>
373 </listitem>
374 </varlistentry>
375
376 <varlistentry id="gpasswd">
377 <term><command>gpasswd</command></term>
378 <listitem>
379 <para>Is used to add and delete members and administrators to
380 groups</para>
381 <indexterm zone="ch-system-shadow gpasswd">
382 <primary sortas="b-gpasswd">gpasswd</primary>
383 </indexterm>
384 </listitem>
385 </varlistentry>
386
387 <varlistentry id="groupadd">
388 <term><command>groupadd</command></term>
389 <listitem>
390 <para>Creates a group with the given name</para>
391 <indexterm zone="ch-system-shadow groupadd">
392 <primary sortas="b-groupadd">groupadd</primary>
393 </indexterm>
394 </listitem>
395 </varlistentry>
396
397 <varlistentry id="groupdel">
398 <term><command>groupdel</command></term>
399 <listitem>
400 <para>Deletes the group with the given name</para>
401 <indexterm zone="ch-system-shadow groupdel">
402 <primary sortas="b-groupdel">groupdel</primary>
403 </indexterm>
404 </listitem>
405 </varlistentry>
406
407 <varlistentry id="groupmems">
408 <term><command>groupmems</command></term>
409 <listitem>
410 <para>Allows a user to administer his/her own group membership list
411 without the requirement of super user privileges.</para>
412 <indexterm zone="ch-system-shadow groupmems">
413 <primary sortas="b-groupmems">groupmems</primary>
414 </indexterm>
415 </listitem>
416 </varlistentry>
417
418 <varlistentry id="groupmod">
419 <term><command>groupmod</command></term>
420 <listitem>
421 <para>Is used to modify the given group's name or GID</para>
422 <indexterm zone="ch-system-shadow groupmod">
423 <primary sortas="b-groupmod">groupmod</primary>
424 </indexterm>
425 </listitem>
426 </varlistentry>
427
428 <varlistentry id="grpck">
429 <term><command>grpck</command></term>
430 <listitem>
431 <para>Verifies the integrity of the group files
432 <filename>/etc/group</filename> and
433 <filename>/etc/gshadow</filename></para>
434 <indexterm zone="ch-system-shadow grpck">
435 <primary sortas="b-grpck">grpck</primary>
436 </indexterm>
437 </listitem>
438 </varlistentry>
439
440 <varlistentry id="grpconv">
441 <term><command>grpconv</command></term>
442 <listitem>
443 <para>Creates or updates the shadow group file from the normal
444 group file</para>
445 <indexterm zone="ch-system-shadow grpconv">
446 <primary sortas="b-grpconv">grpconv</primary>
447 </indexterm>
448 </listitem>
449 </varlistentry>
450
451 <varlistentry id="grpunconv">
452 <term><command>grpunconv</command></term>
453 <listitem>
454 <para>Updates <filename>/etc/group</filename> from
455 <filename>/etc/gshadow</filename> and then deletes the latter</para>
456 <indexterm zone="ch-system-shadow grpunconv">
457 <primary sortas="b-grpunconv">grpunconv</primary>
458 </indexterm>
459 </listitem>
460 </varlistentry>
461
462 <varlistentry id="login">
463 <term><command>login</command></term>
464 <listitem>
465 <para>Is used by the system to let users sign on</para>
466 <indexterm zone="ch-system-shadow login">
467 <primary sortas="b-login">login</primary>
468 </indexterm>
469 </listitem>
470 </varlistentry>
471
472 <varlistentry id="logoutd">
473 <term><command>logoutd</command></term>
474 <listitem>
475 <para>Is a daemon used to enforce restrictions on log-on time
476 and ports</para>
477 <indexterm zone="ch-system-shadow logoutd">
478 <primary sortas="b-logoutd">logoutd</primary>
479 </indexterm>
480 </listitem>
481 </varlistentry>
482
483 <varlistentry id="newgidmap">
484 <term><command>newgidmap</command></term>
485 <listitem>
486 <para>Is used to set the gid mapping of a user namespace</para>
487 <indexterm zone="ch-system-shadow newgidmap">
488 <primary sortas="b-newgidmap">newgidmap</primary>
489 </indexterm>
490 </listitem>
491 </varlistentry>
492
493 <varlistentry id="newgrp">
494 <term><command>newgrp</command></term>
495 <listitem>
496 <para>Is used to change the current GID during a login session</para>
497 <indexterm zone="ch-system-shadow newgrp">
498 <primary sortas="b-newgrp">newgrp</primary>
499 </indexterm>
500 </listitem>
501 </varlistentry>
502
503 <varlistentry id="newuidmap">
504 <term><command>newuidmap</command></term>
505 <listitem>
506 <para>Is used to set the uid mapping of a user namespace</para>
507 <indexterm zone="ch-system-shadow newuidmap">
508 <primary sortas="b-newuidmap">newuidmap</primary>
509 </indexterm>
510 </listitem>
511 </varlistentry>
512
513 <varlistentry id="newusers">
514 <term><command>newusers</command></term>
515 <listitem>
516 <para>Is used to create or update an entire series of user
517 accounts</para>
518 <indexterm zone="ch-system-shadow newusers">
519 <primary sortas="b-newusers">newusers</primary>
520 </indexterm>
521 </listitem>
522 </varlistentry>
523
524 <varlistentry id="nologin">
525 <term><command>nologin</command></term>
526 <listitem>
527 <para>Displays a message saying an account is not available; it is designed
528 to be used as the default shell for disabled accounts</para>
529 <indexterm zone="ch-system-shadow nologin">
530 <primary sortas="b-nologin">nologin</primary>
531 </indexterm>
532 </listitem>
533 </varlistentry>
534
535 <varlistentry id="passwd">
536 <term><command>passwd</command></term>
537 <listitem>
538 <para>Is used to change the password for a user or group account</para>
539 <indexterm zone="ch-system-shadow passwd">
540 <primary sortas="b-passwd">passwd</primary>
541 </indexterm>
542 </listitem>
543 </varlistentry>
544
545 <varlistentry id="pwck">
546 <term><command>pwck</command></term>
547 <listitem>
548 <para>Verifies the integrity of the password files
549 <filename>/etc/passwd</filename> and
550 <filename>/etc/shadow</filename></para>
551 <indexterm zone="ch-system-shadow pwck">
552 <primary sortas="b-pwck">pwck</primary>
553 </indexterm>
554 </listitem>
555 </varlistentry>
556
557 <varlistentry id="pwconv">
558 <term><command>pwconv</command></term>
559 <listitem>
560 <para>Creates or updates the shadow password file from the normal
561 password file</para>
562 <indexterm zone="ch-system-shadow pwconv">
563 <primary sortas="b-pwconv">pwconv</primary>
564 </indexterm>
565 </listitem>
566 </varlistentry>
567
568 <varlistentry id="pwunconv">
569 <term><command>pwunconv</command></term>
570 <listitem>
571 <para>Updates <filename>/etc/passwd</filename> from
572 <filename>/etc/shadow</filename> and then deletes the latter</para>
573 <indexterm zone="ch-system-shadow pwunconv">
574 <primary sortas="b-pwunconv">pwunconv</primary>
575 </indexterm>
576 </listitem>
577 </varlistentry>
578
579 <varlistentry id="sg">
580 <term><command>sg</command></term>
581 <listitem>
582 <para>Executes a given command while the user's GID
583 is set to that of the given group</para>
584 <indexterm zone="ch-system-shadow sg">
585 <primary sortas="b-sg">sg</primary>
586 </indexterm>
587 </listitem>
588 </varlistentry>
589
590 <varlistentry id="su">
591 <term><command>su</command></term>
592 <listitem>
593 <para>Runs a shell with substitute user and group IDs</para>
594 <indexterm zone="ch-system-shadow su">
595 <primary sortas="b-su">su</primary>
596 </indexterm>
597 </listitem>
598 </varlistentry>
599
600 <varlistentry id="useradd">
601 <term><command>useradd</command></term>
602 <listitem>
603 <para>Creates a new user with the given name, or updates the default
604 new-user information</para>
605 <indexterm zone="ch-system-shadow useradd">
606 <primary sortas="b-useradd">useradd</primary>
607 </indexterm>
608 </listitem>
609 </varlistentry>
610
611 <varlistentry id="userdel">
612 <term><command>userdel</command></term>
613 <listitem>
614 <para>Deletes the specified user account</para>
615 <indexterm zone="ch-system-shadow userdel">
616 <primary sortas="b-userdel">userdel</primary>
617 </indexterm>
618 </listitem>
619 </varlistentry>
620
621 <varlistentry id="usermod">
622 <term><command>usermod</command></term>
623 <listitem>
624 <para>Is used to modify the given user's login name, user
625 identification (UID), shell, initial group, home directory, etc.</para>
626 <indexterm zone="ch-system-shadow usermod">
627 <primary sortas="b-usermod">usermod</primary>
628 </indexterm>
629 </listitem>
630 </varlistentry>
631
632 <varlistentry id="vigr">
633 <term><command>vigr</command></term>
634 <listitem>
635 <para>Edits the <filename>/etc/group</filename> or
636 <filename>/etc/gshadow</filename> files</para>
637 <indexterm zone="ch-system-shadow vigr">
638 <primary sortas="b-vigr">vigr</primary>
639 </indexterm>
640 </listitem>
641 </varlistentry>
642
643 <varlistentry id="vipw">
644 <term><command>vipw</command></term>
645 <listitem>
646 <para>Edits the <filename>/etc/passwd</filename> or
647 <filename>/etc/shadow</filename> files</para>
648 <indexterm zone="ch-system-shadow vipw">
649 <primary sortas="b-vipw">vipw</primary>
650 </indexterm>
651 </listitem>
652 </varlistentry>
653
654 <varlistentry id="libsubid">
655 <term><filename class='libraryfile'>libsubid</filename></term>
656 <listitem>
657 <para>library to handle subordinate id ranges for users and groups</para>
658 <indexterm zone="ch-system-shadow libsubid">
659 <primary sortas="c-libsubid">libsubid</primary>
660 </indexterm>
661 </listitem>
662 </varlistentry>
663
664 </variablelist>
665
666 </sect2>
667
668</sect1>
Note: See TracBrowser for help on using the repository browser.