Administrative files are edited with a trusted editor that incorporates auditing. This editor also prevents the user from executing shell commands and from saving to any file name other than the name of the original file.
Assume a role.
For details, see How to Enter the Global Zone in Trusted Extensions.
Open a trusted editor.
In Solaris Trusted Extensions (CDE), do the following:
To bring up the editor, click mouse button 3 on the background to bring up the Workspace menu.
Click Applications, then click the Application Manager menu item.
The Trusted_Extensions folder is in the Application Manager.
Open the Trusted_Extensions folder.
Double-click the Admin Editor action.
In Solaris Trusted Extensions (JDS), do the following:
(Optional) To use gedit as the trusted editor, modify the EDITOR variable.
For details, see How to Assign the Editor of Your Choice as the Trusted Editor.
Use the command line to bring up the trusted editor.
# /usr/dt/bin/trusted_edit filename
You must provide a filename argument.
To create a new file, type the full path name for the new file.
When you save the file, the editor creates a temporary file.
To edit an existing file, type the full path name for the existing file.
If your editor provides a Save As option, do not use it. Use the editor's Save option to save the file.
To save the file to the specified path name, close the editor.