From owner-freebsd-doc Sun Oct 28 2:30: 7 2001 Delivered-To: freebsd-doc@freebsd.org Received: from freefall.freebsd.org (freefall.FreeBSD.org [216.136.204.21]) by hub.freebsd.org (Postfix) with ESMTP id D35BC37B405 for ; Sun, 28 Oct 2001 02:30:00 -0800 (PST) Received: (from gnats@localhost) by freefall.freebsd.org (8.11.4/8.11.4) id f9SAU0J28462; Sun, 28 Oct 2001 02:30:00 -0800 (PST) (envelope-from gnats) Received: from Kain.sumuk.de (Kain.sumuk.de [213.221.86.114]) by hub.freebsd.org (Postfix) with ESMTP id 72E2837B403 for ; Sun, 28 Oct 2001 02:24:31 -0800 (PST) Received: (from vincent@localhost) by Kain.sumuk.de (8.11.5/8.11.5) id f9SAOOU06448; Sun, 28 Oct 2001 11:24:24 +0100 (CET) (envelope-from vincent) Message-Id: <200110281024.f9SAOOU06448@Kain.sumuk.de> Date: Sun, 28 Oct 2001 11:24:24 +0100 (CET) From: Martin Heinen Reply-To: Martin Heinen To: FreeBSD-gnats-submit@freebsd.org X-Send-Pr-Version: 3.113 Subject: docs/31549: security chapter: corrected typos and mark up Sender: owner-freebsd-doc@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org >Number: 31549 >Category: docs >Synopsis: security chapter: corrected typos and mark up >Confidential: no >Severity: non-critical >Priority: low >Responsible: freebsd-doc >State: open >Quarter: >Keywords: >Date-Required: >Class: doc-bug >Submitter-Id: current-users >Arrival-Date: Sun Oct 28 02:30:00 PST 2001 >Closed-Date: >Last-Modified: >Originator: Martin Heinen >Release: FreeBSD 4.4-PRERELEASE i386 >Organization: >Environment: System: FreeBSD Kain.sumuk.de 4.4-PRERELEASE FreeBSD 4.4-PRERELEASE #11: Thu Sep 27 18:54:33 CEST 2001 toor@Kain.earth.sol:/usr/obj/usr/src/sys/KAIN i386 >Description: Kereberos -> Kerberos, su -> su, inserted missing or, return -> Return >How-To-Repeat: read the security chapter >Fix: Index: chapter.sgml =================================================================== RCS file: /u/cvs/doc/en_US.ISO8859-1/books/handbook/security/chapter.sgml,v retrieving revision 1.94 diff -u -r1.94 chapter.sgml --- chapter.sgml 2001/10/23 22:12:45 1.94 +++ chapter.sgml 2001/10/28 10:12:45 @@ -53,7 +53,7 @@ - How to setup Kereberos, another alternative + How to setup Kerberos, another alternative authentication system. @@ -319,7 +319,7 @@ wheel group (in /etc/group). The staff members placed in the wheel group are allowed to - su to root. You should never give staff + su to root. You should never give staff members native wheel access by putting them in the wheel group in their password entry. Staff accounts should be placed in a staff group, and @@ -1168,7 +1168,7 @@ Insecure Connection Initialization - To initialize change your secret password over an + To initialize or change your secret password over an insecure connection, you will need to already have a secure connection to some place where you can run key or opiekey; this might be in the form of a @@ -1209,7 +1209,8 @@ To accept the default seed (which the keyinit program confusingly calls a - key), press return. Then before entering an + key), press Return. + Then before entering an access password, move over to your secure connection or S/Key desk accessory, and give it the same parameters: @@ -1262,7 +1263,8 @@ Password: As a side note, the S/Key and OPIE prompts have a useful feature - (not shown here): if you press return at the password prompt, the + (not shown here): if you press Return + at the password prompt, the prompter will turn echo on, so you can see what you are typing. This can be extremely useful if you are attempting to type in a password by hand, such as from a printout. >Release-Note: >Audit-Trail: >Unformatted: To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-doc" in the body of the message