Limit Privilege Set (Developer's Guide to Oracle Solaris Security)

Developer's Guide to Oracle Solaris Security

Previous: Inheritable Privilege Set
Next: Effective Privilege Set

Limit Privilege Set

The limit set enables a developer to control which privileges a process can exercise or pass on to child processes. A child process and the descendant processes can only obtain privileges that are in the limit set. When a setuid(0) function is executed, the limit set determines the privileges that the application is permitted to use. The limit set is enforced at exec(1) time. Removal of privileges from the limit set does not affect any other sets until the exec(1) is performed.

Previous: Inheritable Privilege Set
Next: Effective Privilege Set