From owner-svn-doc-all@FreeBSD.ORG Sat Jul 13 03:33:21 2013 Return-Path: Delivered-To: svn-doc-all@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:1900:2254:206a::19:1]) by hub.freebsd.org (Postfix) with ESMTP id 70363E8C; Sat, 13 Jul 2013 03:33:21 +0000 (UTC) (envelope-from wblock@FreeBSD.org) Received: from svn.freebsd.org (svn.freebsd.org [IPv6:2001:1900:2254:2068::e6a:0]) by mx1.freebsd.org (Postfix) with ESMTP id 628C21E9D; Sat, 13 Jul 2013 03:33:21 +0000 (UTC) Received: from svn.freebsd.org ([127.0.1.70]) by svn.freebsd.org (8.14.7/8.14.7) with ESMTP id r6D3XLoZ063886; Sat, 13 Jul 2013 03:33:21 GMT (envelope-from wblock@svn.freebsd.org) Received: (from wblock@localhost) by svn.freebsd.org (8.14.7/8.14.5/Submit) id r6D3XLuD063885; Sat, 13 Jul 2013 03:33:21 GMT (envelope-from wblock@svn.freebsd.org) Message-Id: <201307130333.r6D3XLuD063885@svn.freebsd.org> From: Warren Block Date: Sat, 13 Jul 2013 03:33:21 +0000 (UTC) To: doc-committers@freebsd.org, svn-doc-all@freebsd.org, svn-doc-head@freebsd.org Subject: svn commit: r42266 - head/en_US.ISO8859-1/books/handbook/security X-SVN-Group: doc-head MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit X-BeenThere: svn-doc-all@freebsd.org X-Mailman-Version: 2.1.14 Precedence: list List-Id: "SVN commit messages for the entire doc trees \(except for " user" , " projects" , and " translations" \)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 13 Jul 2013 03:33:21 -0000 Author: wblock Date: Sat Jul 13 03:33:20 2013 New Revision: 42266 URL: http://svnweb.freebsd.org/changeset/doc/42266 Log: Fix a wording bug: action to resource. Also fix some title capitalization and redundancy issues. Submitted by: MNIHKLOM (forum user, action/resource issue) Modified: head/en_US.ISO8859-1/books/handbook/security/chapter.xml Modified: head/en_US.ISO8859-1/books/handbook/security/chapter.xml ============================================================================== --- head/en_US.ISO8859-1/books/handbook/security/chapter.xml Sat Jul 13 01:50:56 2013 (r42265) +++ head/en_US.ISO8859-1/books/handbook/security/chapter.xml Sat Jul 13 03:33:20 2013 (r42266) @@ -2783,7 +2783,7 @@ racoon_enable="yes" - Enabling The SSH Server + Enabling the SSH Server OpenSSH @@ -2918,8 +2918,8 @@ bb:48:db:f2:93:57:80:b6:aa:bc:f5:d5:ba:8 is stored in ~/.ssh/id_dsa.pub or ~/.ssh/id_rsa.pub, respectively for the DSA and RSA key types. - The public key must be placed in the - ~/.ssh/authorized_keys file of the + The public key must be placed in + ~/.ssh/authorized_keys on the remote machine for both RSA or DSA keys in order for the setup to work. @@ -2960,7 +2960,7 @@ bb:48:db:f2:93:57:80:b6:aa:bc:f5:d5:ba:8 - Using SSH Agent To Cache Keys + Using SSH Agent to Cache Keys To load SSH keys into memory for use, without needing to type the passphrase each time, use @@ -2990,7 +2990,7 @@ Identity added: /home/user/.ssh/id_dsa ( needs to be placed in ~/.xinitrc. This provides the &man.ssh-agent.1; services to all programs launched in &xorg;. An example - ~/.xinitrc file might look like + ~/.xinitrc might look like this: exec ssh-agent startxfce4 @@ -3217,7 +3217,7 @@ user@unfirewalled-system.example.org's p Filesystem Access Control Lists - (<acronym>ACL</acronym>s) + (ACL)s ACL @@ -3744,7 +3744,7 @@ VII. References cap_mkdb, edits made to - the /etc/master.passwd file. In + /etc/master.passwd. In addition, the password database must be rebuilt using pwd_mkdb. This multi-step process could be very time consuming depending on how many users must be @@ -3782,7 +3782,7 @@ options RCTL This rule shows a basic premise of a rule, here the subject is user and the subject-id is trhodes. The maxproc is, of course, - max number of processes, which is considered the action. + max number of processes, which is considered the resource. The action here is set to deny, which blocks any new processes from being created. In the previous example, the user, trhodes will be constrained @@ -3808,7 +3808,7 @@ eval: Cannot fork: Resource temporarily &prompt.root; rctl -a jail:httpd:memoryuse:deny=2G/jail Rules may also persist across reboots if they have been - added to /etc/rctl.conf file. The + added to /etc/rctl.conf. The format is a rule, without the preceding command. For example, the previous rule could be added like the following: