Changeset 54948b7
- Timestamp:
- 11/21/2022 10:13:06 PM (17 months ago)
- Branches:
- 11.3, 11.3-rc1, 12.0, 12.0-rc1, 12.1, 12.1-rc1, bdubbs/gcc13, multilib, renodr/libudev-from-systemd, trunk, xry111/arm64, xry111/arm64-12.0, xry111/clfs-ng, xry111/loongarch, xry111/loongarch-12.0, xry111/loongarch-12.1, xry111/mips64el, xry111/update-glibc
- Children:
- 777f469, f01f8a5
- Parents:
- 651f491
- Location:
- chapter08
- Files:
-
- 5 edited
Legend:
- Unmodified
- Added
- Removed
-
chapter08/acl.xml
r651f491 r54948b7 25 25 26 26 <para>The Acl package contains utilities to administer Access Control Lists, 27 which are used to define morefine-grained discretionary access rights for27 which are used to define fine-grained discretionary access rights for 28 28 files and directories.</para> 29 29 … … 53 53 <screen><userinput remap="make">make</userinput></screen> 54 54 55 <para>The Acl tests need tobe run on a filesystem that supports access56 controls after <application>Coreutils</application> has been built with the57 Acl libraries. If desired, return to this package and run <command>make58 check</command> after <application>Coreutils</application> has been built59 later in this chapter.</para>55 <para>The Acl tests must be run on a filesystem that supports access 56 controls, but not until the <application>Coreutils</application> package has been built, 57 using the <application>Acl</application> libraries. If desired, return to this package 58 and run <command>make check</command> after the <application>Coreutils</application> 59 package has been built.</para> 60 60 61 61 <para>Install the package:</para> -
chapter08/attr.xml
r651f491 r54948b7 24 24 <title/> 25 25 26 <para>The attr package contains utilities to administer the extended27 attributes o nfilesystem objects.</para>26 <para>The Attr package contains utilities to administer the extended 27 attributes of filesystem objects.</para> 28 28 29 29 <segmentedlist> … … 53 53 <screen><userinput remap="make">make</userinput></screen> 54 54 55 <para>The tests need tobe run on a filesystem that supports extended55 <para>The tests must be run on a filesystem that supports extended 56 56 attributes such as the ext2, ext3, or ext4 filesystems. 57 57 To test the results, issue:</para> -
chapter08/libcap.xml
r651f491 r54948b7 24 24 <title/> 25 25 26 <para>The Libcap package implements the user-space interface sto the POSIX27 1003.1e capabilities available in Linux kernels. These capabilities are a28 partition ing of the allpowerful root privilege into a set of distinct26 <para>The Libcap package implements the user-space interface to the POSIX 27 1003.1e capabilities available in Linux kernels. These capabilities 28 partition the all-powerful root privilege into a set of distinct 29 29 privileges.</para> 30 30 … … 117 117 <term><command>getpcaps</command></term> 118 118 <listitem> 119 <para>Displays the capabilities o nthe queried process(es)</para>119 <para>Displays the capabilities of the queried process(es)</para> 120 120 <indexterm zone="ch-system-libcap getpcaps"> 121 121 <primary sortas="b-getpcaps">getpcaps</primary> -
chapter08/mpfr.xml
r651f491 r54948b7 59 59 </important> 60 60 61 <para>Test the results and ensure that all tests passed:</para>61 <para>Test the results and ensure that all 183 tests passed:</para> 62 62 63 63 <screen><userinput remap="test">make check</userinput></screen> -
chapter08/shadow.xml
r651f491 r54948b7 67 67 for user mailboxes that Shadow uses by default to the <filename 68 68 class="directory">/var/mail</filename> location used currently. And, 69 get rid of<filename class="directory">/bin</filename> and70 <filename class="directory">/sbin</filename> from <envar>PATH</envar>,71 since they are simply symlinks to their counterpart in69 remove <filename class="directory">/bin</filename> and 70 <filename class="directory">/sbin</filename> from the <envar>PATH</envar>, 71 since they are simply symlinks to their counterparts in 72 72 <filename class="directory">/usr</filename>.</para> 73 73 74 74 <note> 75 <para>If <filename class="directory">/bin</filename> and/or76 <filename class="directory">/sbin</filename> are preferred to be77 left over in <envar>PATH</envar> for some reason, modify78 <envar>PATH</envar> in <filename>.bashrc</filename> after LFS is75 <para>If you wish to include <filename class="directory">/bin</filename> 76 and/or <filename class="directory">/sbin</filename> in the <envar>PATH</envar> 77 for some reason, modify the 78 <envar>PATH</envar> in <filename>.bashrc</filename> after LFS has been 79 79 built.</para> 80 80 </note> … … 86 86 87 87 <note> 88 <para>If you chose to build Shadow with Cracklib support, run the following:</para>88 <para>If you chose to build Shadow with Cracklib support, issue this command:</para> 89 89 90 90 <screen role="nodump"><userinput>sed -i 's:DICTPATH.*:DICTPATH\t/lib/cracklib/pw_dict:' etc/login.defs</userinput></screen> … … 109 109 110 110 <variablelist> 111 <title>The meaning of the configure option:</title>111 <title>The meaning of the new configuration options:</title> 112 112 113 113 <varlistentry> … … 115 115 <listitem> 116 116 <para>The file <filename>/usr/bin/passwd</filename> needs 117 to exist because its location is hardcoded in some programs, and 118 if it does not exist, the default location is not right.</para> 117 to exist because its location is hardcoded in some programs; 118 if it does not already exist, the installation script will 119 create it in the wrong place.</para> 119 120 </listitem> 120 121 </varlistentry> … … 122 123 <term><parameter>--with-group-name-max-length=32</parameter></term> 123 124 <listitem> 124 <para>The maximumuser name is 32 characters. Make the maximum125 group name the same.</para>125 <para>The longest permissible user name is 32 characters. Make the maximum 126 length of a group name the same.</para> 126 127 </listitem> 127 128 </varlistentry> … … 154 155 tasks. For a full explanation of what <emphasis>password shadowing</emphasis> 155 156 means, see the <filename>doc/HOWTO</filename> file within the unpacked 156 source tree. If usingShadow support, keep in mind that programs which need157 source tree. If you use Shadow support, keep in mind that programs which need 157 158 to verify passwords (display managers, FTP programs, pop3 daemons, etc.) 158 must be Shadow-compliant. That is, they need tobe able to work with159 must be Shadow-compliant. That is, they must be able to work with 159 160 shadowed passwords.</para> 160 161 … … 168 169 169 170 <para>Shadow's default configuration for the <command>useradd</command> 170 utility has a few caveats that needsome explanation. First, the default171 utility needs some explanation. First, the default 171 172 action for the <command>useradd</command> utility is to create the user and 172 a group ofthe same name as the user. By default the user ID (UID) and173 group ID (GID) numbers will begin with1000. This means if you don't pass174 parameters to <command>useradd</command>, each user will be a member of a173 a group with the same name as the user. By default the user ID (UID) and 174 group ID (GID) numbers will begin at 1000. This means if you don't pass 175 extra parameters to <command>useradd</command>, each user will be a member of a 175 176 unique group on the system. If this behavior is undesirable, you'll need 176 to pass one ofthe <parameter>-g</parameter> or <parameter>-N</parameter>177 parameter to <command>useradd</command> or tochange the setting of177 to pass either the <parameter>-g</parameter> or <parameter>-N</parameter> 178 parameter to <command>useradd</command>, or else change the setting of 178 179 <parameter>USERGROUPS_ENAB</parameter> in 179 180 <filename>/etc/login.defs</filename>. See <filename>useradd(8)</filename> … … 181 182 182 183 <para>Second, to change the default parameters, the file 183 <filename>/etc/default/useradd</filename> needs tobe created and tailored184 <filename>/etc/default/useradd</filename> must be created and tailored 184 185 to suit your particular needs. Create it with:</para> 185 186 … … 188 189 189 190 <variablelist> 190 <title><filename>/etc/default/useradd</filename> Parameter Explanations</title>191 <title><filename>/etc/default/useradd</filename> parameter explanations</title> 191 192 192 193 <varlistentry> … … 195 196 <para>This parameter sets the beginning of the group numbers used in 196 197 the <filename>/etc/group</filename> file. The particular value 999 197 comes from the <parameter>--gid</parameter> parameter above. You can198 m odify it to anything you desire.198 comes from the <parameter>--gid</parameter> parameter above. You 199 may set it to any desired value. 199 200 200 201 Note that <command>useradd</command> will never reuse a UID or GID. 201 202 If the number identified in this parameter is used, it will use the 202 203 next available number. Note also that if you don't have a group with 203 an ID equal to this number on your system the first time you use204 an ID equal to this number on your system, then the first time you use 204 205 <command>useradd</command> without the <parameter>-g</parameter> 205 parameter, you will get a message displayed on the terminal that206 says: <computeroutput>useradd:unknown GID 999</computeroutput>,207 although the account is correctly created. That is why we have206 parameter, an error message will be generated—<computeroutput>useradd: 207 unknown GID 999</computeroutput>, 208 even though the account has been created correctly. That is why we 208 209 created the group <systemitem class="groupname">users</systemitem> 209 210 with this group ID in <xref linkend='ch-tools-createfiles'/>.</para> … … 215 216 <listitem> 216 217 <para>This parameter causes <command>useradd</command> to create a 217 mailbox file for the newly createduser. <command>useradd</command>218 will makethe group ownership of this file to the218 mailbox file for each new user. <command>useradd</command> 219 will assign the group ownership of this file to the 219 220 <systemitem class="groupname">mail</systemitem> group with 0660 220 permissions. If you would prefer that these mailbox files are not 221 created by <command>useradd</command>, issue the following 222 command:</para> 221 permissions. If you would rather not create these files, 222 issue the following command:</para> 223 223 224 224 <screen><userinput>sed -i '/MAIL/s/yes/no/' /etc/default/useradd</userinput></screen> … … 231 231 232 232 <sect2 role="configuration"> 233 <title>Setting the root password</title>233 <title>Setting the Root Password</title> 234 234 235 235 <para>Choose a password for user <emphasis>root</emphasis> and set it … … 330 330 <listitem> 331 331 <para>Is used to examine the log of login failures, to set a maximum 332 number of failures before an account is blocked, orto reset the332 number of failures before an account is blocked, and to reset the 333 333 failure count</para> 334 334 <indexterm zone="ch-system-shadow faillog"> … … 510 510 <term><command>nologin</command></term> 511 511 <listitem> 512 <para>Displays a message that an account is not available; it is designed 513 to be used as the default shell for accounts that have been 514 disabled</para> 512 <para>Displays a message saying an account is not available; it is designed 513 to be used as the default shell for disabled accounts</para> 515 514 <indexterm zone="ch-system-shadow nologin"> 516 515 <primary sortas="b-nologin">nologin</primary> … … 598 597 <term><command>userdel</command></term> 599 598 <listitem> 600 <para>Deletes the givenuser account</para>599 <para>Deletes the specified user account</para> 601 600 <indexterm zone="ch-system-shadow userdel"> 602 601 <primary sortas="b-userdel">userdel</primary> … … 608 607 <term><command>usermod</command></term> 609 608 <listitem> 610 <para>Is used to modify the given user's login name, User611 Identification (UID), shell, initial group, home directory, etc.</para>609 <para>Is used to modify the given user's login name, user 610 identification (UID), shell, initial group, home directory, etc.</para> 612 611 <indexterm zone="ch-system-shadow usermod"> 613 612 <primary sortas="b-usermod">usermod</primary> … … 641 640 <term><filename class='libraryfile'>libsubid</filename></term> 642 641 <listitem> 643 <para>library for process subordinate id ranges for users</para>642 <para>library for processing subordinate id ranges for users</para> 644 643 <indexterm zone="ch-system-shadow libsubid"> 645 644 <primary sortas="c-libsubid">libsubid</primary>
Note:
See TracChangeset
for help on using the changeset viewer.