Documentation
Reference
About This Guide
openSUSE
Reference
Legal Notice
Contents
About This Guide
1. Available Documentation
2. Feedback
3. Documentation Conventions
4. About the Making of This Manual
5. Source Code
6. Acknowledgments
I. Advanced Deployment Scenarios
1. Remote Installation
1.1. Installation Scenarios for Remote Installation
1.2. Setting Up the Server Holding the Installation Sources
1.3. Preparing the Boot of the Target System
1.4. Booting the Target System for Installation
1.5. Monitoring the Installation Process
2. Advanced Disk Setup
2.1. Using the YaST Partitioner
2.2. LVM Configuration
2.3. Soft RAID Configuration
II. Managing and Updating Software
3. Installing or Removing Software
3.1. Definition of Terms
3.2. Using the Qt Interface
3.3. Using the Gtk Interface
3.4. Adding Software Repositories
4. 1-Click Install
5. YaST Online Update
5.1. Installing Patches Manually
5.2. Automatic Online Update
6. Installing Add-On Products
6.1. Add-Ons
6.2. Binary Drivers
7. Managing Software with Command Line Tools
7.1. Using Zypper
7.2. RPM—the Package Manager
III. Administration
8. YaST in Text Mode
8.1. Navigation in Modules
8.2. Restriction of Key Combinations
8.3. YaST Command Line Options
9. Printer Operation
9.1. The Workflow of the Printing System
9.2. Methods and Protocols for Connecting Printers
9.3. Installing the Software
9.4. Network Printers
9.5. Graphical Printing Interfaces
9.6. Printing from the Command Line
9.7. Special Features in
9.8. Troubleshooting
10. The X Window System
10.1. Manually Configuring the X Window System
10.2. Installing and Configuring Fonts
10.3. For More Information
11. System Monitoring Utilities
11.1. Debugging
11.2. Files and File Systems
11.3. Hardware Information
11.4. Networking
11.5. The /proc File System
11.6. Processes
11.7. System Information
11.8. User Information
11.9. Time and Date
12. Updating the System and System Changes
12.1. Updating the System
12.2. Software Changes from Version to Version
IV. System
13. 32-Bit and 64-Bit Applications in a 64-Bit System Environment
13.1. Runtime Support
13.2. Software Development
13.3. Software Compilation on Biarch Platforms
13.4. Kernel Specifications
14. Booting and Configuring a Linux System
14.1. The Linux Boot Process
14.2. The init Process
14.3. System Configuration via /etc/sysconfig
15. The Boot Loader
15.1. Booting with GRUB
15.2. Configuring the Boot Loader with YaST
15.3. Uninstalling the Linux Boot Loader
15.4. Creating Boot CDs
15.5. The Graphical SUSE Screen
15.6. Troubleshooting
15.7. For More Information
16. Special System Features
16.1. Information about Special Software Packages
16.2. Virtual Consoles
16.3. Keyboard Mapping
16.4. Language and Country-Specific Settings
17. Dynamic Kernel Device Management with udev
17.1. The /dev Directory
17.2. Kernel uevents and udev
17.3. Drivers, Kernel Modules, and Devices
17.4. Booting and Initial Device Setup
17.5. Monitoring the Running udev Daemon
17.6. Influencing Kernel Device Event Handling with udev Rules
17.7. Persistent Device Naming
17.8. Files used by udev
17.9. For More Information
18. Access Control Lists in Linux
18.1. Traditional File Permissions
18.2. Advantages of ACLs
18.3. Definitions
18.4. Handling ACLs
18.5. ACL Support in Applications
18.6. For More Information
19. Authentication with PAM
19.1. Structure of a PAM Configuration File
19.2. The PAM Configuration of sshd
19.3. Configuration of PAM Modules
19.4. Configuring PAM Using pam-config
19.5. For More Information
V. Services
20. Basic Networking
20.1. IP Addresses and Routing
20.2. IPv6—The Next Generation Internet
20.3. Name Resolution
20.4. Configuring a Network Connection with YaST
20.5. NetworkManager
20.6. Configuring a Network Connection Manually
20.7. smpppd as Dial-up Assistant
21. SLP Services in the Network
21.1. Installation
21.2. Activating SLP
21.3. SLP Front-Ends in
21.4. Installation over SLP
21.5. Providing Services via SLP
21.6. For More Information
22. The Domain Name System
22.1. DNS Terminology
22.2. Installation
22.3. Configuration with YaST
22.4. Starting the Name Server BIND
22.5. The Configuration File /etc/named.conf
22.6. Zone Files
22.7. Dynamic Update of Zone Data
22.8. Secure Transactions
22.9. DNS Security
22.10. For More Information
23. DHCP
23.1. Configuring a DHCP Server with YaST
23.2. DHCP Software Packages
23.3. The DHCP Server dhcpd
23.4. For More Information
24. Time Synchronization with NTP
24.1. Configuring an NTP Client with YaST
24.2. Configuring xntp in the Network
24.3. Setting Up a Local Reference Clock
25. Using NIS
25.1. Configuring NIS Servers
25.2. Configuring NIS Clients
26. LDAP—A Directory Service
26.1. LDAP versus NIS
26.2. Structure of an LDAP Directory Tree
26.3. Configuring an LDAP Server with YaST
26.4. Configuring an LDAP Client with YaST
26.5. Configuring LDAP Users and Groups in YaST
26.6. Browsing the LDAP Directory Tree
26.7. Manually Configuring an LDAP Server
26.8. Manually Administering LDAP Data
26.9. For More Information
27. Sharing File Systems with NFS
27.1. Installing the Required Software
27.2. Importing File Systems with YaST
27.3. Importing File Systems Manually
27.4. Exporting File Systems with YaST
27.5. Exporting File Systems Manually
27.6. NFS with Kerberos
27.7. For More Information
28. The Apache HTTP Server
28.1. Quick Start
28.2. Configuring Apache
28.3. Starting and Stopping Apache
28.4. Installing, Activating, and Configuring Modules
28.5. Getting CGI Scripts to Work
28.6. Setting Up a Secure Web Server with SSL
28.7. Avoiding Security Problems
28.8. Troubleshooting
28.9. For More Information
29. Setting up a FTP server with YaST
29.1. Starting the FTP server
29.2. FTP General Settings
29.3. FTP Performance Settings
29.4. Authentication
29.5. Expert Settings
29.6. For more information
VI. Mobility
30. Wireless Communication
30.1. Wireless LAN
31. Using Tablet PCs
31.1. Installing Tablet PC Packages
31.2. Configuring Your Tablet Device
31.3. Using the Virtual Keyboard
31.4. Rotating Your Display
31.5. Using Gesture Recognition
31.6. Taking Notes and Sketching with the Pen
31.7. Troubleshooting
31.8. For More Information
32. Using the Fingerprint Reader
32.1. Supported Applications and Actions
32.2. Managing Fingerprints with YaST
VII. Security
33. Masquerading and Firewalls
33.1. Packet Filtering with iptables
33.2. Masquerading Basics
33.3. Firewalling Basics
33.4. SuSEfirewall2
33.5. For More Information
34. SSH: Secure Network Operations
34.1. The OpenSSH Package
34.2. The ssh Program
34.3. scp—Secure Copy
34.4. sftp—Secure File Transfer
34.5. The SSH Daemon (sshd)—Server-Side
34.6. SSH Authentication Mechanisms
34.7. X, Authentication, and Forwarding Mechanisms
35. Managing X.509 Certification
35.1. The Principles of Digital Certification
35.2. YaST Modules for CA Management
36. Encrypting Partitions and Files
36.1. Setting Up an Encrypted File System with YaST
36.2. Using Encrypted Home Directories
36.3. Using vi to Encrypt Single ASCII Text Files
37. Confining Privileges with AppArmor
37.1. Installing Novell AppArmor
37.2. Enabling and Disabling Novell AppArmor
37.3. Getting Started with Profiling Applications
38. Security and Confidentiality
38.1. Local Security and Network Security
38.2. Some General Security Tips and Tricks
38.3. Using the Central Security Reporting Address
39. Help and Documentation
39.1. Documentation Directory
39.2. Man Pages
39.3. Info Pages
A. An Example Network
B. GNU Licenses
B.1. GNU General Public License
B.2. GNU Free Documentation License
List of Figures
2.1.
The YaST Partitioner
2.2.
Physical Partitioning versus LVM
2.3.
Creating a Volume Group
2.4.
Logical Volume Management
2.5.
RAID Partitions
3.1.
Conflict Management of the Package Manager
3.2.
Conflict Management of the Package Manager
8.1.
Main Window of YaST in Text Mode
8.2.
The Software Installation Module
14.1.
System Services (Runlevel)
14.2.
System Configuration Using the sysconfig Editor
15.1.
Boot Loader Settings
18.1.
Minimum ACL: ACL Entries Compared to Permission Bits
18.2.
Extended ACL: ACL Entries Compared to Permission Bits
20.1.
Simplified Layer Model for TCP/IP
20.2.
TCP/IP Ethernet Packet
20.3.
Configuring Network Settings
20.4.
Modem Configuration
20.5.
ISDN Configuration
20.6.
ISDN Interface Configuration
20.7.
DSL Configuration
22.1.
DNS Server Installation: Forwarder Settings
22.2.
DNS Server Installation: DNS Zones
22.3.
DNS Server Installation: Finish Wizard
22.4.
DNS Server: Logging
22.5.
DNS Server: Slave Zone Editor
22.6.
DNS Server: Zone Editor (NS Records)
22.7.
DNS Server: Zone Editor (MX Records)
22.8.
DNS Server: Zone Editor (SOA)
23.1.
DHCP Server: Card Selection
23.2.
DHCP Server: Global Settings
23.3.
DHCP Server: Dynamic DHCP
23.4.
DHCP Server: Start-Up
24.1.
YaST: NTP Configuration
24.2.
Advanced NTP Configuration: General Settings
24.3.
Advanced NTP Configuration: Security Settings
25.1.
NIS Server Setup
25.2.
Master Server Setup
25.3.
Changing the Directory and Synchronizing Files for a NIS Server
25.4.
NIS Server Maps Setup
25.5.
Setting Request Permissions for a NIS Server
25.6.
Setting Domain and Address of a NIS Server
26.1.
Structure of an LDAP Directory
26.2.
YaST LDAP Server Configuration
26.3.
YaST LDAP Server—New Database
26.4.
YaST LDAP Server Configuration
26.5.
YaST LDAP Server Configuration
26.6.
YaST: LDAP Client Configuration
26.7.
YaST: Advanced Configuration
26.8.
YaST: Module Configuration
26.9.
YaST: Configuration of an Object Template
26.10.
YaST: Additional LDAP Settings
26.11.
Browsing the LDAP Directory Tree
26.12.
Browsing the Entry Data
27.1.
NFS Client Configuration with YaST
27.2.
NFS Server Configuration Tool
27.3.
Configuring an NFS Server with YaST
27.4.
Exporting Directories with NFSv4
27.5.
Exporting Directories with NFSv2 and v3
28.1.
HTTP Server Wizard: Default Host
28.2.
HTTP Server Wizard: Summary
28.3.
HTTP Server Configuration: Listen Ports and Addresses
28.4.
HTTP Server Configuration: Server Modules
29.1.
FTP Server Configuration — Start-Up
30.1.
YaST: Configuring the Wireless Network Card
31.1.
xvkbd Virtual Keyboard
31.2.
Annotating a PDF with Xournal
31.3.
Editing Texts with Dasher
33.1.
iptables: A Packet's Possible Paths
33.2.
The YaST Firewall Configuration
35.1.
YaST CA Module—Basic Data for a Root CA
35.2.
YaST CA Module—Using a CA
35.3.
Certificates of a CA
35.4.
YaST CA Module—Extended Settings
List of Tables
1.1.
Installation (Boot) Scenarios Used in This Chapter
7.1.
The Most Important RPM Query Options
7.2.
RPM Verify Options
10.1.
Sections in /etc/X11/xorg.conf
10.2.
Parameters of fc-list
14.1.
Available Runlevels
14.2.
Possible init Script Options
16.1.
ulimit: Setting Resources for the User
18.1.
ACL Entry Types
18.2.
Masking Access Permissions
20.1.
Several Protocols in the TCP/IP Protocol Family
20.2.
Specific Addresses
20.3.
Private IP Address Domains
20.4.
Various IPv6 Prefixes
20.5.
Manual Network Configuration Scripts
20.6.
Parameters for /etc/host.conf
20.7.
Databases Available via /etc/nsswitch.conf
20.8.
Configuration Options for NSS Databases
20.9.
Some Start-Up Scripts for Network Programs
26.1.
Commonly Used Object Classes and Attributes
26.2.
User Groups and Their Access Grants
26.3.
Types of Access
30.1.
Overview of Various WLAN Standards
35.1.
X.509v3 Certificate
35.2.
X.509 Certificate Revocation List (CRL)
35.3.
Passwords during LDAP Export
39.1.
Man Pages—Categories and Descriptions
List of Examples
7.1.
rpm -q -i wget
7.2.
Script to Search for Packages
9.1.
/etc/modprobe.conf: Interrupt Mode for the First Parallel Port
9.2.
Error Message from lpd
9.3.
Broadcast from the CUPS Network Server
10.1.
Screen Section of the File /etc/X11/xorg.conf
12.1.
List with df -h
14.1.
A Minimal INIT INFO Block
16.1.
Entry in /etc/crontab
16.2.
/etc/crontab: Remove Time Stamp Files
16.3.
Example for /etc/logrotate.conf
16.4.
ulimit: Settings in ~/.bashrc
17.1.
Example udev Rules
19.1.
PAM Configuration for sshd
19.2.
Default Configuration for the auth Section
19.3.
Default Configuration for the account Section
19.4.
Default Configuration for the password Section
19.5.
Default Configuration for the session Section
19.6.
pam_env.conf
20.1.
Writing IP Addresses
20.2.
Linking IP Addresses to the Netmask
20.3.
Sample IPv6 Address
20.4.
IPv6 Address Specifying the Prefix Length
20.5.
/etc/resolv.conf
20.6.
/etc/hosts
20.7.
/etc/networks
20.8.
/etc/host.conf
20.9.
/etc/nsswitch.conf
20.10.
Output of the Command ping
20.11.
Output of the ifconfig Command
20.12.
Output of the route -n Command
22.1.
Forwarding Options in named.conf
22.2.
A Basic /etc/named.conf
22.3.
Entry to Disable Logging
22.4.
Zone Entry for example.com
22.5.
Zone Entry for example.net
22.6.
File /var/lib/named/example.com.zone
22.7.
Reverse Lookup
23.1.
The Configuration File /etc/dhcpd.conf
23.2.
Additions to the Configuration File
26.1.
Excerpt from schema.core
26.2.
slapd.conf: Include Directive for Schemas
26.3.
slapd.conf: pidfile and argsfile
26.4.
slapd.conf: Access Control
26.5.
slapd.conf: Example for Access Control
26.6.
slapd.conf: Database-Specific Directives
26.7.
Example for an LDIF File
26.8.
ldapadd with example.ldif
26.9.
LDIF Data for Tux
26.10.
Modified LDIF File tux.ldif
28.1.
Variations of Name-Based VirtualHost Entries
28.2.
Name-Based VirtualHost Directives
28.3.
IP-Based VirtualHost Directives
28.4.
Basic VirtualHost Configuration
28.5.
VirtualHost CGI Configuration
37.1.
Output of aa-unconfined
