Resources Included in the Configuration by Default

File Systems Defined in solaris9 Branded Zones

The file systems that are required for a branded zone are defined in the brand. You can add additional Solaris file systems to a solaris9 branded zone by using the fs resource property.

Privileges Defined in solaris9 Branded Zones

Processes are restricted to a subset of privileges. Privilege restriction prevents a zone from performing operations that might affect other zones. The set of privileges limits the capabilities of privileged users within the zone.

Default, required default, optional, and prohibited privileges are defined by each brand. You can also add or remove certain privileges by using the limitpriv property. See Privileges in a Non-Global Zone in System Administration Guide: Oracle Solaris Containers-Resource Management and Oracle Solaris Zones for information on Solaris privileges with respect to zones.

For more information about privileges, see the ppriv(1) man page and System Administration Guide: Security Services.