install-guide fedora-install-guide-firewallconfig-en.xml,1.6,1.7
Paul W. Frields (pfrields)
fedora-docs-commits at redhat.com
Sun May 22 13:28:01 UTC 2005
Author: pfrields
Update of /cvs/docs/install-guide
In directory cvs-int.fedora.redhat.com:/tmp/cvs-serv1575
Modified Files:
fedora-install-guide-firewallconfig-en.xml
Log Message:
2nd round style editing
Index: fedora-install-guide-firewallconfig-en.xml
===================================================================
RCS file: /cvs/docs/install-guide/fedora-install-guide-firewallconfig-en.xml,v
retrieving revision 1.6
retrieving revision 1.7
diff -u -r1.6 -r1.7
--- fedora-install-guide-firewallconfig-en.xml 14 May 2005 22:35:27 -0000 1.6
+++ fedora-install-guide-firewallconfig-en.xml 22 May 2005 13:27:59 -0000 1.7
@@ -47,14 +47,14 @@
<para>
By default the firewall is enabled, with a simple set of rules
that allow connections to be made from your system to others, but
- block incoming connections from other systems. By making changes
- on this screen, you can allow access to specific network services
- on your &FED; system.
+ block incoming connections from other systems. You may make
+ changes on this screen to allow access to specific network
+ services on your &FED; system.
</para>
<para>
To enable access to services listed on this screen, click the
- checkbox next to the service name. After installation is
+ check box next to the service name. After installation is
complete, you can enable access to other services as well.
</para>
@@ -64,11 +64,10 @@
</para>
<tip>
- <title>Changing the firewall settings</title>
+ <title>Changing the Firewall Settings</title>
<para>
- To change these settings later, use the
- <application>system-config-securitylevel</application> utility.
- From the main menu, choose <menuchoice>
+ To change these settings later, from the main menu, choose
+ <menuchoice>
<guimenu>Desktop</guimenu>
<guisubmenu>System Settings</guisubmenu><guimenuitem>Security
Level and Firewall</guimenuitem></menuchoice>.
@@ -88,9 +87,10 @@
</indexterm> <firstterm>&SEL;</firstterm> (Security Enhanced
Linux) framework is part of &FC;. &SEL; limits the actions of both
users and programs by enforcing security policies throughout the
- operating system. Without &SEL; software bugs or configuration
- changes can render a system more vulnerable. The restrictions
- imposed by &SEL; policies provide an extra line of defense.
+ operating system. Without &SEL;, software bugs or configuration
+ changes may render a system more vulnerable. The restrictions
+ imposed by &SEL; policies provide extra security against
+ unauthorized access.
</para>
<para>
@@ -98,41 +98,59 @@
a &FED; system. For this reason, &FC; uses targeted policies,
which only affect specific network services. These services
cannot perform actions that are not part of their normal
- functions. This means that &SEL; can be active without causing
- users any inconvenience.
- </para>
- <para>
- To use the targeted &SEL; policy on your &FED; system, set the
- &SEL; mode to <guilabel>Active</guilabel>. This is the default
- mode for &FED; installations.
- </para>
-
- <para>
- Because &SEL; is a new technology, a diagnostic mode is provided.
- If you set &SEL; to <guilabel>Warn</guilabel>, the system is
- configured, but any breach of security policies only causes an
- error message to appear. No activities are actually prohibited
- when &SEL; is installed in this mode. You may change the &SEL;
- mode to active at any time after booting.
- </para>
-
- <para>
- If you choose the <guilabel>Disabled</guilabel> mode for &SEL;,
- &FED; does not configure the access control system at all. To
- make &SEL; active later, from the main menu, select <menuchoice>
- <guimenu>Desktop</guimenu>
- <guisubmenu>System Settings</guisubmenu>
- <guimenuitem>Security Level and Firewall</guimenuitem>
- </menuchoice>.
- </para>
+ functions. The targeted policies reduce or eliminate any
+ inconvenience &SEL; might cause users. Set the &SEL; mode to one
+ of the following:
+ </para>
+
+ <variablelist>
+ <varlistentry>
+ <term><guilabel>Active</guilabel></term>
+ <listitem>
+ <para>
+ Select this mode to use the targeted &SEL; policy on your
+ &FED; system. This is the default mode for &FED;
+ installations.
+ </para>
+ </listitem>
+ </varlistentry>
+ <varlistentry>
+ <term><guilabel>Warn</guilabel></term>
+ <listitem>
+ <para>
+ Because &SEL; is a new technology, this diagnostic mode is
+ provided. In this mode, the system is configured with
+ &SEL;, but a breach of security policies only causes an
+ error message to appear. No activities are actually
+ prohibited when &SEL; is installed in this mode. You may
+ change the &SEL; mode to <guilabel>Active</guilabel> at any
+ time after booting.
+ </para>
+ </listitem>
+ </varlistentry>
+ <varlistentry>
+ <term><guilabel>Disabled</guilabel></term>
+ <listitem>
+ <para>
+ If you choose this mode for &SEL;, &FED; does not configure
+ the access control system at all. To make &SEL; active
+ later, from the main menu, select
+ <menuchoice>
+ <guimenu>Desktop</guimenu>
+ <guisubmenu>System Settings</guisubmenu>
+ <guimenuitem>Security Level and Firewall</guimenuitem>
+ </menuchoice>.
+ </para>
+ </listitem>
+ </varlistentry>
+ </variablelist>
<tip>
<title>Changing the &SEL; policy</title>
<para>
&SEL; is unique in that it cannot be bypassed, even by the
- system administrators. You can configure the behavior of &SEL;
- with the <application>system-config-securitylevel</application>
- utility. From the main menu, choose <menuchoice>
+ system administrators. To change the behavior of &SEL; after
+ installation, from the main menu, choose <menuchoice>
<guimenu>Desktop</guimenu>
<guisubmenu>System Settings</guisubmenu>
<guimenuitem>Security Level and Firewall</guimenuitem>
@@ -142,8 +160,6 @@
</section>
-
-
</chapter>
<!--
More information about the Fedora-docs-commits
mailing list