diff --git a/man/userdbctl.xml b/man/userdbctl.xml index e1bd4627201..56d0068e735 100644 --- a/man/userdbctl.xml +++ b/man/userdbctl.xml @@ -55,12 +55,12 @@ - Choose the output mode, takes one of classic, - friendly, table, json. If + Chooses the output mode. Takes one of classic, + friendly, table or json. If classic, an output very close to the format of /etc/passwd or - /etc/group is generated. If friendly a more comprehensive and - user friendly, human readable output is generated; if table a minimal, tabular - output is generated; if json a JSON formatted output is generated. Defaults to + /etc/group is generated. If friendly, a more comprehensive and + user friendly, human readable output is generated. If table, a minimal, tabular + output is generated. If json, a JSON formatted output is generated. Defaults to friendly if a user/group is specified on the command line, table otherwise. @@ -100,8 +100,8 @@ Controls whether to include classic glibc/NSS user/group lookups in the output. If - is used any attempts to resolve or enumerate users/groups provided - only via glibc NSS is suppressed. If is specified such users/groups + is used, any attempts to resolve or enumerate users/groups provided + only via glibc NSS is suppressed. If is specified, such users/groups are included in the output (which is the default). @@ -112,9 +112,9 @@ Controls whether to include Varlink user/group lookups in the output, i.e. those done via the User/Group Record Lookup API via - Varlink. If is used any attempts to resolve or enumerate + Varlink. If is used, any attempts to resolve or enumerate users/groups provided only via Varlink are suppressed. If is - specified such users/groups are included in the output (which is the default). + specified, such users/groups are included in the output (which is the default). @@ -125,8 +125,8 @@ Controls whether to include user/group lookups in the output that are defined using drop-in files in /etc/userdb/, /run/userdb/, /run/host/userdb/, /usr/lib/userdb/. If - is used these records are suppressed. If - is specified such users/groups are included in the output (which + is used, these records are suppressed. If + is specified, such users/groups are included in the output (which is the default). @@ -136,9 +136,9 @@ Controls whether to synthesize records for the root and nobody users/groups if they - are not defined otherwise. By default (or yes), such records are implicitly + are not defined otherwise. By default (or with yes), such records are implicitly synthesized if otherwise missing since they have special significance to the OS. When - no this synthesizing is turned off. + no, this synthesizing is turned off. @@ -217,10 +217,10 @@ When used with the user or group command, filters the output by UID/GID ranges. Takes numeric minimum or maximum UID/GID values, respectively. Shows only - records within the specified range. When applied to the user command matches - against UIDs, when applied to the group command against GIDs (despite the name of - the switch). If unspecified defaults to 0 (for the minimum) and 4294967294 (for the maximum), i.e. by - default no filtering is applied as the whole UID/GID range is covered. + records within the specified range. When applied to the user command, it matches + against UIDs. When applied to the group command, matches against GIDs (despite the name of + the switch). If unspecified, defaults to 0 (for the minimum) and 4294967294 (for the maximum), i.e. by + default, no filtering is applied, as the whole UID/GID range is covered. @@ -270,7 +270,7 @@ group GROUP List all known group records or show details of one or more specified group - records. Use to tweak output mode. + records. Use to tweak the output mode. @@ -278,8 +278,8 @@ users-in-group GROUP - List users that are members of the specified groups. If no groups are specified list - all user/group memberships defined. Use to tweak output + List users that are members of the specified groups. If no groups are specified, list + all user/group memberships defined. Use to tweak the output mode. @@ -288,9 +288,9 @@ groups-of-user USER - List groups that the specified users are members of. If no users are specified list + Lists groups that the specified users are members of. If no users are specified, lists all user/group memberships defined (in this case, groups-of-user and - users-in-group are equivalent). Use to tweak output + users-in-group are equivalent). Use to tweak the output mode. @@ -364,7 +364,7 @@ This service is provided by systemd-userdbd.service8 and multiplexes user/group look-ups to all other running lookup services. This is the primary entry point - for user/group record clients, as it simplifies client side implementation substantially since they + for user/group record clients, as it simplifies client side implementation substantially, since they can ask a single service for lookups instead of asking all running services in parallel. userdbctl uses this service preferably, too, unless or are used, in which case finer control over the services to talk to is @@ -406,7 +406,7 @@ Note that userdbctl has internal support for NSS-based lookups too. This means that if neither io.systemd.Multiplexer nor - io.systemd.NameServiceSwitch are running look-ups into the basic user/group + io.systemd.NameServiceSwitch are running, look-ups into the basic user/group databases will still work. @@ -414,7 +414,7 @@ Integration with SSH The userdbctl tool may be used to make the list of SSH authorized keys possibly - contained in a user record available to the SSH daemon for authentication. For that configure the + contained in a user record available to the SSH daemon for authentication. For that, configure the following in sshd_config5: @@ -423,10 +423,10 @@ AuthorizedKeysCommand /usr/bin/userdbctl ssh-authorized-keys %u AuthorizedKeysCommandUser root … - Sometimes it is useful to allow chain invocation of another program to list SSH authorized keys. By - using the such a tool may be chain executed by userdbctl - ssh-authorized-keys once a lookup completes (regardless of whether an SSH key was found or - not). Example: + Sometimes, it is useful to allow chain invocation of another program to list SSH authorized keys. By + using the option, such a tool may be chain executed by userdbctl + ssh-authorized-keys once a lookup completes, regardless of whether an SSH key was found or + not. Example: … AuthorizedKeysCommand /usr/bin/userdbctl ssh-authorized-keys %u --chain /usr/bin/othertool %u @@ -440,7 +440,7 @@ AuthorizedKeysCommandUser root Exit status - On success, 0 is returned, a non-zero failure code otherwise. + On success, 0 is returned, and a non-zero failure code otherwise.