Security - Solaris Dynamic Tracing Guide

Skip Navigation Links
Exit Print View
	Solaris Dynamic Tracing Guide

Oracle Technology Network

Document Information

1. Introduction

2. Types, Operators, and Expressions

4. D Program Structure

5. Pointers and Arrays

7. Structs and Unions

8. Type and Constant Definitions

9. Aggregations

10. Actions and Subroutines

11. Buffers and Buffering

12. Output Formatting

13. Speculative Tracing

14. dtrace(1M) Utility

16. Options and Tunables

17. dtrace Provider

18. lockstat Provider

19. profile Provider

20. fbt Provider

21. syscall Provider

22. sdt Provider

23. sysinfo Provider

24. vminfo Provider

25. proc Provider

26. sched Provider

27. io Provider

28. mib Provider

29. fpuinfo Provider

30. pid Provider

31. plockstat Provider

32. fasttrap Provider

33. User Process Tracing

34. Statically Defined Tracing for User Applications

Privileged Use of DTrace

dtrace_proc Privilege

dtrace_user Privilege

dtrace_kernel Privilege

Super User Privileges

36. Anonymous Tracing

37. Postmortem Tracing

38. Performance Considerations

40. Translators

Chapter 35

Security

This chapter describes the privileges that system administrators can use to grant access to DTrace to particular users or processes. DTrace enables visibility into all aspects of the system including user-level functions, system calls, kernel functions, and more. It allows for powerful actions some of which can modify a program's state. Just as it would be inappropriate to allow a user access to another user's private files, a system administrator should not grant every user full access to all the facilities that DTrace offers. By default, only the super-user can use DTrace. The Least Privilege facility can be used to allow other users controlled use of DTrace.

Copyright © 2008, Oracle and/or its affiliates. All rights reserved. Legal Notices

Previous

Next