| | | |
S |
|
| saved privileges |
| | change UID, GUID, or SGUID ( ) |
| | checking ( ) |
| | defined ( ) |
| | purpose ( ) |
|
| sbcleartos routine |
| | code example ( ) |
| | declaration ( ) |
|
| sbcltos routine, declaration ( ) |
|
| sbsltos routine |
| | code example ( ) |
| | declaration ( ) |
|
| scripts, privileged ( ) |
|
| secconf system call |
| | code example ( ) |
| | declaration ( ) |
|
| security attribute flags |
| | API declarations ( ) ( ) |
| | file systems |
| | | API declarations ( ) |
| | | contrast with Solaris ( ) |
| | | manifest constants ( ) ( ) |
| | processes |
| | | API declarations ( ) |
| | | contrast with Solaris ( ) |
| | | getting and setting ( ) |
| | | manifest constants ( ) |
| | | when to use ( ) |
|
| security attributes |
| | access checks ( ) |
| | access to privileges ( ) |
| | accessing labels ( ) |
| | API declarations ( ) |
| | file systems |
| | | API declarations ( ) |
| | | contrast with Solaris ( ) |
| | | described ( ) |
| | | manifest constants ( ) |
| | | vfstab_adjunct file ( ) |
| | | when to use ( ) |
| | MLDs ( ) |
| | on software packages ( ) |
| | privileges ( ) |
| | processes ( ) |
| | RPC ( ) |
| | TSIX |
| | | changing ( ) |
| | | changing procedure ( ) |
| | | contrast with Solaris ( ) |
| | | location on packet ( ) |
| | | sending and receiving ( ) |
| | X Window System |
| | | contrast with Solaris ( ) |
| | | described ( ) |
|
| security policy |
| | accessing MLDs ( ) |
| | accessing SLDs ( ) |
| | administrative applications ( ) |
| | auditing ( ) |
| | CDE actions ( ) |
| | clearances ( ) |
| | command line execution ( ) ( ) |
| | communication endpoints ( ) |
| | covert channels ( ) |
| | discretionary access operations ( ) |
| | file system examples ( ) |
| | file systems ( ) |
| | file systems access ( ) |
| | file systems privileges ( ) |
| | IPC ( ) ( ) |
| | label guidelines ( ) |
| | labels ( ) |
| | mandatory access operations ( ) |
| | mapped memory ( ) |
| | MLD access ( ) |
| | multilevel ports ( ) |
| | on man pages ( ) |
| | pipes ( ) ( ) |
| | privilege bracketing ( ) |
| | privilege guidelines ( ) |
| | privilege sets ( ) |
| | privileges |
| | | when to use ( ) |
| | privileges, when to use ( ) |
| | process tracing ( ) |
| | PTYs ( ) |
| | read access ( ) |
| | reading man pages ( ) |
| | signals ( ) |
| | SLD access ( ) |
| | sockets ( ) |
| | System V IPC ( ) ( ) |
| | TLI ( ) |
| | translating labels ( ) ( ) |
| | user applications ( ) |
| | write access ( ) |
| | X Window System ( ) |
|
| selection agent flag ( ) |
|
| selection.atoms file ( ) |
|
| Selection Manager |
| | bypassing with flag ( ) |
| | security policy ( ) |
|
| semaphore sets |
| | API declarations ( ) ( ) |
|
| semgetl system call, declaration ( ) |
|
| sessionid field ( ) |
|
| set_effective_priv routine |
| | code example ( ) ( ) ( ) |
| | declaration ( ) |
|
| set_id structure ( ) |
|
| set_inheritable_priv routine |
| | code example ( ) |
| | declaration ( ) |
|
| set_permitted_priv routine |
| | code example ( ) |
| | declaration ( ) |
|
| setbltype routine |
| | code example ( ) ( ) |
| | declaration ( ) ( ) |
|
| SETCL_ALL flag ( ) |
|
| SETCL_SL flag ( ) |
|
| setclearance system call |
| | code example ( ) |
| | declaration ( ) |
|
| setcmwlabel system call |
| | code example ( ) |
| | declaration ( ) |
|
| setcmwplabel system call |
| | code example ( ) |
| | declaration ( ) |
| | when to use ( ) |
|
| setcsl routine |
| | code example ( ) |
| | declaration ( ) |
|
| seteuid system call, and privileges ( ) |
|
| setfattrflag system call |
| | code example ( ) |
| | declaration ( ) |
|
| setfpriv command, scripts ( ) |
|
| setfpriv system call |
| | code example ( ) ( ) |
| | declaration ( ) |
|
| setpattr system call declaration ( ) |
|
| setppriv system call |
| | declaration ( ) |
| | privilege bracketing ( ) |
|
| setreuid system call, and privileges ( ) |
|
| setting_flag field ( ) |
|
| setuid system call, and privileges ( ) |
|
| SGIDs, privilege to change ( ) |
|
| shared libraries, trusted ( ) |
|
| shared memory regions |
| | API declarations ( ) ( ) |
|
| shell escapes and privileges ( ) |
|
| shmgetl system call |
| | code example ( ) |
| | declaration ( ) |
|
| SHORT_CLASSIFICATION flag ( ) |
|
| SHORT_WORDS flag ( ) |
|
| signals, access checks ( ) |
|
| single-label file systems ( ) |
|
| single-level mappings ( ) |
|
| single-level ports |
| | changing client SL ( ) |
| | described ( ) |
|
| sl field ( ) ( ) |
|
| slabel_len field ( ) |
|
| SLDs |
| | accessing ( ) |
| | adorned names ( ) |
| | API declarations ( ) ( ) |
| | creating ( ) |
| | described ( ) |
| | information structure ( ) |
| | privileged tasks ( ) |
| | sensitivity labels ( ) |
| | structure ( ) |
|
| SLs |
| | See labels | |
|
| sockets |
| | access checks ( ) ( ) ( ) |
|
| software packages |
| | adding new ( ) |
| | creating ( ) |
| | editing existing ( ) |
| | MAC attributes on ( ) |
| | prototype file ( ) |
|
| st_atime field ( ) |
|
| st_ctime field ( ) |
|
| st_gid field ( ) |
|
| st_mode field ( ) |
|
| st_mtime field ( ) |
|
| st_nlink field ( ) |
|
| st_uid field ( ) |
|
| stat structure ( ) ( ) ( ) |
|
| stobc routine, code example ( ) |
|
| stobcl routine, declaration ( ) |
|
| stobclear routine |
| | code example ( ) |
| | declaration ( ) |
|
| stobsl routine |
| | code example ( ) ( ) |
| | declaration ( ) |
|
| str_to_priv routine |
| | and PRIV_ASSERT macro ( ) |
| | code example ( ) |
| | declaration ( ) |
|
| str_to_priv_set routine |
| | code example ( ) |
| | declaration ( ) |
|
| strictly dominate levels ( ) ( ) |
|
| SUN_CLR_ID value ( ) |
|
| SUN_CLR_UN value ( ) |
|
| SUN_CMW_ID value ( ) |
|
| SUN_SL_ID value ( ) |
|
| SUN_SL_UN value ( ) |
|
| SVCXPRT structure ( ) |
|
| symbolic links |
| | information structure ( ) |
| | MLDs ( ) |
|
| sys_trans_label privilege ( ) ( ) ( ) ( ) |
|
| system, privileges defined ( ) |
|
| SYSTEM_ACCREDITATION_RANGE value ( ) |
|
| system calls |
| | API declarations ( ) |
| | security policy in man pages ( ) |
|
| system security configuration |
| | API declarations ( ) |
| | variables described ( ) |
| | when to check ( ) |
|
| System V IPC |
| | access checks ( ) ( ) |
| | API declarations ( ) ( ) ( ) ( ) |
| | described ( ) |
| | discretionary access ( ) |
| | mandatory access ( ) |
| | privileged tasks ( ) |
| | privileges, defined ( ) |
| | sensitivity label structure ( ) |