From Fedora Project Wiki

m (ldap > LDAP)
(102 intermediate revisions by 18 users not shown)
Line 1: Line 1:
== Security ==
This section highlights various security items from Fedora.
=== Fingerprint Readers ===
[[Category:Docs Project]]
[[Category:Draft documentation]]
Fingerprint readers are now better integrated with Fedora 11. GNOME users can easily setup fingerprint authentication using {{command|gnome-about-me}}, and will allow the ability to login from both {{package|gdm}} and {{package|gnome-screensaver}}.
[[Category:Documentation beats]]
=== System Security Services Daemon ===
The SSSD is intended to provide several key feature enhancements to Fedora. The first being the addition of offline caching for network credentials. Authentication through the SSSD will potentially allow LDAP, NIS, and FreeIPA services to provide an offline mode, to ease the use of centrally managing laptop users.
The LDAP features will also add support for connection pooling. All communication to the LDAP server will happen over a single persistent connection, reducing the overhead of opening a new socket for each request. The SSSD will also add support for multiple LDAP/NIS domains. It will be possible to connect to two or more LDAP/NIS servers acting as separate user namespaces.
=== SHA-2 support ===
Fedora now uses the SHA-256 digest algorithm for data verification and authentication in more places than before, migrating from the weaker SHA-1 and MD5 algorithms. Where possible, the migration was transparent; in other places the default configuration was changed or manual configuration is necessary to use the stronger algorithms.

Latest revision as of 01:33, 20 September 2016

DocsProject Header docTeam1.png

Beat Closed on Wiki
Work on beats has now moved to git at If you have changes or additions, please contact the docs team via #fedora-docs,, or with the release-notes BZ component.