Trusted Solaris Label Administration

Preface

Labels, clearances, and handling caveats are used to protect information in the Trusted Solaris environment. The components of labels, clearances, and handling caveats are specified in the label_encodings(4)file. This manual provides needed background and describes how to edit, check, and install the label_encodings file.

Who Should Use This Book

This book is for security administrators, who are responsible for defining the organization's labels, and for those who assume the security administrator role to implement the labels in the site's label_encodings file on the Trusted Solaris system.


Note -

Even though the Trusted Solaris environment can be configured with no visible labels, labels are always being used, and mandatory access control checks are always being made. Therefore, the security administrator role must always configure a label_encodings file as described in this manual.


Related Books

Prerequisite knowledge is contained in the following books in the Trusted Solaris documentation set:

Before You Read This Book

The person who works in the security administrator role to configure labels should:

The necessary level of knowledge may be acquired through:

Ordering Sun Documents

Fatbrain.com stocks documentation from Sun Microsystems, Inc.

For a list of available documents and how to order them, visit http://www1.fatbrain.com/documentation/sun.

How This Book Is Organized

Type Styles Usage in Text and Examples

The following table shows and explains the type styles used in this manual.

Table P-1 Typographic Conventions

Type Face 

Meaning 

Example 

Literal

The names of commands, files, and directories, on-screen computer output 

Edit your .login file.

Use ls -a to list all files.

hostname%

You have mail.

UserType

What you type, contrasted with on-screen computer output 

hostname% su

Password:

Variable

Argument name in a command-line. 

To delete a file, enter rm filename.

 

You replace the argument with a real name or value. 

hostname% rm myfile

Title or Emphasis

Book titles, new words or terms, or words to be emphasized 

Read Chapter 6 in User's Guide. These are called class options.

 

 

You must be root to do this.

Trusted Solaris Prompts

The following table shows the Trusted Solaris prompts.

Shell 

Prompt 

C shell prompt 

hostname%

Bourne shell and Korn shell prompt 

$

Profile Shell prompt 

$

root prompt (with any shell) 

#

PROM mode prompt (SPARC only) 

>