Types of Privileges
The Trusted Solaris environment allows up to 128 different privileges. The total includes the following types of Trusted Solaris privileges and site-defined privileges. See priv_desc(4) for a description of the Trusted Solaris privileges.
-
File system privileges override file system restrictions on user and group IDs, access permissions, labeling, ownership, and file privilege sets.
-
System V Interprocess Communication (IPC) privileges override restrictions on message queues, semaphore sets, or shared memory regions.
-
Network privileges override restrictions on reserved port binding, multilevel port binding, sending broadcast messages, or specifying security attributes on messages or communication endpoints.
-
Process privileges override restrictions on process auditing, labeling, covert channel delays, ownership, clearance, user IDs, or group IDs.
-
System privileges override restrictions on system auditing, workstation booting, workstation configuration management, console output redirection, device management, file systems, creating hard links to directories, increasing message queue size, increasing processes, workstation network configuration, third-party loadable modules, or label translation.
-
X Window System privileges override restrictions on reading to and writing from windows, input devices, labeling, font paths, moving data between windows, X server resource management, or direct graphics access (DGA).
- © 2010, Oracle Corporation and/or its affiliates