System Administration Guide: Security Services

Privilege Descriptions

Privileges are logically grouped on the basis of the area of the privilege.

Some privileges have a limited effect on the system, and some have a broad effect. The definition of the proc_taskid privilege indicates its limited effect:

        Allows a process to assign a new task ID to the calling process.

The definition of the file_setid privilege indicates its broad effect:

        Allow a process to have direct access to the network layer.

The privileges(5) man page provides descriptions of every privilege. The command ppriv -lv prints a description of every privilege to standard out.