Jump to contentJump to page navigation: previous page [access key p]/next page [access key n]
documentation.suse.com › SUSE Linux Enterprise Server Documentation › Security and Hardening Guide › Documentation Updates
ContentsContents
Security and Hardening Guide
  1. About This Guide
  2. I Common Criteria
    1. 1 Overview and rationale
  3. II General System Security and Service Protection Methods
    1. 2 Introduction
    2. 3 Linux Security in General
  4. A Documentation Updates
Navigation
documentation.suse.com › SUSE Linux Enterprise Server Documentation › Security and Hardening Guide › Documentation Updates
Top
Applies to SUSE Linux Enterprise Server 12 SP3

A Documentation Updates Edit source

A.1 November 2016 (Initial Release of SUSE Linux Enterprise Server 12 SP2)
A.2 December 2015 (Initial Release of SUSE Linux Enterprise Server 12 SP1)
A.3 February 2015 (Documentation Maintenance Update)
A.4 October 2014 (Initial Release of SUSE Linux Enterprise Server 12)

This chapter lists content changes for this document since the release of SUSE® Linux Enterprise Server 11 SP3.

This manual was updated on the following dates:

A.1 November 2016 (Initial Release of SUSE Linux Enterprise Server 12 SP2) Edit source

All sections

Unified input line style.

Section 3.19, “Copying Files Using SSH Without Providing Login Prompts”

Replaced depricated ~/.ssh/authorized_keys2 and rsa-dss

Section 3.2, “Locking Down the BIOS”

Referenced UEFI

Section 3.29.2, “Restricting Use of Previous Passwords”

Fix configuration description (https://bugzilla.suse.com/show_bug.cgi?id=977984).

Section 3.25, “Restricting Access to Removable Media”

Name of rules files must start with a digit (Doc comment #29432).

Section 3.5, “Retiring Linux Servers with Sensitive Data”

More information about wiping files, wear leveling devices

Section 3.9.9, “Buffer Overflow Attack Mitigation”

Address Space Layout Randomization and No Execute bit do not prevent buffer overflows but buffer overflow attacks.

Bugfixes

PAM related fixes (https://bugzilla.suse.com/show_bug.cgi?id=978001, https://bugzilla.suse.com/show_bug.cgi?id=977984, https://bugzilla.suse.com/show_bug.cgi?id=977988).

A.2 December 2015 (Initial Release of SUSE Linux Enterprise Server 12 SP1) Edit source

General

  • SMT Guide is now part of the documentation for SUSE Linux Enterprise Server.

  • Add-ons provided by SUSE have been renamed as modules and extensions. The manuals have been updated to reflect this change.

  • Numerous small fixes and additions to the documentation, based on technical feedback.

  • The registration service has been changed from Novell Customer Center to SUSE Customer Center.

  • In YaST, you will now reach Network Settings via the System group. Network Devices is gone (https://bugzilla.suse.com/show_bug.cgi?id=867809).

Bugfixes

A.3 February 2015 (Documentation Maintenance Update) Edit source

Bugfixes

A.4 October 2014 (Initial Release of SUSE Linux Enterprise Server 12) Edit source

General

  • Removed all KDE documentation and references because KDE is no longer shipped.

  • Removed all references to SuSEconfig, which is no longer supported (Fate #100011).

  • Move from System V init to systemd (Fate #310421). Updated affected parts of the documentation.

  • YaST Runlevel Editor has changed to Services Manager (Fate #312568). Updated affected parts of the documentation.

  • Removed all references to ISDN support, as ISDN support has been removed (Fate #314594).

  • Removed all references to the YaST DSL module as it is no longer shipped (Fate #316264).

  • Removed all references to the YaST Modem module as it is no longer shipped (Fate #316264).

  • Btrfs has become the default file system for the root partition (Fate #315901). Updated affected parts of the documentation.

  • The dmesg now provides human-readable time stamps in ctime()-like format (Fate #316056). Updated affected parts of the documentation.

  • syslog and syslog-ng have been replaced by rsyslog (Fate #316175). Updated affected parts of the documentation.

  • MariaDB is now shipped as the relational database instead of MySQL (Fate #313595). Updated affected parts of the documentation.

  • SUSE-related products are no longer available from http://download.novell.com but from http://download.suse.com. Adjusted links accordingly.

  • Novell Customer Center has been replaced with SUSE Customer Center. Updated affected parts of the documentation.

  • /var/run is mounted as tmpfs (Fate #303793). Updated affected parts of the documentation.

  • The following architectures are no longer supported: IA64 and x86. Updated affected parts of the documentation.

  • The traditional method for setting up the network with ifconfig has been replaced by wicked. Updated affected parts of the documentation.

  • A lot of networking commands are deprecated and have been replaced by newer commands (usually ip). Updated affected parts of the documentation.

    arp: ip neighbor
    ifconfig: ip addr, ip link
    iptunnel: ip tunnel
    iwconfig: iw
    nameif: ip link, ifrename
    netstat: ss, ip route, ip -s link, ip maddr
    route: ip route

  • Numerous small fixes and additions to the documentation, based on technical feedback.

Section 3.5, “Retiring Linux Servers with Sensitive Data”
Section 3.9.9, “Buffer Overflow Attack Mitigation”
Section 3.4, “Verifying Security Action with seccheck
Obsolete Content
Bugfixes

  • Removed all content about or references to ZENworks Linux Management.

Chapter 3 Linux Security in General
Print this page

© 2021 SUSE