A Documentation Updates #
This chapter lists content changes for this document since the release of SUSE® Linux Enterprise Server 11 SP3.
This manual was updated on the following dates:
Section A.1, “November 2016 (Initial Release of SUSE Linux Enterprise Server 12 SP2)”
Section A.2, “December 2015 (Initial Release of SUSE Linux Enterprise Server 12 SP1)”
Section A.3, “February 2015 (Documentation Maintenance Update)”
Section A.4, “October 2014 (Initial Release of SUSE Linux Enterprise Server 12)”
A.1 November 2016 (Initial Release of SUSE Linux Enterprise Server 12 SP2) #
- All sections
Unified input line style.
- Section 3.19, “Copying Files Using SSH Without Providing Login Prompts”
Replaced depricated ~/.ssh/authorized_keys2 and rsa-dss
- Section 3.2, “Locking Down the BIOS”
Referenced UEFI
- Section 3.29.2, “Restricting Use of Previous Passwords”
Fix configuration description (https://bugzilla.suse.com/show_bug.cgi?id=977984).
- Section 3.25, “Restricting Access to Removable Media”
Name of rules files must start with a digit (Doc comment #29432).
- Section 3.5, “Retiring Linux Servers with Sensitive Data”
More information about wiping files, wear leveling devices
- Section 3.9.9, “Buffer Overflow Attack Mitigation”
Address Space Layout Randomization and No Execute bit do not prevent buffer overflows but buffer overflow attacks.
- Bugfixes
PAM related fixes (https://bugzilla.suse.com/show_bug.cgi?id=978001, https://bugzilla.suse.com/show_bug.cgi?id=977984, https://bugzilla.suse.com/show_bug.cgi?id=977988).
A.2 December 2015 (Initial Release of SUSE Linux Enterprise Server 12 SP1) #
- General
SMT Guide is now part of the documentation for SUSE Linux Enterprise Server.
Add-ons provided by SUSE have been renamed as modules and extensions. The manuals have been updated to reflect this change.
Numerous small fixes and additions to the documentation, based on technical feedback.
The registration service has been changed from Novell Customer Center to SUSE Customer Center.
In YaST, you will now reach https://bugzilla.suse.com/show_bug.cgi?id=867809).
via the group. is gone (
Added Section 3.14.4, “SUSE Manager” (Doc comment #26206).
Added Section 3.9.12, “ Filter access to
/dev/mem
(default in SUSE Linux Enterprise Server 12) ” (Fate #315172).
- Bugfixes
Access to Removable Media Cannot be Restricted as Described (https://bugzilla.suse.com/show_bug.cgi?id=929918).
A.3 February 2015 (Documentation Maintenance Update) #
- Bugfixes
SLES hardening documentation wrong/incomplete—password strength (https://bugzilla.suse.com/show_bug.cgi?id=907754).
A.4 October 2014 (Initial Release of SUSE Linux Enterprise Server 12) #
- General
Removed all KDE documentation and references because KDE is no longer shipped.
Removed all references to SuSEconfig, which is no longer supported (Fate #100011).
Move from System V init to systemd (Fate #310421). Updated affected parts of the documentation.
YaST Runlevel Editor has changed to Services Manager (Fate #312568). Updated affected parts of the documentation.
Removed all references to ISDN support, as ISDN support has been removed (Fate #314594).
Removed all references to the YaST DSL module as it is no longer shipped (Fate #316264).
Removed all references to the YaST Modem module as it is no longer shipped (Fate #316264).
Btrfs has become the default file system for the root partition (Fate #315901). Updated affected parts of the documentation.
The
dmesg
now provides human-readable time stamps inctime()
-like format (Fate #316056). Updated affected parts of the documentation.syslog and syslog-ng have been replaced by rsyslog (Fate #316175). Updated affected parts of the documentation.
MariaDB is now shipped as the relational database instead of MySQL (Fate #313595). Updated affected parts of the documentation.
SUSE-related products are no longer available from http://download.novell.com but from http://download.suse.com. Adjusted links accordingly.
Novell Customer Center has been replaced with SUSE Customer Center. Updated affected parts of the documentation.
/var/run
is mounted as tmpfs (Fate #303793). Updated affected parts of the documentation.The following architectures are no longer supported: IA64 and x86. Updated affected parts of the documentation.
The traditional method for setting up the network with
ifconfig
has been replaced bywicked
. Updated affected parts of the documentation.A lot of networking commands are deprecated and have been replaced by newer commands (usually
ip
). Updated affected parts of the documentation.arp
:ip neighbor
ifconfig
:ip addr
,ip link
iptunnel
:ip tunnel
iwconfig
:iw
nameif
:ip link
,ifrename
netstat
:ss
,ip route
,ip -s link
,ip maddr
route
:ip route
Numerous small fixes and additions to the documentation, based on technical feedback.
- Section 3.5, “Retiring Linux Servers with Sensitive Data”
Added Section 3.5.1, “scrub: Disk Overwrite Utility” (Fate #315530).
- Section 3.9.9, “Buffer Overflow Attack Mitigation”
Added Section 3.9.11, “Increased
dmesg
Restrictions” (Fate #315175).
- Section 3.4, “Verifying Security Action with
seccheck
” Added Section 3.4.1, “Seccheck Configuration” (Fate #312303).
- Obsolete Content
- Bugfixes
Removed all content about or references to ZENworks Linux Management.