Hello community, here is the log from the commit of package opensuse-manuals_en for openSUSE:11.4 checked in at Sun Feb 20 19:26:22 CET 2011. -------- --- old-versions/11.4/all/opensuse-manuals_en/opensuse-manuals_en.changes 2011-01-19 10:26:35.000000000 +0100 +++ /mounts/work_src_done/11.4/opensuse-manuals_en/opensuse-manuals_en.changes 2011-02-18 16:55:23.000000000 +0100 @@ -1,0 +2,6 @@ +Fri Feb 18 16:33:54 CET 2011 - ke@suse.de + +- Major update of text and image files. +- Enable Tuning Guide (PDF) again. + +------------------------------------------------------------------- calling whatdependson for 11.4-i586 New: ---- opensuse-tuning_en-graphics.tar.bz2 opensuse-tuning_en.tar.bz2 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ opensuse-manuals_en.spec ++++++ --- /var/tmp/diff_new_pack.1Qycit/_old 2011-02-20 19:26:07.000000000 +0100 +++ /var/tmp/diff_new_pack.1Qycit/_new 2011-02-20 19:26:07.000000000 +0100 @@ -22,7 +22,7 @@ %define my_lang en %define my_book opensuse-html Version: 11.4 -Release: 2 +Release: 6.<RELEASE2> #BREQ Provides: locale(desktop-data-openSUSE:en) #OBS @@ -36,6 +36,8 @@ Source31: opensuse-security_en-graphics.tar.bz2 Source40: opensuse-kvm_en.tar.bz2 Source41: opensuse-kvm_en-graphics.tar.bz2 +Source50: opensuse-tuning_en.tar.bz2 +Source51: opensuse-tuning_en-graphics.tar.bz2 #SOURCES Source901: doc_pre_checkin.sh Source903: attributes @@ -121,6 +123,16 @@ %description -n opensuse-kvm_en-pdf This guide introduces basic concepts of virtualization with KVM. +%package -n opensuse-tuning_en-pdf +Group: Documentation/SUSE +License: GFDLv1.2 +Summary: openSUSE manual: Tuning Guide (PDF, English) +#Provides: locale(desktop-data-openSUSE:en) +###PDFOBS + +%description -n opensuse-tuning_en-pdf +This guide introduces basic concepts of system tuning. + %prep #%%setup -c -q %setup -c -q -n %{name}-%{version}/opensuse-html -a 01 @@ -128,6 +140,7 @@ %setup -c -q -T -n %{name}-%{version}/opensuse-reference -a 20 -a 21 %setup -c -q -T -n %{name}-%{version}/opensuse-security -a 30 -a 31 %setup -c -q -T -n %{name}-%{version}/opensuse-kvm -a 40 -a 41 +%setup -c -q -T -n %{name}-%{version}/opensuse-tuning -a 50 -a 51 #PREP %setup -c -q -T -D -n %{name}-%{version} find -name '*.png' -o -name '*.svg' | xargs chmod 644 || : @@ -179,6 +192,15 @@ # make %%{?jobs:-j%%jobs} unpacked-document-files-pdf make package-pdf popd +pushd %{my_all_dir} +cp %{_builddir}/%{name}-%{version}/opensuse-tuning/ENV-opensuse-tuning . +. ENV-opensuse-tuning +# # this causes trouble with file names, thus use make package-pdf... +# make validate +# make %%{?jobs:-j%%jobs} color-pdf +# make %%{?jobs:-j%%jobs} unpacked-document-files-pdf +make package-pdf +popd #MAKE_DOC %install @@ -375,6 +397,16 @@ %dir %{_datadir}/kde4 %{_datadir}/kde4/apps/khelpcenter/plugins/opensuse-kvm_en-pdf.desktop +%files -n opensuse-tuning_en-pdf +%defattr(-, root, root) +%doc */package-pdf-opensuse-tuning/opensuse-tuning_en.pdf +%{_datadir}/help/opensuse-tuning_en-pdf.document +%dir %{_datadir}/kde4/apps/khelpcenter/plugins +%dir %{_datadir}/kde4/apps/khelpcenter +%dir %{_datadir}/kde4/apps +%dir %{_datadir}/kde4 +%{_datadir}/kde4/apps/khelpcenter/plugins/opensuse-tuning_en-pdf.desktop + #PDFFILES %files ++++++ opensuse-html_en-graphics.tar.bz2 ++++++ old-versions/11.4/all/opensuse-manuals_en/opensuse-html_en-graphics.tar.bz2 /mounts/work_src_done/11.4/opensuse-manuals_en/opensuse-html_en-graphics.tar.bz2 differ: char 11, line 1 ++++++ opensuse-html_en.tar.bz2 ++++++ ++++ 7896 lines of diff (skipped) ++++++ opensuse-kvm_en-graphics.tar.bz2 ++++++ Files old/images/src/png/kvm_vminstall_step4.png and new/images/src/png/kvm_vminstall_step4.png differ Files old/images/src/png/qemu_guest_partman.png and new/images/src/png/qemu_guest_partman.png differ Files old/images/src/png/qemu_sles_vnc.png and new/images/src/png/qemu_sles_vnc.png differ Files old/images/src/png/qemu_vnc_pwd.png and new/images/src/png/qemu_vnc_pwd.png differ Files old/images/src/png/qemu_win_sles.png and new/images/src/png/qemu_win_sles.png differ Files old/images/src/png/qemu_yast_bridge_eth0.png and new/images/src/png/qemu_yast_bridge_eth0.png differ Files old/images/src/png/virt_virt-manager.png and new/images/src/png/virt_virt-manager.png differ Files old/images/src/png/virt_virt-manager_storage.png and new/images/src/png/virt_virt-manager_storage.png differ Files old/images/src/png/virt_virt-manager_storage_add.png and new/images/src/png/virt_virt-manager_storage_add.png differ Files old/images/src/png/virt_virt-manager_storage_add_details.png and new/images/src/png/virt_virt-manager_storage_add_details.png differ Files old/images/src/png/virt_virt-viewer.png and new/images/src/png/virt_virt-viewer.png differ ++++++ opensuse-kvm_en.tar.bz2 ++++++ diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/xml/MAIN.opensuse.xml new/xml/MAIN.opensuse.xml --- old/xml/MAIN.opensuse.xml 2011-01-19 10:24:42.000000000 +0100 +++ new/xml/MAIN.opensuse.xml 2011-02-18 16:26:02.000000000 +0100 @@ -20,7 +20,7 @@ <xi:include xmlns:xi="http://www.w3.org/2001/XInclude" href="book_security.xml"/> - <xi:include xmlns:xi="http://www.w3.org/2001/XInclude" href="book_opensuse_tuning.xml"/> + <xi:include xmlns:xi="http://www.w3.org/2001/XInclude" href="book_tuning.xml"/> - <xi:include xmlns:xi="http://www.w3.org/2001/XInclude" href="book_opensuse_kvm.xml"/> + <xi:include xmlns:xi="http://www.w3.org/2001/XInclude" href="book_kvm.xml"/> </set> diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/xml/book_kvm.xml new/xml/book_kvm.xml --- old/xml/book_kvm.xml 1970-01-01 01:00:00.000000000 +0100 +++ new/xml/book_kvm.xml 2011-02-18 16:26:08.000000000 +0100 @@ -0,0 +1,53 @@ +<?xml version="1.0" encoding="UTF-8"?> +<!DOCTYPE book PUBLIC "-//Novell//DTD NovDoc XML V1.0//EN" "novdocx.dtd" [ + <!ENTITY % NOVDOC.DEACTIVATE.IDREF "INCLUDE"> + <!ENTITY % entities SYSTEM "entity-decl.ent"> + %entities; +]> +<!-- +********************************* +Please see LICENSE.txt for this document's license. +********************************* +--> +<?provo dirname="virtualization/"?><book xml:base="book_kvm.xml" lang="en" id="book.kvm"> + <bookinfo> + <title>&kvmguide;</title><productname>&productname;</productname> + <productnumber>&productnumber;</productnumber><date> +<?dbtimestamp format="B d, Y"?> +</date> + <xi:include xmlns:xi="http://www.w3.org/2001/XInclude" os="osuse" href="common_copyright_opensuse.xml"/> + + </bookinfo> + <xi:include xmlns:xi="http://www.w3.org/2001/XInclude" href="kvm_intro.xml"/> + <part> + <title>Requirements, Limitations, and Support Status</title> + <xi:include xmlns:xi="http://www.w3.org/2001/XInclude" href="kvm_requirements.xml"/> + <xi:include xmlns:xi="http://www.w3.org/2001/XInclude" href="kvm_limitations.xml"/> + <xi:include xmlns:xi="http://www.w3.org/2001/XInclude" href="kvm_support_status.xml"/> + </part> + <part> + <title>Managing Virtual Machines with &libvirt;</title> + <xi:include xmlns:xi="http://www.w3.org/2001/XInclude" href="libvirt_overview.xml"/> + <xi:include xmlns:xi="http://www.w3.org/2001/XInclude" href="libvirt_guest_installation.xml"/> + <xi:include xmlns:xi="http://www.w3.org/2001/XInclude" href="libvirt_managing.xml"/> + <xi:include xmlns:xi="http://www.w3.org/2001/XInclude" href="libvirt_connect.xml"/> + <xi:include xmlns:xi="http://www.w3.org/2001/XInclude" href="libvirt_stor_net.xml"/> + <xi:include xmlns:xi="http://www.w3.org/2001/XInclude" href="libvirt_configuration.xml"/> + <xi:include xmlns:xi="http://www.w3.org/2001/XInclude" href="libvirt_admin.xml"/> + </part> + + <part> + <title>Managing Virtual Machines with &qemu;</title> + <xi:include xmlns:xi="http://www.w3.org/2001/XInclude" href="qemu_overview.xml"/> + <xi:include xmlns:xi="http://www.w3.org/2001/XInclude" href="qemu_guest_installation.xml"/> + <xi:include xmlns:xi="http://www.w3.org/2001/XInclude" href="qemu_running_vms_qemukvm.xml"/> + <xi:include xmlns:xi="http://www.w3.org/2001/XInclude" href="qemu_monitor.xml"/> + </part> + + + + + + <xi:include xmlns:xi="http://www.w3.org/2001/XInclude" href="kvm_appendix.xml"/> + <xi:include xmlns:xi="http://www.w3.org/2001/XInclude" href="common_legal.xml"/> +</book> diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/xml/book_opensuse_kvm.xml new/xml/book_opensuse_kvm.xml --- old/xml/book_opensuse_kvm.xml 2011-01-19 10:24:48.000000000 +0100 +++ new/xml/book_opensuse_kvm.xml 1970-01-01 01:00:00.000000000 +0100 @@ -1,52 +0,0 @@ -<?xml version="1.0" encoding="UTF-8"?> -<!DOCTYPE book PUBLIC "-//Novell//DTD NovDoc XML V1.0//EN" "novdocx.dtd" [ - <!ENTITY % NOVDOC.DEACTIVATE.IDREF "INCLUDE"> - <!ENTITY % entities SYSTEM "entity-decl.ent"> - %entities; -]> -<!-- -********************************* -Please see LICENSE.txt for this document's license. -********************************* ---> -<?provo dirname="virtualization/"?><book xml:base="book_opensuse_kvm.xml" lang="en" id="book.kvm"> - <bookinfo> - <title>&kvmguide;</title><productname>&productname;</productname> - <productnumber>&productnumber;</productnumber><date> -<?dbtimestamp format="B d, Y"?> -</date> - <xi:include xmlns:xi="http://www.w3.org/2001/XInclude" href="common_copyright_opensuse.xml"/> - </bookinfo> - <xi:include xmlns:xi="http://www.w3.org/2001/XInclude" href="kvm_intro.xml"/> - <part> - <title>Requirements, Limitations, and Support Status</title> - <xi:include xmlns:xi="http://www.w3.org/2001/XInclude" href="kvm_requirements.xml"/> - <xi:include xmlns:xi="http://www.w3.org/2001/XInclude" href="kvm_limitations.xml"/> - <xi:include xmlns:xi="http://www.w3.org/2001/XInclude" href="kvm_support_status.xml"/> - </part> - <part> - <title>Managing Virtual Machines with &libvirt;</title> - <xi:include xmlns:xi="http://www.w3.org/2001/XInclude" href="libvirt_overview.xml"/> - <xi:include xmlns:xi="http://www.w3.org/2001/XInclude" href="libvirt_guest_installation.xml"/> - <xi:include xmlns:xi="http://www.w3.org/2001/XInclude" href="libvirt_managing.xml"/> - <xi:include xmlns:xi="http://www.w3.org/2001/XInclude" href="libvirt_connect.xml"/> - <xi:include xmlns:xi="http://www.w3.org/2001/XInclude" href="libvirt_stor_net.xml"/> - <xi:include xmlns:xi="http://www.w3.org/2001/XInclude" href="libvirt_configuration.xml"/> - <xi:include xmlns:xi="http://www.w3.org/2001/XInclude" href="libvirt_admin.xml"/> - </part> - - <part> - <title>Managing Virtual Machines with &qemu;</title> - <xi:include xmlns:xi="http://www.w3.org/2001/XInclude" href="qemu_overview.xml"/> - <xi:include xmlns:xi="http://www.w3.org/2001/XInclude" href="qemu_guest_installation.xml"/> - <xi:include xmlns:xi="http://www.w3.org/2001/XInclude" href="qemu_running_vms_qemukvm.xml"/> - <xi:include xmlns:xi="http://www.w3.org/2001/XInclude" href="qemu_monitor.xml"/> - </part> - - - - - - <xi:include xmlns:xi="http://www.w3.org/2001/XInclude" href="kvm_appendix.xml"/> - <xi:include xmlns:xi="http://www.w3.org/2001/XInclude" href="common_legal.xml"/> -</book> diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/xml/common_copyright_opensuse.xml new/xml/common_copyright_opensuse.xml --- old/xml/common_copyright_opensuse.xml 2011-01-19 10:24:49.000000000 +0100 +++ new/xml/common_copyright_opensuse.xml 2011-02-18 16:26:09.000000000 +0100 @@ -11,7 +11,8 @@ --> <legalnotice xml:base="common_copyright_opensuse.xml"> <para> - Copyright © 2006–<?dbtimestamp format="Y"?> + Copyright © 2006– +<?dbtimestamp format="Y"?> Novell, Inc. and contributors. All rights reserved. </para> diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/xml/common_intro_available_doc_i.xml new/xml/common_intro_available_doc_i.xml --- old/xml/common_intro_available_doc_i.xml 2011-01-19 10:24:49.000000000 +0100 +++ new/xml/common_intro_available_doc_i.xml 2011-02-18 16:26:09.000000000 +0100 @@ -25,17 +25,19 @@ </para> - <variablelist os="osuse;sles;sled"> + + <variablelist> + <varlistentry os="osuse"> <term><xref linkend="book.opensuse.startup"/> </term> <listitem> <para> - Guides you through the installation and basic configuration of your - system. For newcomers, the manual also introduces basic Linux concepts - such as the file system, the user concept and access permissions and - gives an overview of the features &productname; offers to support - mobile computing. Provides help and advice in troubleshooting. + Guides you step-by-step through the installation of &productname; from + DVD, or from an ISO image, gives short introductions to the GNOME and KDE + desktops including some key applications running on it. Also gives an + overview of &libo; and its modules for writing texts, working with + spreadsheets, or creating graphics and presentations. </para> </listitem> </varlistentry> @@ -59,7 +61,7 @@ </varlistentry> - <varlistentry os="osuse;sles;sled"> + <varlistentry> <term><xref linkend="book.security"/> </term> <listitem> @@ -72,61 +74,39 @@ </para> </listitem> </varlistentry> - - - - - - </variablelist> - - <para os="osuse;sles;sled"> - In addition to the comprehensive manuals, several quick start guides are - available: - </para> - - <variablelist os="osuse;sles;sled"> - <varlistentry os="osuse;sled"> - <term><xref linkend="art.kdequick"/> - </term> - <listitem> - <para> - Gives a short introduction to the KDE desktop and some key applications - running on it. - </para> - </listitem> - </varlistentry> - <varlistentry os="osuse;sled"> - <term><xref linkend="art.gnomequick"/> + <varlistentry> + <term><xref linkend="book.tuning"/> </term> <listitem> <para> - Gives a short introduction to the GNOME desktop and some key - applications running on it. + An administrator's guide for problem detection, resolution and + optimization. Find how to inspect and optimize your system by means of + monitoring tools and how to efficiently manage resources. Also contains + an overview of common problems and solutions and of additional help and + documentation resources. </para> </listitem> </varlistentry> - <varlistentry os="sled;sles;osuse"> - <term><xref linkend="art.osuse.installquick" os="osuse"/> + <varlistentry> + <term><xref linkend="book.kvm"/> </term> <listitem> <para> - Lists the system requirements and guides you step-by-step through the - installation of &productname; from DVD, or from an ISO image. + This manual offers an introduction to setting up and managing + virtualization with &kvm; (Kernel-based Virtual Machine) on + &productname;. Also shows how to manage &vmguest;s with &libvirt; and + &qemu;. </para> </listitem> </varlistentry> - <varlistentry> - <term>&aaquick;</term> - <listitem> - <para> - Helps you understand the main concepts behind &naareg;. - </para> - </listitem> - </varlistentry> </variablelist> + + + + <para> Find HTML versions of most product manuals in your installed system under <filename>/usr/share/doc/manual</filename> or in the help centers of your diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/xml/common_intro_source_code_i.xml new/xml/common_intro_source_code_i.xml --- old/xml/common_intro_source_code_i.xml 2011-01-19 10:24:49.000000000 +0100 +++ new/xml/common_intro_source_code_i.xml 2011-02-18 16:26:09.000000000 +0100 @@ -11,7 +11,9 @@ --> <sect1 xml:base="common_intro_source_code_i.xml"> <title>Source Code</title> + + <para> The source code of &productname; is publicly available. To download the source code, proceed as outlined under diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/xml/entity-decl.ent new/xml/entity-decl.ent --- old/xml/entity-decl.ent 2011-01-18 13:02:01.000000000 +0100 +++ new/xml/entity-decl.ent 2011-02-17 10:40:22.000000000 +0100 @@ -59,7 +59,8 @@ <!ENTITY yelp "Help"> <!ENTITY khc "KDE help center"> <!ENTITY umtsmon "UMTSmon"> -<!ENTITY ooo "OpenOffice.org"> +<!-- deprecated - use &libo; instead --> +<!ENTITY ooo "&libo;"> <!ENTITY libo "LibreOffice"> <!ENTITY aide "AIDE"> @@ -75,7 +76,7 @@ <!ENTITY gnomequick "GNOME Quick Start"> <!ENTITY kdequick "KDE Quick Start"> <!ENTITY moblinquick "Moblin Quick Start"> -<!ENTITY oofficequick "OpenOffice.org Quick Start"> +<!ENTITY oofficequick "&ooo; Quick Start"> <!ENTITY apps "Application Guide"> <!ENTITY admin "Administration Guide"> <!ENTITY reference "Reference"> @@ -171,7 +172,9 @@ <!ENTITY musicplayer "Banshee"> <!ENTITY musicplayerreg "Banshee™"> <!ENTITY zenup "Software Updater"> -<!ENTITY updater "openSUSE Updater"> +<!ENTITY updater "GNOME Update Applet/KDE Software Updater"> +<!ENTITY gupdater "Update Applet"> <!-- GNOME Updater--> +<!ENTITY kupdater "Software Updater"> <!-- KDE Updater --> <!ENTITY aa "AppArmor"> <!ENTITY aareg "AppArmor®"> <!ENTITY naa "Novell AppArmor"> @@ -228,11 +231,7 @@ <!ENTITY productcreator "Product Creator"> <!ENTITY nomad "Nomad"> <!ENTITY cpufreq "CPUfreq"> - - - - - +<!ENTITY altf2 '<keycombo><keycap function="alt"/><keycap>F2</keycap></keycombo>'> <!ENTITY wypublic "/srv/www/yast/public/"> <!ENTITY mac "<replaceable>MAC</replaceable>"> diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/xml/kvm_appendix.xml new/xml/kvm_appendix.xml --- old/xml/kvm_appendix.xml 2011-01-19 10:24:53.000000000 +0100 +++ new/xml/kvm_appendix.xml 2011-02-18 16:26:13.000000000 +0100 @@ -282,7 +282,7 @@ directly. Open a terminal and enter the following command (replace <replaceable>NAME</replaceable> with the name of you Windows 7 &vmguest;). If operating from a remote host, also specify a - connection URl with the <option>-c</option> parameter. + connection URL with the <option>-c</option> parameter. </para> <screen>virsh edit <replaceable>NAME</replaceable></screen> <para> ++++++ opensuse-reference_en-graphics.tar.bz2 ++++++ old-versions/11.4/all/opensuse-manuals_en/opensuse-reference_en-graphics.tar.bz2 /mounts/work_src_done/11.4/opensuse-manuals_en/opensuse-reference_en-graphics.tar.bz2 differ: char 11, line 1 ++++++ opensuse-reference_en.tar.bz2 ++++++ ++++ 8013 lines of diff (skipped) ++++++ opensuse-security_en-graphics.tar.bz2 ++++++ Files old/images/src/png/y2_aa_main.png and new/images/src/png/y2_aa_main.png differ Files old/images/src/png/yast2_inst_nisclient.png and new/images/src/png/yast2_inst_nisclient.png differ Files old/images/src/png/yast2_inst_nisserver2.png and new/images/src/png/yast2_inst_nisserver2.png differ Files old/images/src/png/yast2_nis1_no_nis_installed.png and new/images/src/png/yast2_nis1_no_nis_installed.png differ Files old/images/src/png/yast2_nis_hosts.png and new/images/src/png/yast2_nis_hosts.png differ Files old/images/src/png/yast2_nis_maps.png and new/images/src/png/yast2_nis_maps.png differ Files old/images/src/png/yast2_nis_master.png and new/images/src/png/yast2_nis_master.png differ ++++++ opensuse-security_en.tar.bz2 ++++++ diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/xml/MAIN.opensuse.xml new/xml/MAIN.opensuse.xml --- old/xml/MAIN.opensuse.xml 2011-01-19 10:24:09.000000000 +0100 +++ new/xml/MAIN.opensuse.xml 2011-02-18 16:25:30.000000000 +0100 @@ -20,7 +20,7 @@ <xi:include xmlns:xi="http://www.w3.org/2001/XInclude" href="book_security.xml"/> - <xi:include xmlns:xi="http://www.w3.org/2001/XInclude" href="book_opensuse_tuning.xml"/> + <xi:include xmlns:xi="http://www.w3.org/2001/XInclude" href="book_tuning.xml"/> - <xi:include xmlns:xi="http://www.w3.org/2001/XInclude" href="book_opensuse_kvm.xml"/> + <xi:include xmlns:xi="http://www.w3.org/2001/XInclude" href="book_kvm.xml"/> </set> diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/xml/common_copyright_opensuse.xml new/xml/common_copyright_opensuse.xml --- old/xml/common_copyright_opensuse.xml 2011-01-19 10:24:16.000000000 +0100 +++ new/xml/common_copyright_opensuse.xml 2011-02-18 16:25:36.000000000 +0100 @@ -11,7 +11,8 @@ --> <legalnotice xml:base="common_copyright_opensuse.xml"> <para> - Copyright © 2006–<?dbtimestamp format="Y"?> + Copyright © 2006– +<?dbtimestamp format="Y"?> Novell, Inc. and contributors. All rights reserved. </para> diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/xml/common_intro_available_doc_i.xml new/xml/common_intro_available_doc_i.xml --- old/xml/common_intro_available_doc_i.xml 2011-01-19 10:24:16.000000000 +0100 +++ new/xml/common_intro_available_doc_i.xml 2011-02-18 16:25:36.000000000 +0100 @@ -25,17 +25,19 @@ </para> - <variablelist os="osuse;sles;sled"> + + <variablelist> + <varlistentry os="osuse"> <term><xref linkend="book.opensuse.startup"/> </term> <listitem> <para> - Guides you through the installation and basic configuration of your - system. For newcomers, the manual also introduces basic Linux concepts - such as the file system, the user concept and access permissions and - gives an overview of the features &productname; offers to support - mobile computing. Provides help and advice in troubleshooting. + Guides you step-by-step through the installation of &productname; from + DVD, or from an ISO image, gives short introductions to the GNOME and KDE + desktops including some key applications running on it. Also gives an + overview of &libo; and its modules for writing texts, working with + spreadsheets, or creating graphics and presentations. </para> </listitem> </varlistentry> @@ -59,7 +61,7 @@ </varlistentry> - <varlistentry os="osuse;sles;sled"> + <varlistentry> <term><xref linkend="book.security"/> </term> <listitem> @@ -72,61 +74,39 @@ </para> </listitem> </varlistentry> - - - - - - </variablelist> - - <para os="osuse;sles;sled"> - In addition to the comprehensive manuals, several quick start guides are - available: - </para> - - <variablelist os="osuse;sles;sled"> - <varlistentry os="osuse;sled"> - <term><xref linkend="art.kdequick"/> - </term> - <listitem> - <para> - Gives a short introduction to the KDE desktop and some key applications - running on it. - </para> - </listitem> - </varlistentry> - <varlistentry os="osuse;sled"> - <term><xref linkend="art.gnomequick"/> + <varlistentry> + <term><xref linkend="book.tuning"/> </term> <listitem> <para> - Gives a short introduction to the GNOME desktop and some key - applications running on it. + An administrator's guide for problem detection, resolution and + optimization. Find how to inspect and optimize your system by means of + monitoring tools and how to efficiently manage resources. Also contains + an overview of common problems and solutions and of additional help and + documentation resources. </para> </listitem> </varlistentry> - <varlistentry os="sled;sles;osuse"> - <term><xref linkend="art.osuse.installquick" os="osuse"/> + <varlistentry> + <term><xref linkend="book.kvm"/> </term> <listitem> <para> - Lists the system requirements and guides you step-by-step through the - installation of &productname; from DVD, or from an ISO image. + This manual offers an introduction to setting up and managing + virtualization with &kvm; (Kernel-based Virtual Machine) on + &productname;. Also shows how to manage &vmguest;s with &libvirt; and + &qemu;. </para> </listitem> </varlistentry> - <varlistentry> - <term>&aaquick;</term> - <listitem> - <para> - Helps you understand the main concepts behind &naareg;. - </para> - </listitem> - </varlistentry> </variablelist> + + + + <para> Find HTML versions of most product manuals in your installed system under <filename>/usr/share/doc/manual</filename> or in the help centers of your diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/xml/common_intro_source_code_i.xml new/xml/common_intro_source_code_i.xml --- old/xml/common_intro_source_code_i.xml 2011-01-19 10:24:16.000000000 +0100 +++ new/xml/common_intro_source_code_i.xml 2011-02-18 16:25:37.000000000 +0100 @@ -11,7 +11,9 @@ --> <sect1 xml:base="common_intro_source_code_i.xml"> <title>Source Code</title> + + <para> The source code of &productname; is publicly available. To download the source code, proceed as outlined under diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/xml/entity-decl.ent new/xml/entity-decl.ent --- old/xml/entity-decl.ent 2011-01-18 13:02:01.000000000 +0100 +++ new/xml/entity-decl.ent 2011-02-17 10:40:22.000000000 +0100 @@ -59,7 +59,8 @@ <!ENTITY yelp "Help"> <!ENTITY khc "KDE help center"> <!ENTITY umtsmon "UMTSmon"> -<!ENTITY ooo "OpenOffice.org"> +<!-- deprecated - use &libo; instead --> +<!ENTITY ooo "&libo;"> <!ENTITY libo "LibreOffice"> <!ENTITY aide "AIDE"> @@ -75,7 +76,7 @@ <!ENTITY gnomequick "GNOME Quick Start"> <!ENTITY kdequick "KDE Quick Start"> <!ENTITY moblinquick "Moblin Quick Start"> -<!ENTITY oofficequick "OpenOffice.org Quick Start"> +<!ENTITY oofficequick "&ooo; Quick Start"> <!ENTITY apps "Application Guide"> <!ENTITY admin "Administration Guide"> <!ENTITY reference "Reference"> @@ -171,7 +172,9 @@ <!ENTITY musicplayer "Banshee"> <!ENTITY musicplayerreg "Banshee™"> <!ENTITY zenup "Software Updater"> -<!ENTITY updater "openSUSE Updater"> +<!ENTITY updater "GNOME Update Applet/KDE Software Updater"> +<!ENTITY gupdater "Update Applet"> <!-- GNOME Updater--> +<!ENTITY kupdater "Software Updater"> <!-- KDE Updater --> <!ENTITY aa "AppArmor"> <!ENTITY aareg "AppArmor®"> <!ENTITY naa "Novell AppArmor"> @@ -228,11 +231,7 @@ <!ENTITY productcreator "Product Creator"> <!ENTITY nomad "Nomad"> <!ENTITY cpufreq "CPUfreq"> - - - - - +<!ENTITY altf2 '<keycombo><keycap function="alt"/><keycap>F2</keycap></keycombo>'> <!ENTITY wypublic "/srv/www/yast/public/"> <!ENTITY mac "<replaceable>MAC</replaceable>"> diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/xml/security_ad_support.xml new/xml/security_ad_support.xml --- old/xml/security_ad_support.xml 2011-01-19 10:24:25.000000000 +0100 +++ new/xml/security_ad_support.xml 2011-02-18 16:25:45.000000000 +0100 @@ -147,7 +147,7 @@ clients trust Kerberos's authorization of another client's identity, enabling kerberized single-sign-on (SSO) solutions. Windows supports a Kerberos implementation, making Kerberos SSO possible even with Linux - clients. . + clients. </para> </listitem> </varlistentry> @@ -211,13 +211,13 @@ join the existing LDAP and Kerberos SSO environment provided by the Window domain controller. The entire join process is handled by the &yast; Domain Membership module, which can be run during installation or - in the installed system: + in the installed system. The steps involved are: </para> <procedure> <step performance="required"> <para> - The Windows domain controller providing both LDAP and KDC (Key - Distribution Center) services is located. + The Windows domain controller, providing both LDAP and KDC (Key + Distribution Center) services, is located. </para> </step> <step performance="required"> @@ -276,12 +276,12 @@ </term> <listitem> <para> - The user sees a message stating that the password has expired and - needs to be changed. The system prompts for a new password and - informs the user if the new password does not comply with corporate - password policies (for example the password is too short, too simple, - or already in the history). If a user's password change fails, the - reason is shown and a new password prompt is given. + A message stating that the password has expired and needs to be changed + is displayed. The system prompts for a new password and informs the + user if the new password does not comply with corporate password + policies (for example the password is too short, too simple, or already + in the history). If a user's password change fails, the reason is shown + and a new password prompt is given. </para> </listitem> </varlistentry> @@ -426,9 +426,9 @@ <term>NTP</term> <listitem> <para> - To succeed with Kerberos authentication, the client must have have its + To succeed with Kerberos authentication, the client must have its time set accurately. It is highly recommended to use a central NTP - time server for this purpose (this can be also the NTP server running + time server for this purpose (this can also be the NTP server running on your Active Directory domain controller). If the clock skew between your Linux host and the domain controller exceeds a certain limit, Kerberos authentication fails and the client is logged in using the @@ -527,7 +527,7 @@ name), &yast; must rely on NetBIOS name resolution instead of DNS to find the correct domain controller. To select from a list of available domains instead, use <guimenu>Browse</guimenu> to list the NetBIOS - domains then select the desired domain. + domains, then select the desired domain. </para> <figure id="fig.ad.smbclient"> <title>Determining Windows Domain Membership</title> @@ -566,8 +566,8 @@ <para> Select <guimenu>Expert Settings</guimenu>, if you want to change the UID and GID ranges for the Samba users and groups. Let DHCP retrieve - the WINS server only if you need it. This is the case when some of your - machines are resolved only by the WINS system. + the WINS server only if you need it. This applies when some of your + machines are resolved by the WINS system only. </para> </step> <step performance="required"> @@ -687,9 +687,8 @@ <sect2 id="sec.security.ad.login.console"> <title>Console Login</title> <para> - As well as logging into the AD client machine using a graphical - front-end, you can log in using the text-based console login or even - remotely using SSH. + You can not only log in to the AD client machine using a graphical + front-end, but also by using the text-based console login or by using SSH. </para> <para> To log in to your AD client from a console, enter @@ -728,7 +727,7 @@ password that meets the corporate security policy. The underlying PAM module retrieves the current password policy settings from the domain controller, informing the user about the specific password quality - requirements a user account typically has by means of a message on login. + requirements a user account typically has, by means of a message on login. Like its Windows counterpart, &productname; presents a message describing: </para> @@ -763,7 +762,7 @@ </para> <para> - GDM and KDM provide feedback about password expiration and the prompt for + GDM and KDM provide feedback about password expiration and prompt for new passwords in an interactive mode. To change passwords in the display managers, just provide the password information when prompted. </para> @@ -797,9 +796,9 @@ </step> <step performance="required"> <para> - Reenter the new password for confirmation. If your new password does - not comply with the policies on the Windows server, this feedback is - given to you and you are prompted for another password. + Reenter the new password for confirmation. If your new password does not + comply with the policies on the Windows server, you are prompted for + another password. </para> </step> </procedure> diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/xml/security_cryptofs.xml new/xml/security_cryptofs.xml --- old/xml/security_cryptofs.xml 2011-01-19 10:24:25.000000000 +0100 +++ new/xml/security_cryptofs.xml 2011-02-18 16:25:45.000000000 +0100 @@ -168,7 +168,7 @@ <note> <title>Additional Software Required</title> <para> - After checking <guimenu>Encrypt device</guimenu>, a popup window + After checking <guimenu>Encrypt device</guimenu>, a pop-up window asking for installing additional software may appear. Confirm to install all the required packages to ensure that the encrypted partition works well. diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/xml/security_intro.xml new/xml/security_intro.xml --- old/xml/security_intro.xml 2011-01-19 10:24:25.000000000 +0100 +++ new/xml/security_intro.xml 2011-02-18 16:25:46.000000000 +0100 @@ -20,7 +20,7 @@ encryption and intrusion detection. In the network security part you learn how to secure your computers with firewalls and masquerading, and how to set up virtual private networks (VPN). This manual also - shows you how to make use of the product inherent security software + shows you how to make use of the product's inherent security software like &naa; (which lets you specify per program which files the program may read, write, and execute). </para> diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/xml/security_kerberos.xml new/xml/security_kerberos.xml --- old/xml/security_kerberos.xml 2011-01-19 10:24:25.000000000 +0100 +++ new/xml/security_kerberos.xml 2011-02-18 16:25:46.000000000 +0100 @@ -20,7 +20,7 @@ identify its users properly, except through the usual password mechanisms. In common installations, the user must enter the password each time a service inside the network is accessed. Kerberos provides an - authentication method with which a user registers once then is trusted in + authentication method with which a user registers only once and is trusted in the complete network for the rest of the session. To have a secure network, the following requirements must be met: </para> @@ -140,7 +140,7 @@ <listitem> <para> Kerberos ensures that both client and server can be sure of each - others identity. They share a session key, which they can use to + other's identity. They share a session key, which they can use to communicate securely. </para> </listitem> @@ -198,7 +198,7 @@ To ensure Kerberos is working correctly, run both the authentication and ticket-granting server on a dedicated machine. Make sure that only the administrator can access this machine physically and over the network. - Reduce the (networking) services run on it to the absolute + Reduce the (networking) services running on it to the absolute minimum—do not even run <systemitem class="daemon">sshd</systemitem>. </para> @@ -219,7 +219,7 @@ <itemizedlist mark="bullet" spacing="normal"> <listitem> <para> - The names both of the client and the ticket-granting server + The names of both, the client and the ticket-granting server </para> </listitem> <listitem> @@ -395,25 +395,24 @@ </listitem> </itemizedlist> <para> - The new ticket is assigned a lifetime, which is the lesser of the - remaining lifetime of the ticket-granting ticket and the default for the - service. The client receives this ticket and the session key, which are - sent by the ticket-granting service, but this time the answer is - encrypted with the session key that came with the original + The new ticket has a lifetime, which is either the remaining lifetime of + the ticket-granting ticket or the default for the service. The lesser of + both values is assigned. The client receives this ticket and the session + key, which are sent by the ticket-granting service, but this time the + answer is encrypted with the session key that came with the original ticket-granting ticket. The client can decrypt the response without requiring the user's password when a new service is contacted. Kerberos - can thus acquire ticket after ticket for the client without bothering - the user more than once at login time. + can thus acquire ticket after ticket for the client without bothering the + user. </para> </sect2> <sect2 id="sec.security.kerberos.how.win"> <title>Compatibility to Windows 2000</title> <para> - Windows 2000 contains a Microsoft implementation of Kerberos 5. Because + Windows 2000 contains a Microsoft implementation of Kerberos 5. &productnamereg; uses the MIT implementation of Kerberos 5, find useful - information and guidance in the MIT documentation. See - <xref linkend="sec.security.kerberos.info"/>. + information and guidance in the MIT documentation at <xref linkend="sec.security.kerberos.info"/>. </para> </sect2> </sect1> @@ -649,7 +648,7 @@ another realm. </para> <para> - For the sake of simplicity, assume you are setting up just one realm for + For the sake of simplicity, let us assume you are setting up just one realm for your entire organization. For the remainder of this section, the realm name <literal>EXAMPLE.COM</literal> is used in all examples. </para> @@ -787,15 +786,15 @@ <para> This section covers the initial configuration and installation of the KDC, including the creation of an administrative principal. This - procedure is consists of several steps: + procedure consists of several steps: </para> <procedure> <step performance="required"> <formalpara> <title>Install the RPMs</title> <para> - On a machine designated as the KDC, install special software - packages. Use &yast; to install the + On a machine designated as the KDC, install the following software + packages: <systemitem class="resource">krb5</systemitem>, <systemitem class="resource">krb5-server</systemitem> and <systemitem class="resource">krb5-client</systemitem> @@ -880,7 +879,7 @@ Your next step is to initialize the database where Kerberos keeps all information about principals. Set up the database master key, which is used to protect the database from accidental disclosure (in particular - when it is backed up to tape). The master key is derived from a pass + if it is backed up to tape). The master key is derived from a pass phrase and is stored in a file called the stash file. This is so you do not need to enter the password every time the KDC is restarted. Make sure that you choose a good pass phrase, such as a sentence from a book @@ -923,7 +922,7 @@ </callout> <callout arearefs="co.kerb.kdb5.pass.repeat"> <para> - Type password again. + Type the password again. </para> </callout> </calloutlist> @@ -1016,7 +1015,7 @@ Rather than manually editing all relevant configuration files when configuring a Kerberos client, let &yast; do the job for you. You can either perform the client configuration during the installation of your - machine or in the installed system: + machine or in the installed system as follows: </para> <procedure> <step performance="required"> @@ -1147,7 +1146,7 @@ Configuration</guimenu>, which opens the &yast; NTP client dialog that is described in <xref linkend="sec.netz.xntp.yast"/>. After finishing the configuration, &yast; performs all the necessary - changes and the Kerberos client is ready for use. + changes and the Kerberos client is ready to use. </para> </listitem> </itemizedlist> @@ -1213,7 +1212,7 @@ <filename>/etc/krb5.conf</filename>. The file installed by default contains various sample entries. Erase all of these entries before starting. <filename>krb5.conf</filename> is made up of several - sections (stanzas), each introduced by the section name included in + sections (stanzas), each introduced by the section name in brackets like <literal>[this]</literal>. </para> <para> @@ -1339,7 +1338,7 @@ <primary>configuration files</primary> <secondary>krb5.conf</secondary></indexterm> <screen>[libdefaults] - clockskew = 120</screen> + clockskew = 60</screen> </sect4> </sect3> </sect2> @@ -1657,7 +1656,7 @@ is a programming interface that is not specific to Kerberos—it was designed to hide the peculiarities of the underlying authentication system, be it Kerberos, a public-key authentication system like SPKM, or - others. The included GSSAPI library supports only Kerberos, however. + others. However, the included GSSAPI library only supports Kerberos. </para> <para> To use sshd with Kerberos authentication, edit @@ -1688,7 +1687,7 @@ <secondary>ssh_config</secondary></indexterm> <para> You should now be able to connect using Kerberos authentication. Use - <command>klist</command> to verify that you have a valid ticket then + <command>klist</command> to verify that you have a valid ticket, then connect to the SSH server. To force SSH protocol version 1, specify the <literal>-1</literal> option on the command line. </para> @@ -1710,7 +1709,7 @@ <secondary>Kerberos and</secondary></indexterm> <para> When using Kerberos, one way to distribute the user information (such as - user ID, groups,and home directory) in your local network is to use + user ID, groups, and home directory) in your local network is to use LDAP. This requires a strong authentication mechanism that prevents packet spoofing and other attacks. One solution is to use Kerberos for LDAP communication, too. diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/xml/security_ldap.xml new/xml/security_ldap.xml --- old/xml/security_ldap.xml 2011-01-19 10:24:25.000000000 +0100 +++ new/xml/security_ldap.xml 2011-02-18 16:25:46.000000000 +0100 @@ -30,7 +30,7 @@ </para> </abstract> <para> - It is crucial within a network environment to keep important information + In a network environment it is crucial to keep important information structured and to serve it quickly. A directory service—like the common yellow pages, keeps information available in a well-structured and readily-searchable form. @@ -49,12 +49,13 @@ </para> <itemizedlist mark="bullet" spacing="normal"> <listitem> + <para> To make multiple concurrent reading accesses possible, the number of updates is usually very low. The number of read and write accesses is often limited to a few users with administrative privileges. - Conventional databases are optimized for accepting the largest possible - data volume in a short time. + In contrast, conventional databases are optimized for accepting the + largest possible data volume in a short time. </para> </listitem> <listitem> @@ -85,21 +86,20 @@ <para> - Unix system administrator traditionally use NIS (Network Information + Unix system administrators traditionally use NIS (Network Information Service) for name resolution and data distribution in a network. The configuration data contained in the files <filename>group</filename>, <filename>hosts</filename>, <filename>mail</filename>, <filename>netgroup</filename>, <filename>networks</filename>, <filename>passwd</filename>, <filename>printcap</filename>, <filename>protocols</filename>, <filename>rpc</filename>, and - <filename>services</filename> in the <filename>/etc</filename> directory - are distributed by clients - - all over the network. These files can be maintained without major effort - because they are simple text files. The handling of larger amounts of - data, however, becomes increasingly difficult due to nonexistent - structuring. NIS is only designed for Unix platforms, and is not suitable - as a centralized data administration tool in heterogeneous networks. + <filename>services</filename> in the <filename>/etc</filename> directory is + distributed to clients all over the network. These files can be maintained + without major effort because they are simple text files. The handling of + larger amounts of data, however, becomes increasingly difficult due to + nonexistent structuring. NIS is only designed for Unix platforms, and is + not suitable as a centralized data administration tool in heterogeneous + networks. </para> <para> @@ -381,7 +381,7 @@ <callout arearefs="co.ldap.schema.core.desc"> <para> A brief description of the attribute with <literal>DESC</literal>. The - corresponding RFC on which the definition is based is also mentioned + corresponding RFC, on which the definition is based, is also mentioned here. </para> </callout> @@ -485,8 +485,7 @@ <para> To set up an LDAP server for user account data, make sure the <systemitem>yast2-ldap-server</systemitem> and - <systemitem>openldap2</systemitem> packages and packages they depend on - are installed. Then proceed as follows: + <systemitem>openldap2</systemitem> packages are installed. Then proceed as follows: </para> <procedure> @@ -538,10 +537,16 @@ Select security options (<guimenu>TLS Settings</guimenu>). </para> <para> - Consider to <guimenu>Enable TLS</guimenu>. TLS is an encryption - technology. For more information, see + It is strongly recommended to <guimenu>Enable TLS</guimenu>. For more information, see <xref linkend="step.ldap.server.config.tls"/>. </para> + <warning> + <title>Password Encryption</title> + <para> + Enabling TLS ensures passwords are sent encrypted over the network. When + this option is not enabled, passwords are sent unencrypted. + </para> + </warning> <para> Also consider to use LDAP over SSL and certificates. </para> @@ -592,8 +597,8 @@ </step> <step performance="required"> <para> - From <guimenu>Allow/Disallow Features</guimenu> determine the - connection types the LDAP server should allow. Choose from: + Configure which connection types the server should offer under + <guimenu>Allow/Disallow Features</guimenu>. Choose from: </para> <variablelist> <varlistentry> @@ -630,9 +635,9 @@ <listitem> <para> Enabling this option allows non-authenticated (anonymous) update - operations. Access is restricted according to ACLs and other rules + operations. Access is restricted according to ACLs and other rules. - . + </para> </listitem> </varlistentry> @@ -640,8 +645,8 @@ </step> <step performance="required"> <para> - Then from <guimenu>Allow/Disallow Features</guimenu> determine which - flags the LDAP server should disallow. Choose from: + <guimenu>Allow/Disallow Features</guimenu> also lets you configure the + server flags. Choose from: </para> <variablelist> <varlistentry> @@ -750,7 +755,7 @@ </step> <step performance="required"> <para> - Click <guimenu>Add Database</guimenu> to add the new database. + Click <guimenu>Add Database</guimenu> to add a new database. </para> </step> <step performance="required"> @@ -857,8 +862,8 @@ <para> If you have not opted for password policies, your server is ready to run - at this point. If you chose to enable password policies, proceed with the - configuration of the password policy in detail. If you chose a password + at this point. If you have chosen to enable password policies, proceed with the + configuration of the password policy in detail. If you have chosen a password policy object that does not yet exist, &yast; creates one: </para> @@ -1071,7 +1076,7 @@ <step performance="required"> <para> Click <guimenu>Use LDAP</guimenu> to enable the use of LDAP. Select - <guimenu>Use LDAP but Disable Logins</guimenu> if instead you want to + <guimenu>Use LDAP but Disable Logins</guimenu> instead if you want to use LDAP for authentication, but do not want other users to log in to this client. </para> @@ -1297,11 +1302,9 @@ <step performance="required"> <para> Choose a name for the new template (e.g., - <literal>userConfig</literal>). The content view then features a table - listing all attributes allowed in this module with their assigned - values. Apart from all set attributes, the list also contains all - other attributes allowed by the current Schema, but currently not - used. + <literal>userConfig</literal>). The content view shows a table + listing all attributes allowed in this module and their assigned + values. </para> </step> <step performance="required"> @@ -1418,7 +1421,7 @@ </step> <step performance="required"> <para> - Click <guimenu>Add</guimenu> and enter the configuration of a new user. + Click <guimenu>Add</guimenu> to enter the user configuration. A dialog with four tabs opens: </para> <substeps performance="required"> @@ -1476,9 +1479,9 @@ <para> The initial input form of user administration offers <guimenu>LDAP Options</guimenu>. This allows you to apply LDAP search filters to the - set of available users (or go to the module for the configuration of LDAP + set of available users. Alternatively open the module for configuring LDAP users and groups by selecting <guimenu>LDAP User and Group - Configuration</guimenu>). + Configuration</guimenu>. </para> </sect1> <?dbfo-need height="20em"?> @@ -1587,7 +1590,7 @@ see the <systemitem>slapd-config(5)</systemitem> man page or the OpenLDAP Software 2.4 Administrator's Guide located at <filename>/usr/share/doc/packages/openldap2/guide/admin/guide.html</filename> - on this system if the <systemitem>openldap2</systemitem> package is + on your system if the <systemitem>openldap2</systemitem> package is installed. </para> @@ -1622,7 +1625,7 @@ <systemitem class="username">root</systemitem> by entering <command>rcldap <option>start</option></command>. To stop the server manually, enter the command <command>rcldap - <option>stop</option></command>. Request the status of the running LDAP + <option>stop</option></command>. Query the status of the running LDAP server with <command>rcldap <option>status</option></command>. </para> <para> @@ -1750,7 +1753,7 @@ </example> <para> An LDIF file can contain an arbitrary number of objects. It is possible - at once to pass directory branches (entirely or in part) to the server + to pass directory branches (entirely or in part) to the server in one go, as shown in the example of individual objects. If it is necessary to modify some data relatively often, a fine subdivision of single objects is recommended. @@ -1766,7 +1769,7 @@ <para> The tool <command>ldapmodify</command> is provided for modifying the data stock. The easiest way to do this is to modify the corresponding - LDIF file then pass this modified file to the LDAP server. To change the + LDIF file and pass the modified file to the LDAP server. To change the telephone number of colleague Tux from <literal>+49 1234 567-8</literal> to <literal>+49 1234 567-10</literal>, edit the LDIF file like in <xref linkend="aus.ldap.ldif.tux"/>. @@ -1824,7 +1827,7 @@ <para> OpenLDAP provides, with <command>ldapsearch</command>, a command line tool for searching data within an LDAP directory and reading data from - it. This is A simple query: + it. This is a simple query: </para> <screen>ldapsearch -x -b dc=example,dc=com "(objectClass=*)"</screen><indexterm> <primary>commands</primary> diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/xml/security_nis.xml new/xml/security_nis.xml --- old/xml/security_nis.xml 2011-01-19 10:24:25.000000000 +0100 +++ new/xml/security_nis.xml 2011-02-18 16:25:46.000000000 +0100 @@ -18,7 +18,7 @@ <primary>NIS</primary></indexterm> <abstract> <para> - As soon as multiple UNIX systems in a network want to access common + As soon as multiple UNIX systems in a network access common resources, it becomes imperative that all user and group identities are the same for all machines in that network. The network should be transparent to users: their environments should not vary, regardless of @@ -87,9 +87,8 @@ To check whether the &yast; NIS server configuration module is already installed, start &yast; and select <menuchoice><guimenu>Software</guimenu> <guimenu>Software - Management</guimenu></menuchoice>. Search for and, if needed, install - the <systemitem>yast2-nis-server</systemitem> package. Once done, - close &yast;. + Management</guimenu></menuchoice>. Search for + <systemitem>yast2-nis-server</systemitem> and install it, if needed. </para> </step> <step performance="required"> @@ -222,17 +221,16 @@ <para> If you previously enabled <guimenu>Active Slave NIS Server Exists</guimenu>, enter the hostnames used as slaves and click - <guimenu>Next</guimenu>. + <guimenu>Next</guimenu>. If no slave servers exist, this configuration + step is skipped. </para> </step> <step performance="required"> <para> - If you do not use slave servers, the slave configuration is skipped - and you continue directly to the dialog for the database - configuration. Here, specify the <emphasis>NIS Server Maps</emphasis>, - the partial databases to transfer from the NIS server to the client. - The default settings are usually adequate. Leave this dialog with - <guimenu>Next</guimenu>. + Continue to the dialog for the database configuration. Specify the + <emphasis>NIS Server Maps</emphasis>, the partial databases to transfer + from the NIS server to the client. The default settings are usually + adequate. Leave this dialog with <guimenu>Next</guimenu>. </para> </step> <step performance="required"> @@ -352,9 +350,9 @@ <step performance="required"> <para> Enter the hosts that are allowed to query the NIS server. You can add, - edit, or delete hosts by clicking the appropriate button. Specify from - which networks requests can be sent to the NIS server. Normally, this - is all hosts. In this case, there should be the following two entries: + edit, or delete hosts by clicking the appropriate button. Specify all networks from + which requests can be sent to the NIS server. If it applies to all + networks, use the following configuration: </para> <screen>255.0.0.0 127.0.0.0 0.0.0.0 0.0.0.0 diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/xml/security_pam.xml new/xml/security_pam.xml --- old/xml/security_pam.xml 2011-01-19 10:24:26.000000000 +0100 +++ new/xml/security_pam.xml 2011-02-18 16:25:46.000000000 +0100 @@ -48,13 +48,13 @@ <itemizedlist mark="bullet" spacing="normal"> <listitem> <para> - <emphasis>PAM modules</emphasis> are a set of shared libraries for a + <emphasis>PAM modules</emphasis> which are a set of shared libraries for a specific authentication mechanism. </para> </listitem> <listitem> <para> - A <emphasis>module stack</emphasis> consists of one or more PAM + A <emphasis>module stack</emphasis> with of one or more PAM modules. </para> </listitem> @@ -69,17 +69,17 @@ </listitem> <listitem> <para> - The execution of a single PAM module can be influenced by - <emphasis>module arguments</emphasis>. + <emphasis>module arguments</emphasis> with which the execution of a + single PAM module can be influenced. </para> </listitem> <listitem> <para> - Each <emphasis>result</emphasis> of a single PAM module execution is - evaluated. A positive value executes the next PAM module, a negative - value depends on the configuration how to proceed. You can configure it - as <quote>no influence, proceed</quote> to <quote>terminate - immediately</quote> and anything in between. + a mechanism evaluating each <emphasis>result</emphasis> of a single PAM + module execution. A positive value executes the next PAM module. The way a negative + value is dealt with, depends on the configuration— <quote>no + influence, proceed</quote> up to <quote>terminate + immediately</quote> and anything in between are valid options. </para> </listitem> </itemizedlist> @@ -195,7 +195,7 @@ </term> <listitem> <para> - Indicates the behaviour of a PAM module. Each module can have the + Indicates the behavior of a PAM module. Each module can have the following control flags: </para> <variablelist> @@ -288,7 +288,7 @@ </term> <listitem> <para> - Contains a space-separated list of options to influence the behaviour + Contains a space-separated list of options to influence the behavior of a PAM module, such as <option>debug</option> (enables debugging) or <option>nullok</option> (allows the use of empty passwords). </para> @@ -318,7 +318,7 @@ </para> <para> - The global common PAM configuration files are maintained using the + The global PAM configuration files are maintained using the <command>pam-config</command> tool. This tool automatically adds new modules to the configuration, changes the configuration of existing ones or deletes modules (or options) from the configurations. Manual @@ -454,8 +454,9 @@ <example id="dat.pam.common-password"> <title>Default Configuration for the <literal>password</literal> Section</title> -<screen>password requisite pam_pwcheck.so nullok cracklib -password required pam_unix2.so nullok use_authtok</screen> +<screen>password requisite pam_pwcheck.so nullok cracklib +password optional pam_gnome_keyring.so use_authtok +password required pam_unix2.so use_authtok nullok</screen> </example> @@ -486,7 +487,9 @@ <title>Default Configuration for the <literal>session</literal> Section</title> <screen>session required pam_limits.so session required pam_unix2.so -session optional pam_umask.so</screen> +session optional pam_apparmor.so +session optional pam_umask.so +session optional pam_gnome_keyring.so auto_start only_if=gdm,lxdm</screen> </example> <para> @@ -641,7 +644,7 @@ </para> <para> - A simple use case for <command>pam-config</command> involve the + A simple use case for <command>pam-config</command> involves the following: </para> @@ -698,7 +701,7 @@ <para> Finally, remove the debug option from your setup when you are entirely satisfied with the performance of it. The <command>pam-config --delete - --ldap-debug</command> command turns of debugging for LDAP + --ldap-debug</command> command turns off debugging for LDAP authentication. In case you had debugging options added for other modules, use similar commands to turn these off. </para> @@ -712,7 +715,7 @@ from the <filename>common-*</filename> to the <filename>common-*-pc</filename> files. pam-config only modifies the <filename>common-*-pc</filename> configuration files. Removing these - symbolic links effectively disable pam-config, because pam-config only + symbolic links effectively disables pam-config, because pam-config only operates on the <filename>common-*-pc</filename> files and these files are not put into effect without the symbolic links. </para> @@ -737,7 +740,7 @@ <listitem> <para> In the top level of this directory, there is the general README file. - The subdirectory <filename>modules</filename> holds README files about + The <filename>modules</filename> subdirectory holds README files about the available PAM modules. </para> </listitem> diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/xml/security_vpnserver.xml new/xml/security_vpnserver.xml --- old/xml/security_vpnserver.xml 2011-01-19 10:24:26.000000000 +0100 +++ new/xml/security_vpnserver.xml 2011-02-18 16:25:46.000000000 +0100 @@ -402,7 +402,7 @@ EASY_RSA</literal> to <filename>/usr/share/openvpn/easy-rsa</filename>: </para> -<screen>export EASY_RSA="/usr/share/openvpn/easy-rsa"</screen> +<screen>export EASY_RSA="/usr/share/openvpn/easy-rsa/<replaceable>VER</replaceable>"</screen> </step> <step id="st.vpn.easy-rsa.vars" performance="required"> <para> diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/xml/security_yast2_ca.xml new/xml/security_yast2_ca.xml --- old/xml/security_yast2_ca.xml 2011-01-19 10:24:26.000000000 +0100 +++ new/xml/security_yast2_ca.xml 2011-02-18 16:25:46.000000000 +0100 @@ -555,7 +555,7 @@ </listitem> </varlistentry> <varlistentry> - <term><guimenu>Organisation</guimenu>, <guimenu>Organisational Unit</guimenu>, + <term><guimenu>Organization</guimenu>, <guimenu>Organizational Unit</guimenu>, <guimenu>Locality</guimenu>, <guimenu>State</guimenu> </term> <listitem> ++++++ opensuse-startup_en-graphics.tar.bz2 ++++++ old-versions/11.4/all/opensuse-manuals_en/opensuse-startup_en-graphics.tar.bz2 /mounts/work_src_done/11.4/opensuse-manuals_en/opensuse-startup_en-graphics.tar.bz2 differ: char 11, line 1 ++++++ opensuse-startup_en.tar.bz2 ++++++ ++++ 5235 lines of diff (skipped) ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Remember to have fun... -- To unsubscribe, e-mail: opensuse-commit+unsubscribe@opensuse.org For additional commands, e-mail: opensuse-commit+help@opensuse.org