Trusted Solaris Developer's Guide


S

	saved privileges
		change UID, GUID, or SGUID ( )
		checking ( )
		defined ( )
		purpose ( )

	sbcleartos routine
		code example ( )
		declaration ( )

	sbcltos routine, declaration ( )

	sbsltos routine
		code example ( )
		declaration ( )

	scripts, privileged ( )

	secconf system call
		code example ( )
		declaration ( )

	security attribute flags
		API declarations ( ) ( )
		file systems
			API declarations ( )
			contrast with Solaris ( )
			manifest constants ( ) ( )
		processes
			API declarations ( )
			contrast with Solaris ( )
			getting and setting ( )
			manifest constants ( )
			when to use ( )

	security attributes
		access checks ( )
		access to privileges ( )
		accessing labels ( )
		API declarations ( )
		file systems
			API declarations ( )
			contrast with Solaris ( )
			described ( )
			manifest constants ( )
			vfstab_adjunct file ( )
			when to use ( )
		MLDs ( )
		on software packages ( )
		privileges ( )
		processes ( )
		RPC ( )
		TSIX
			changing ( )
			changing procedure ( )
			contrast with Solaris ( )
			location on packet ( )
			sending and receiving ( )
		X Window System
			contrast with Solaris ( )
			described ( )

	security policy
		accessing MLDs ( )
		accessing SLDs ( )
		administrative applications ( )
		auditing ( )
		CDE actions ( )
		clearances ( )
		command line execution ( ) ( )
		communication endpoints ( )
		covert channels ( )
		discretionary access operations ( )
		file system examples ( )
		file systems ( )
		file systems access ( )
		file systems privileges ( )
		IPC ( ) ( )
		label guidelines ( )
		labels ( )
		mandatory access operations ( )
		mapped memory ( )
		MLD access ( )
		multilevel ports ( )
		on man pages ( )
		pipes ( ) ( )
		privilege bracketing ( )
		privilege guidelines ( )
		privilege sets ( )
		privileges
			when to use ( )
		privileges, when to use ( )
		process tracing ( )
		PTYs ( )
		read access ( )
		reading man pages ( )
		signals ( )
		SLD access ( )
		sockets ( )
		System V IPC ( ) ( )
		TLI ( )
		translating labels ( ) ( )
		user applications ( )
		write access ( )
		X Window System ( )

	selection agent flag ( )

	selection.atoms file ( )

	Selection Manager
		bypassing with flag ( )
		security policy ( )

	semaphore sets
		API declarations ( ) ( )

	semgetl system call, declaration ( )

	sessionid field ( )

	set_effective_priv routine
		code example ( ) ( ) ( )
		declaration ( )

	set_id structure ( )

	set_inheritable_priv routine
		code example ( )
		declaration ( )

	set_permitted_priv routine
		code example ( )
		declaration ( )

	setbltype routine
		code example ( ) ( )
		declaration ( ) ( )

	SETCL_ALL flag ( )

	SETCL_SL flag ( )

	setclearance system call
		code example ( )
		declaration ( )

	setcmwlabel system call
		code example ( )
		declaration ( )

	setcmwplabel system call
		code example ( )
		declaration ( )
		when to use ( )

	setcsl routine
		code example ( )
		declaration ( )

	seteuid system call, and privileges ( )

	setfattrflag system call
		code example ( )
		declaration ( )

	setfpriv command, scripts ( )

	setfpriv system call
		code example ( ) ( )
		declaration ( )

	setpattr system call declaration ( )

	setppriv system call
		declaration ( )
		privilege bracketing ( )

	setreuid system call, and privileges ( )

	setting_flag field ( )

	setuid system call, and privileges ( )

	SGIDs, privilege to change ( )

	shared libraries, trusted ( )

	shared memory regions
		API declarations ( ) ( )

	shell escapes and privileges ( )

	shmgetl system call
		code example ( )
		declaration ( )

	SHORT_CLASSIFICATION flag ( )

	SHORT_WORDS flag ( )

	signals, access checks ( )

	single-label file systems ( )

	single-level mappings ( )

	single-level ports
		changing client SL ( )
		described ( )

	sl field ( ) ( )

	slabel_len field ( )

	SLDs
		accessing ( )
		adorned names ( )
		API declarations ( ) ( )
		creating ( )
		described ( )
		information structure ( )
		privileged tasks ( )
		sensitivity labels ( )
		structure ( )

	SLs
		See labels

	sockets
		access checks ( ) ( ) ( )

	software packages
		adding new ( )
		creating ( )
		editing existing ( )
		MAC attributes on ( )
		prototype file ( )

	st_atime field ( )

	st_ctime field ( )

	st_gid field ( )

	st_mode field ( )

	st_mtime field ( )

	st_nlink field ( )

	st_uid field ( )

	stat structure ( ) ( ) ( )

	stobc routine, code example ( )

	stobcl routine, declaration ( )

	stobclear routine
		code example ( )
		declaration ( )

	stobsl routine
		code example ( ) ( )
		declaration ( )

	str_to_priv routine
		and PRIV_ASSERT macro ( )
		code example ( )
		declaration ( )

	str_to_priv_set routine
		code example ( )
		declaration ( )

	strictly dominate levels ( ) ( )

	SUN_CLR_ID value ( )

	SUN_CLR_UN value ( )

	SUN_CMW_ID value ( )

	SUN_SL_ID value ( )

	SUN_SL_UN value ( )

	SVCXPRT structure ( )

	symbolic links
		information structure ( )
		MLDs ( )

	sys_trans_label privilege ( ) ( ) ( ) ( )

	system, privileges defined ( )

	SYSTEM_ACCREDITATION_RANGE value ( )

	system calls
		API declarations ( )
		security policy in man pages ( )

	system security configuration
		API declarations ( )
		variables described ( )
		when to check ( )

	System V IPC
		access checks ( ) ( )
		API declarations ( ) ( ) ( ) ( )
		described ( )
		discretionary access ( )
		mandatory access ( )
		privileged tasks ( )
		privileges, defined ( )
		sensitivity label structure ( )