174b5a35dSPaul Cheng# 274b5a35dSPaul Cheng# CDDL HEADER START 374b5a35dSPaul Cheng# 474b5a35dSPaul Cheng# The contents of this file are subject to the terms of the 574b5a35dSPaul Cheng# Common Development and Distribution License (the "License"). 674b5a35dSPaul Cheng# You may not use this file except in compliance with the License. 774b5a35dSPaul Cheng# 874b5a35dSPaul Cheng# You can obtain a copy of the license at usr/src/OPENSOLARIS.LICENSE 974b5a35dSPaul Cheng# or http://www.opensolaris.org/os/licensing. 1074b5a35dSPaul Cheng# See the License for the specific language governing permissions 1174b5a35dSPaul Cheng# and limitations under the License. 1274b5a35dSPaul Cheng# 1374b5a35dSPaul Cheng# When distributing Covered Code, include this CDDL HEADER in each 1474b5a35dSPaul Cheng# file and include the License file at usr/src/OPENSOLARIS.LICENSE. 1574b5a35dSPaul Cheng# If applicable, add the following below this CDDL HEADER, with the 1674b5a35dSPaul Cheng# fields enclosed by brackets "[]" replaced with your own identifying 1774b5a35dSPaul Cheng# information: Portions Copyright [yyyy] [name of copyright owner] 1874b5a35dSPaul Cheng# 1974b5a35dSPaul Cheng# CDDL HEADER END 2074b5a35dSPaul Cheng# 2174b5a35dSPaul Cheng 220a925b19SPaul Cheng# Copyright (c) 1999, 2010, Oracle and/or its affiliates. All rights reserved. 237d10cd4dSGarrett D'Amore# Copyright 2022 Garrett D'Amore <garrett@damore.org> 24*1edba515SAndy Fiddaman# Copyright 2024 Oxide Computer Company 2553ac4dcaSjacobs# 267c478bd9Sstevel@tonic-gate# /etc/security/exec_attr 277c478bd9Sstevel@tonic-gate# 28bbf21555SRichard Lowe# execution attributes for profiles. see exec_attr(5) 297c478bd9Sstevel@tonic-gate# 307c478bd9Sstevel@tonic-gate# 317c478bd9Sstevel@tonic-gateAll:suser:cmd:::*: 32f8994074SJan FriedelAudit Control:solaris:cmd:::/usr/sbin/audit:privs=proc_owner,sys_audit 33223ffd47SPeter TribbleAudit Configuration:solaris:cmd:::/usr/sbin/auditconfig:privs=sys_audit 34f8994074SJan FriedelAudit Review:solaris:cmd:::/usr/sbin/auditreduce:euid=0 35f8994074SJan FriedelAudit Review:solaris:cmd:::/usr/sbin/auditstat:privs=proc_audit 36f8994074SJan FriedelAudit Review:solaris:cmd:::/usr/sbin/praudit:privs=file_dac_read 377c478bd9Sstevel@tonic-gateContract Observer:solaris:cmd:::/usr/bin/ctwatch:\ 387c478bd9Sstevel@tonic-gate privs=contract_event,contract_observer 397c478bd9Sstevel@tonic-gateCron Management:suser:cmd:::/usr/bin/crontab:euid=0 407c478bd9Sstevel@tonic-gateCrypto Management:suser:cmd:::/usr/sbin/cryptoadm:euid=0 41985be8f1SwyllysCrypto Management:suser:cmd:::/usr/bin/kmfcfg:euid=0 427c478bd9Sstevel@tonic-gateCrypto Management:suser:cmd:::/usr/sfw/bin/openssl:euid=0 437c478bd9Sstevel@tonic-gateCrypto Management:suser:cmd:::/usr/sfw/bin/CA.pl:euid=0 447c478bd9Sstevel@tonic-gateDHCP Management:suser:cmd:::/usr/lib/inet/dhcp/svcadm/dhcpconfig:uid=0 457c478bd9Sstevel@tonic-gateDHCP Management:suser:cmd:::/usr/lib/inet/dhcp/svcadm/dhtadm:uid=0 467c478bd9Sstevel@tonic-gateDHCP Management:suser:cmd:::/usr/lib/inet/dhcp/svcadm/pntadm:uid=0 477c478bd9Sstevel@tonic-gateDevice Management:suser:cmd:::/usr/sbin/allocate:uid=0 487c478bd9Sstevel@tonic-gateDevice Management:suser:cmd:::/usr/sbin/add_drv:uid=0 497c478bd9Sstevel@tonic-gateDevice Management:suser:cmd:::/usr/sbin/deallocate:uid=0 507c478bd9Sstevel@tonic-gateDevice Management:suser:cmd:::/usr/sbin/rem_drv:uid=0 517c478bd9Sstevel@tonic-gateDevice Management:suser:cmd:::/usr/sbin/update_drv:uid=0 527c478bd9Sstevel@tonic-gateDevice Security:suser:cmd:::/usr/sbin/add_drv:uid=0 537c478bd9Sstevel@tonic-gateDevice Security:suser:cmd:::/usr/sbin/devfsadm:uid=0 547c478bd9Sstevel@tonic-gateDevice Security:suser:cmd:::/usr/sbin/eeprom:uid=0 557c478bd9Sstevel@tonic-gateDevice Security:solaris:cmd:::/usr/bin/kbd:uid=0;gid=sys 567c478bd9Sstevel@tonic-gateDevice Security:suser:cmd:::/usr/sbin/list_devices:euid=0 577c478bd9Sstevel@tonic-gateDevice Security:suser:cmd:::/usr/sbin/rem_drv:uid=0 587c478bd9Sstevel@tonic-gateDevice Security:suser:cmd:::/usr/sbin/strace:euid=0 597c478bd9Sstevel@tonic-gateDevice Security:suser:cmd:::/usr/sbin/update_drv:uid=0 60f875b4ebSricaDevice Security:suser:cmd:::/usr/sbin/add_allocatable:euid=0 61f875b4ebSricaDevice Security:suser:cmd:::/usr/sbin/remove_allocatable:euid=0 627c478bd9Sstevel@tonic-gateFTP Management:suser:cmd:::/usr/sbin/ftpaddhost:uid=0 637c478bd9Sstevel@tonic-gateFTP Management:suser:cmd:::/usr/sbin/ftpconfig:uid=0 647c478bd9Sstevel@tonic-gateFTP Management:suser:cmd:::/usr/sbin/ftprestart:euid=0 657c478bd9Sstevel@tonic-gateFTP Management:suser:cmd:::/usr/sbin/ftpshut:euid=0;egid=sys 667c478bd9Sstevel@tonic-gateFTP Management:suser:cmd:::/usr/sbin/privatepw:uid=0;egid=sys 677c478bd9Sstevel@tonic-gateFile System Management:solaris:cmd:::/sbin/mount:privs=sys_mount 687c478bd9Sstevel@tonic-gateFile System Management:solaris:cmd:::/sbin/umount:privs=sys_mount 697c478bd9Sstevel@tonic-gateFile System Management:suser:cmd:::/usr/bin/eject:euid=0 707c478bd9Sstevel@tonic-gateFile System Management:suser:cmd:::/usr/bin/mkdir:euid=0 717c478bd9Sstevel@tonic-gateFile System Management:suser:cmd:::/usr/bin/rmdir:euid=0 727c478bd9Sstevel@tonic-gateFile System Management:suser:cmd:::/usr/lib/autofs/automountd:euid=0 737c478bd9Sstevel@tonic-gateFile System Management:suser:cmd:::/usr/lib/fs/autofs/automount:euid=0 747c478bd9Sstevel@tonic-gateFile System Management:suser:cmd:::/usr/lib/fs/nfs/showmount:euid=0 757c478bd9Sstevel@tonic-gateFile System Management:suser:cmd:::/usr/lib/fs/ufs/fsirand:euid=0 767c478bd9Sstevel@tonic-gateFile System Management:suser:cmd:::/usr/lib/fs/ufs/newfs:euid=0 777c478bd9Sstevel@tonic-gateFile System Management:suser:cmd:::/usr/lib/fs/ufs/tunefs:uid=0 787c478bd9Sstevel@tonic-gateFile System Management:suser:cmd:::/usr/sbin/clri:euid=0 797c478bd9Sstevel@tonic-gateFile System Management:suser:cmd:::/usr/sbin/devinfo:euid=0 807c478bd9Sstevel@tonic-gateFile System Management:suser:cmd:::/usr/sbin/dfmounts:euid=0 817c478bd9Sstevel@tonic-gateFile System Management:suser:cmd:::/usr/sbin/dfshares:euid=0 827c478bd9Sstevel@tonic-gateFile System Management:suser:cmd:::/usr/sbin/ff:euid=0 837c478bd9Sstevel@tonic-gateFile System Management:suser:cmd:::/usr/sbin/format:euid=0 847c478bd9Sstevel@tonic-gateFile System Management:suser:cmd:::/usr/sbin/fsck:euid=0 857c478bd9Sstevel@tonic-gateFile System Management:suser:cmd:::/usr/sbin/fsdb:euid=0 867c478bd9Sstevel@tonic-gateFile System Management:suser:cmd:::/usr/sbin/fstyp:euid=0 877c478bd9Sstevel@tonic-gateFile System Management:suser:cmd:::/usr/sbin/fuser:euid=0 88bd4b2746SRitwik GhoshalFile System Management:solaris:cmd:::/usr/sbin/iscsiadm:euid=0;privs=basic 897c478bd9Sstevel@tonic-gateFile System Management:suser:cmd:::/usr/sbin/mkfile:euid=0 907c478bd9Sstevel@tonic-gateFile System Management:suser:cmd:::/usr/sbin/mkfs:euid=0 917c478bd9Sstevel@tonic-gateFile System Management:suser:cmd:::/usr/sbin/mount:uid=0 927c478bd9Sstevel@tonic-gateFile System Management:suser:cmd:::/usr/sbin/mountall:uid=0 93fcf3ce44SJohn ForteFile System Management:solaris:cmd:::/usr/sbin/mpathadm:privs=sys_devices 947c478bd9Sstevel@tonic-gateFile System Management:solaris:cmd:::/usr/sbin/quotacheck:uid=0;gid=sys 957c478bd9Sstevel@tonic-gateFile System Management:solaris:cmd:::/usr/sbin/quotaoff:uid=0;gid=sys 967c478bd9Sstevel@tonic-gateFile System Management:solaris:cmd:::/usr/sbin/quotaon:uid=0;gid=sys 97711890bcSjc156560File System Management:solaris:cmd:::/usr/sbin/raidctl:privs=sys_config,sys_devices;euid=0 987c478bd9Sstevel@tonic-gateFile System Management:suser:cmd:::/usr/sbin/ramdiskadm:euid=0 999e86db79SHyon KimFile System Management:solaris:cmd:::/usr/sbin/sasinfo:privs=sys_devices 100fcf3ce44SJohn ForteFile System Management:solaris:cmd:::/usr/sbin/sbdadm:privs=sys_devices 1017c478bd9Sstevel@tonic-gateFile System Management:suser:cmd:::/usr/sbin/share:uid=0;gid=root 1026185db85SdougmFile System Management:suser:cmd:::/usr/sbin/sharemgr:uid=0;gid=root 1037c478bd9Sstevel@tonic-gateFile System Management:suser:cmd:::/usr/sbin/shareall:uid=0;gid=root 104fcf3ce44SJohn ForteFile System Management:solaris:cmd:::/usr/sbin/stmfadm:privs=sys_devices 1057c478bd9Sstevel@tonic-gateFile System Management:suser:cmd:::/usr/sbin/swap:euid=0 1067c478bd9Sstevel@tonic-gateFile System Management:suser:cmd:::/usr/sbin/umount:uid=0 1077c478bd9Sstevel@tonic-gateFile System Management:suser:cmd:::/usr/sbin/umountall:uid=0 1087c478bd9Sstevel@tonic-gateFile System Management:suser:cmd:::/usr/sbin/unshare:uid=0;gid=root 1097c478bd9Sstevel@tonic-gateFile System Management:suser:cmd:::/usr/sbin/unshareall:uid=0;gid=root 110134a1f4eSCasper H.S. DikForced Privilege:solaris:cmd:::/usr/bin/newtask:\ 111134a1f4eSCasper H.S. Dik privs=proc_taskid,sys_resource,sys_res_config,proc_priocntl 112134a1f4eSCasper H.S. DikForced Privilege:solaris:cmd:::/usr/bin/rcp:privs=net_privaddr 113134a1f4eSCasper H.S. DikForced Privilege:solaris:cmd:::/usr/bin/rdist:privs=net_privaddr 114134a1f4eSCasper H.S. DikForced Privilege:solaris:cmd:::/usr/bin/rlogin:privs=net_privaddr 115134a1f4eSCasper H.S. DikForced Privilege:solaris:cmd:::/usr/bin/rmformat:\ 116134a1f4eSCasper H.S. Dik privs=file_dac_read,file_dac_write,proc_fork,proc_exec,sys_mount,sys_devices 117134a1f4eSCasper H.S. DikForced Privilege:solaris:cmd:::/usr/bin/rsh:privs=net_privaddr 118134a1f4eSCasper H.S. DikForced Privilege:solaris:cmd:::/usr/bin/w:privs=proc_owner 119134a1f4eSCasper H.S. DikForced Privilege:solaris:cmd:::/usr/lib/fs/ufs/quota:privs=file_dac_read 120134a1f4eSCasper H.S. DikForced Privilege:solaris:cmd:::/usr/lib/fs/ufs/ufsdump:privs=net_privaddr 121134a1f4eSCasper H.S. DikForced Privilege:solaris:cmd:::/usr/lib/fs/ufs/ufsrestore:privs=net_privaddr 122134a1f4eSCasper H.S. DikForced Privilege:solaris:cmd:::/usr/sbin/ping:\ 123134a1f4eSCasper H.S. Dik privs=net_icmpaccess,sys_ip_config 124134a1f4eSCasper H.S. DikForced Privilege:solaris:cmd:::/usr/sbin/traceroute:\ 125134a1f4eSCasper H.S. Dik privs=net_icmpaccess,net_rawaccess 126134a1f4eSCasper H.S. DikForced Privilege:solaris:cmd:::/usr/sbin/whodo:privs=proc_owner 127134a1f4eSCasper H.S. DikForced Privilege:solaris:cmd:::/usr/lib/fs/smbfs/mount:privs=sys_mount 128134a1f4eSCasper H.S. DikForced Privilege:solaris:cmd:::/usr/lib/fs/smbfs/umount:privs=sys_mount 129f4b3ec61Sdh155122IP Filter Management:solaris:cmd:::/usr/sbin/ipf:privs=sys_ip_config 130f4b3ec61Sdh155122IP Filter Management:solaris:cmd:::/usr/sbin/ipfs:privs=sys_ip_config 131f4b3ec61Sdh155122IP Filter Management:solaris:cmd:::/usr/sbin/ipmon:privs=sys_ip_config 132f4b3ec61Sdh155122IP Filter Management:solaris:cmd:::/usr/sbin/ipfstat:privs=sys_ip_config;gid=sys 133f4b3ec61Sdh155122IP Filter Management:solaris:cmd:::/usr/sbin/ipnat:privs=sys_ip_config;gid=sys 134f4b3ec61Sdh155122IP Filter Management:solaris:cmd:::/usr/sbin/ippool:privs=sys_ip_config;gid=sys 1357c478bd9Sstevel@tonic-gateKerberos Server Management:solaris:cmd:::/usr/lib/krb5/krb5kdc:uid=0 1367c478bd9Sstevel@tonic-gateKerberos Server Management:solaris:cmd:::/usr/lib/krb5/kadmind:uid=0 1377c478bd9Sstevel@tonic-gateKerberos Server Management:solaris:cmd:::/usr/lib/krb5/kprop:euid=0;privs=none 1387c478bd9Sstevel@tonic-gateKerberos Server Management:solaris:cmd:::/usr/sbin/kadmin.local:euid=0;privs=none 1397c478bd9Sstevel@tonic-gateKerberos Server Management:solaris:cmd:::/usr/sbin/kdb5_util:euid=0;privs=none 14054925bf6SwillfKerberos Server Management:solaris:cmd:::/usr/sbin/kdb5_ldap_util:euid=0;privs=none 1411fceb383SsemeryKerberos Server Management:solaris:cmd:::/usr/sbin/kdcmgr:euid=0;privs=none 1427c478bd9Sstevel@tonic-gateKerberos Client Management:solaris:cmd:::/usr/bin/klist:euid=0;privs=file_dac_read 1437c478bd9Sstevel@tonic-gateKerberos Client Management:solaris:cmd:::/usr/sbin/kadmin:euid=0;privs=none 1447c478bd9Sstevel@tonic-gateKerberos Client Management:solaris:cmd:::/usr/sbin/kclient:euid=0;privs=none 1457c478bd9Sstevel@tonic-gateLog Management:suser:cmd:::/usr/sbin/logadm:euid=0 1467c478bd9Sstevel@tonic-gateMail Management:suser:cmd:::/usr/lib/sendmail:uid=0 1477c478bd9Sstevel@tonic-gateMail Management:suser:cmd:::/usr/sbin/editmap:euid=0 1487c478bd9Sstevel@tonic-gateMail Management:suser:cmd:::/usr/sbin/makemap:euid=0 1497c478bd9Sstevel@tonic-gateMail Management:suser:cmd:::/usr/sbin/newaliases:euid=0 1507c478bd9Sstevel@tonic-gateMaintenance and Repair:solaris:cmd:::/usr/bin/mdb:privs=all 1517c478bd9Sstevel@tonic-gateMaintenance and Repair:suser:cmd:::/usr/bin/mdb:euid=0 152dfac3eb2SDavid PowellMaintenance and Repair:solaris:cmd:::/usr/bin/coreadm:euid=0;privs=proc_owner 1537c478bd9Sstevel@tonic-gateMaintenance and Repair:suser:cmd:::/usr/bin/date:euid=0 1547c478bd9Sstevel@tonic-gateMaintenance and Repair:suser:cmd:::/usr/bin/ldd:euid=0 1557c478bd9Sstevel@tonic-gateMaintenance and Repair:suser:cmd:::/usr/bin/vmstat:euid=0 1567c478bd9Sstevel@tonic-gateMaintenance and Repair:suser:cmd:::/usr/sbin/eeprom:euid=0 1577c478bd9Sstevel@tonic-gateMaintenance and Repair:suser:cmd:::/usr/sbin/halt:euid=0 1581a97e40eSvikramMaintenance and Repair:suser:cmd:::/sbin/init:uid=0 159d5ace945SErwin T TsaurMaintenance and Repair:solaris:cmd:::/usr/sbin/pcitool:privs=all 1607c478bd9Sstevel@tonic-gateMaintenance and Repair:suser:cmd:::/usr/sbin/poweroff:uid=0 1617c478bd9Sstevel@tonic-gateMaintenance and Repair:suser:cmd:::/usr/sbin/prtconf:euid=0 1627c478bd9Sstevel@tonic-gateMaintenance and Repair:suser:cmd:::/usr/sbin/reboot:uid=0 1637c478bd9Sstevel@tonic-gateMaintenance and Repair:suser:cmd:::/usr/sbin/syslogd:euid=0 164ce077e82SvikramMaintenance and Repair:suser:cmd:::/sbin/bootadm:euid=0 1652449e17fSsherrymMaintenance and Repair:solaris:cmd:::/usr/sbin/ucodeadm:privs=all 166d3c97224SAlexander KolbasovMaintenance and Repair:solaris:cmd:::/usr/sbin/cpustat:privs=basic,cpc_cpu 167d3c97224SAlexander KolbasovMaintenance and Repair:solaris:cmd:::/usr/bin/pgstat:privs=basic,cpc_cpu 168d3c97224SAlexander KolbasovMaintenance and Repair:solaris:cmd:::/usr/bin/kstat:privs=basic,cpc_cpu 1697c478bd9Sstevel@tonic-gateMedia Backup:suser:cmd:::/usr/bin/mt:euid=0 1707c478bd9Sstevel@tonic-gateMedia Backup:suser:cmd:::/usr/lib/fs/ufs/ufsdump:euid=0;gid=sys 1717c478bd9Sstevel@tonic-gateMedia Backup:suser:cmd:::/usr/sbin/tar:euid=0 172a2721256SWilliam YoungMedia Catalog:solaris:cmd:::/usr/bin/bart:\ 173a2721256SWilliam Young privs=file_dac_read,file_dac_search 1747c478bd9Sstevel@tonic-gateMedia Restore:suser:cmd:::/usr/bin/cpio:euid=0 1757c478bd9Sstevel@tonic-gateMedia Restore:suser:cmd:::/usr/bin/mt:euid=0 1767c478bd9Sstevel@tonic-gateMedia Restore:suser:cmd:::/usr/lib/fs/ufs/ufsrestore:euid=0 1777c478bd9Sstevel@tonic-gateMedia Restore:suser:cmd:::/usr/sbin/tar:euid=0 1787c478bd9Sstevel@tonic-gateName Service Management:suser:cmd:::/usr/sbin/nscd:euid=0 1797c478bd9Sstevel@tonic-gateName Service Security:suser:cmd:::/usr/bin/chkey:euid=0 1807c478bd9Sstevel@tonic-gateName Service Security:suser:cmd:::/usr/sbin/ldapclient:uid=0 1817c478bd9Sstevel@tonic-gateName Service Security:suser:cmd:::/usr/sbin/newkey:euid=0 1827c478bd9Sstevel@tonic-gateNetwork Management:solaris:cmd:::/sbin/ifconfig:uid=0 183f4b3ec61Sdh155122Network Management:solaris:cmd:::/sbin/route:privs=sys_ip_config 1847c478bd9Sstevel@tonic-gateNetwork Management:solaris:cmd:::/sbin/routeadm:euid=0;\ 185f4b3ec61Sdh155122 privs=proc_chroot,proc_owner,sys_ip_config 1866ba597c5SAnurag S. MaskeyNetwork Management:solaris:cmd:::/sbin/dladm:euid=dladm;egid=netadm;\ 187eae72b5bSSebastien Roy privs=sys_dl_config,net_rawaccess,proc_audit 1880dc2366fSVenugopal IyerNetwork Management:solaris:cmd:::/sbin/dlstat:euid=dladm;egid=sys; 1890dc2366fSVenugopal IyerNetwork Management:solaris:cmd:::/sbin/flowadm:euid=dladm;egid=sys;\ 190da14cebeSEric Cheng privs=sys_dl_config,net_rawaccess,proc_audit 1910dc2366fSVenugopal IyerNetwork Management:solaris:cmd:::/sbin/flowstat:euid=dladm;egid=sys; 1926e91bba0SGirish MoodalbailNetwork Management:solaris:cmd:::/sbin/ipadm:euid=netadm;egid=netadm;\ 1936e91bba0SGirish Moodalbail privs=sys_ip_config,net_rawaccess 1947c478bd9Sstevel@tonic-gateNetwork Management:suser:cmd:::/usr/bin/netstat:uid=0 1957c478bd9Sstevel@tonic-gateNetwork Management:suser:cmd:::/usr/bin/rup:euid=0 1967c478bd9Sstevel@tonic-gateNetwork Management:suser:cmd:::/usr/bin/ruptime:euid=0 1977c478bd9Sstevel@tonic-gateNetwork Management:suser:cmd:::/usr/sbin/asppp2pppd:euid=0 1987c478bd9Sstevel@tonic-gateNetwork Management:suser:cmd:::/usr/sbin/ifconfig:uid=0 1997c478bd9Sstevel@tonic-gateNetwork Management:suser:cmd:::/usr/sbin/ipaddrsel:euid=0 2007c478bd9Sstevel@tonic-gateNetwork Management:suser:cmd:::/usr/sbin/ipqosconf:euid=0 2017c478bd9Sstevel@tonic-gateNetwork Management:suser:cmd:::/usr/sbin/rndc:privs=file_dac_read 2027c478bd9Sstevel@tonic-gateNetwork Management:suser:cmd:::/usr/sbin/route:uid=0 2037c478bd9Sstevel@tonic-gateNetwork Management:suser:cmd:::/usr/sbin/snoop:uid=0 204b127ac41SPhilip KirkNetwork Management:solaris:cmd:::/usr/sbin/snoop:privs=net_observability 2057c478bd9Sstevel@tonic-gateNetwork Management:suser:cmd:::/usr/sbin/spray:euid=0 206*1edba515SAndy FiddamanNetwork TCP Key Management:suser:cmd:::/usr/sbin/tcpkey:privs=sys_ip_config 207b127ac41SPhilip KirkNetwork Observability:solaris:cmd:::/usr/sbin/snoop:privs=net_observability 2080ba2cbe9Sxc151355Network Link Security:solaris:cmd:::/sbin/dladm:euid=dladm;egid=sys;\ 209eae72b5bSSebastien Roy privs=sys_dl_config,net_rawaccess,proc_audit 2100dc2366fSVenugopal IyerNetwork Link Security:solaris:cmd:::/sbin/dlstat:euid=dladm;egid=sys; 211fae0e2d7SpwernauNetwork IPsec Management:solaris:cmd:::/usr/lib/inet/certdb:euid=0;privs=none 212fae0e2d7SpwernauNetwork IPsec Management:solaris:cmd:::/usr/lib/inet/certlocal:euid=0;privs=none 213fae0e2d7SpwernauNetwork IPsec Management:solaris:cmd:::/usr/lib/inet/certrldb:euid=0;privs=none 214e3320f40SmarkfenNetwork IPsec Management:solaris:cmd:::/usr/lib/inet/in.iked:euid=0 215fae0e2d7SpwernauNetwork IPsec Management:solaris:cmd:::/usr/sbin/ikeadm:euid=0;privs=file_dac_write 216fae0e2d7SpwernauNetwork IPsec Management:solaris:cmd:::/usr/sbin/ikecert:euid=0;privs=none 217fae0e2d7SpwernauNetwork IPsec Management:solaris:cmd:::/usr/sbin/ipsecconf:euid=0;privs=sys_ip_config 218fae0e2d7SpwernauNetwork IPsec Management:solaris:cmd:::/usr/sbin/ipseckey:uid=0;privs=sys_ip_config 219e3320f40SmarkfenNetwork IPsec Management:solaris:cmd:::/usr/sbin/ipsecalgs:privs=sys_ip_config 220e3320f40SmarkfenNetwork IPsec Management:suser:cmd:::/usr/lib/inet/certdb:euid=0 221e3320f40SmarkfenNetwork IPsec Management:suser:cmd:::/usr/lib/inet/certlocal:euid=0 222e3320f40SmarkfenNetwork IPsec Management:suser:cmd:::/usr/lib/inet/certrldb:euid=0 223e3320f40SmarkfenNetwork IPsec Management:suser:cmd:::/usr/lib/inet/in.iked:euid=0 224e3320f40SmarkfenNetwork IPsec Management:suser:cmd:::/usr/sbin/ikeadm:euid=0 225e3320f40SmarkfenNetwork IPsec Management:suser:cmd:::/usr/sbin/ikecert:euid=0 226e3320f40SmarkfenNetwork IPsec Management:suser:cmd:::/usr/sbin/ipsecconf:euid=0 227e3320f40SmarkfenNetwork IPsec Management:suser:cmd:::/usr/sbin/ipseckey:uid=0 228e3320f40SmarkfenNetwork IPsec Management:suser:cmd:::/usr/sbin/ipsecalgs:euid=0 2297c478bd9Sstevel@tonic-gateNetwork Security:suser:cmd:::/usr/bin/ssh-keygen:uid=0;gid=sys 2307c478bd9Sstevel@tonic-gateObject Access Management:solaris:cmd:::/usr/bin/chgrp:privs=file_chown 2317c478bd9Sstevel@tonic-gateObject Access Management:solaris:cmd:::/usr/bin/chmod:privs=file_owner 2327c478bd9Sstevel@tonic-gateObject Access Management:solaris:cmd:::/usr/bin/chown:privs=file_chown 2337c478bd9Sstevel@tonic-gateObject Access Management:solaris:cmd:::/usr/bin/setfacl:privs=file_owner 2347c478bd9Sstevel@tonic-gateObject Access Management:suser:cmd:::/usr/bin/chgrp:euid=0 2357c478bd9Sstevel@tonic-gateObject Access Management:suser:cmd:::/usr/bin/chmod:euid=0 2367c478bd9Sstevel@tonic-gateObject Access Management:suser:cmd:::/usr/bin/chown:euid=0 2377c478bd9Sstevel@tonic-gateObject Access Management:suser:cmd:::/usr/bin/getfacl:euid=0 2387c478bd9Sstevel@tonic-gateObject Access Management:suser:cmd:::/usr/bin/setfacl:euid=0 239ead1f93eSLiane PrazaPrimary Administrator:solaris:cmd:::*:uid=0;gid=0 24053ac4dcaSjacobsPrinter Management:suser:cmd:::/usr/lib/lp/local/lpadmin:uid=lp;gid=lp 2417c478bd9Sstevel@tonic-gatePrinter Management:suser:cmd:::/usr/sbin/lpfilter:euid=lp;uid=lp 2427c478bd9Sstevel@tonic-gatePrinter Management:suser:cmd:::/usr/sbin/lpforms:euid=lp 2437c478bd9Sstevel@tonic-gatePrinter Management:suser:cmd:::/usr/sbin/lpusers:euid=lp 244c81d47afSceasthaPrinter Management:suser:cmd:::/usr/sbin/ppdmgr:euid=0 2457c478bd9Sstevel@tonic-gateProcess Management:solaris:cmd:::/usr/bin/kill:privs=proc_owner 2467c478bd9Sstevel@tonic-gateProcess Management:solaris:cmd:::/usr/bin/nice:privs=proc_owner,proc_priocntl 2477c478bd9Sstevel@tonic-gateProcess Management:solaris:cmd:::/usr/bin/pcred:privs=proc_owner 2487c478bd9Sstevel@tonic-gateProcess Management:solaris:cmd:::/usr/bin/pfiles:privs=proc_owner 2497c478bd9Sstevel@tonic-gateProcess Management:solaris:cmd:::/usr/bin/pflags:privs=proc_owner 2507c478bd9Sstevel@tonic-gateProcess Management:solaris:cmd:::/usr/bin/ppriv:privs=proc_owner 2517c478bd9Sstevel@tonic-gateProcess Management:solaris:cmd:::/usr/bin/renice:privs=proc_owner,proc_priocntl 2527c478bd9Sstevel@tonic-gateProcess Management:suser:cmd:::/usr/bin/crontab:euid=0 2537c478bd9Sstevel@tonic-gateProcess Management:suser:cmd:::/usr/bin/kill:euid=0 2547c478bd9Sstevel@tonic-gateProcess Management:suser:cmd:::/usr/bin/nice:euid=0 2557c478bd9Sstevel@tonic-gateProcess Management:suser:cmd:::/usr/bin/pcred:euid=0 2567c478bd9Sstevel@tonic-gateProcess Management:suser:cmd:::/usr/bin/pfiles:euid=0 2577c478bd9Sstevel@tonic-gateProcess Management:suser:cmd:::/usr/bin/pflags:euid=0 2587c478bd9Sstevel@tonic-gateProcess Management:suser:cmd:::/usr/bin/pldd:euid=0 2597c478bd9Sstevel@tonic-gateProcess Management:suser:cmd:::/usr/bin/pmap:euid=0 2607c478bd9Sstevel@tonic-gateProcess Management:suser:cmd:::/usr/bin/prun:euid=0 2617c478bd9Sstevel@tonic-gateProcess Management:suser:cmd:::/usr/bin/ps:euid=0 2627c478bd9Sstevel@tonic-gateProcess Management:suser:cmd:::/usr/bin/psig:euid=0 2637c478bd9Sstevel@tonic-gateProcess Management:suser:cmd:::/usr/bin/pstack:euid=0 2647c478bd9Sstevel@tonic-gateProcess Management:suser:cmd:::/usr/bin/pstop:euid=0 2657c478bd9Sstevel@tonic-gateProcess Management:suser:cmd:::/usr/bin/ptime:euid=0 2667c478bd9Sstevel@tonic-gateProcess Management:suser:cmd:::/usr/bin/ptree:euid=0 2677c478bd9Sstevel@tonic-gateProcess Management:suser:cmd:::/usr/bin/pwait:euid=0 2687c478bd9Sstevel@tonic-gateProcess Management:suser:cmd:::/usr/bin/pwdx:euid=0 2697c478bd9Sstevel@tonic-gateProcess Management:suser:cmd:::/usr/bin/renice:euid=0 2707c478bd9Sstevel@tonic-gateProcess Management:suser:cmd:::/usr/bin/truss:euid=0 2717c478bd9Sstevel@tonic-gateProcess Management:suser:cmd:::/usr/sbin/fuser:euid=0 2727c478bd9Sstevel@tonic-gateProcess Management:solaris:cmd:::/usr/sbin/rcapadm:uid=0 2737c478bd9Sstevel@tonic-gateProject Management:solaris:cmd:::/usr/sbin/projadd:euid=0 2747c478bd9Sstevel@tonic-gateProject Management:solaris:cmd:::/usr/sbin/projmod:euid=0 2757c478bd9Sstevel@tonic-gateProject Management:solaris:cmd:::/usr/sbin/projdel:euid=0 276f169c0eaSGlenn LagasseSoftware Installation:suser:cmd:::/sbin/beadm:uid=0;gid=bin 2777c478bd9Sstevel@tonic-gateSoftware Installation:suser:cmd:::/usr/bin/ln:euid=0 2787c478bd9Sstevel@tonic-gateSoftware Installation:suser:cmd:::/usr/bin/pkginfo:uid=0 2797c478bd9Sstevel@tonic-gateSoftware Installation:suser:cmd:::/usr/bin/pkgmk:uid=0 2807c478bd9Sstevel@tonic-gateSoftware Installation:suser:cmd:::/usr/bin/pkgparam:uid=0 2817c478bd9Sstevel@tonic-gateSoftware Installation:suser:cmd:::/usr/bin/pkgproto:uid=0 2827c478bd9Sstevel@tonic-gateSoftware Installation:suser:cmd:::/usr/bin/pkgtrans:uid=0 2837c478bd9Sstevel@tonic-gateSoftware Installation:suser:cmd:::/usr/ccs/bin/make:euid=0 2847c478bd9Sstevel@tonic-gateSoftware Installation:suser:cmd:::/usr/sbin/install:euid=0 2857c478bd9Sstevel@tonic-gateSoftware Installation:suser:cmd:::/usr/sbin/pkgadd:uid=0;gid=bin 2867c478bd9Sstevel@tonic-gateSoftware Installation:suser:cmd:::/usr/sbin/pkgask:uid=0 2877c478bd9Sstevel@tonic-gateSoftware Installation:suser:cmd:::/usr/sbin/pkgchk:uid=0 2887c478bd9Sstevel@tonic-gateSoftware Installation:suser:cmd:::/usr/sbin/pkgrm:uid=0;gid=bin 2897c478bd9Sstevel@tonic-gateSystem Event Management:suser:cmd:::/usr/sbin/syseventadm:uid=0 2907c478bd9Sstevel@tonic-gateUser Management:suser:cmd:::/usr/sbin/grpck:euid=0 2917c478bd9Sstevel@tonic-gateUser Management:suser:cmd:::/usr/sbin/pwck:euid=0 2924d748918SCasper H.S. DikUser Management:solaris:cmd:::/usr/sbin/useradd:uid=0 2934d748918SCasper H.S. DikUser Management:solaris:cmd:::/usr/sbin/userdel:uid=0 2944d748918SCasper H.S. DikUser Management:solaris:cmd:::/usr/sbin/usermod:uid=0 2954d748918SCasper H.S. DikUser Management:solaris:cmd:::/usr/sbin/roleadd:uid=0 2964d748918SCasper H.S. DikUser Management:solaris:cmd:::/usr/sbin/roledel:uid=0 2974d748918SCasper H.S. DikUser Management:solaris:cmd:::/usr/sbin/rolemod:uid=0 2987c478bd9Sstevel@tonic-gateUser Management:solaris:cmd:::/usr/sbin/groupadd:uid=0 2997c478bd9Sstevel@tonic-gateUser Management:solaris:cmd:::/usr/sbin/groupdel:uid=0 3007c478bd9Sstevel@tonic-gateUser Management:solaris:cmd:::/usr/sbin/groupmod:uid=0 3017c478bd9Sstevel@tonic-gateUser Security:suser:cmd:::/usr/bin/passwd:uid=0 3027c478bd9Sstevel@tonic-gateUser Security:suser:cmd:::/usr/sbin/pwck:euid=0 3037c478bd9Sstevel@tonic-gateUser Security:suser:cmd:::/usr/sbin/pwconv:euid=0 3047c478bd9Sstevel@tonic-gateDAT Administration:solaris:cmd:::/usr/sbin/datadm:euid=0 305cf8f789aSeschrockZFS File System Management:solaris:cmd:::/sbin/zfs:euid=0 306cf8f789aSeschrockZFS Storage Management:solaris:cmd:::/sbin/zpool:uid=0 307a38a20b0StalleyZFS Storage Management:solaris:cmd:::/usr/lib/zfs/availdevs:uid=0 308cb8a054bSGlenn FadenZone Security:solaris:cmd:::/usr/sbin/txzonemgr:uid=0 309cb8a054bSGlenn FadenZone Security:solaris:cmd:::/usr/sbin/zonecfg:uid=0 310cb8a054bSGlenn FadenZone Management:solaris:cmd:::/usr/sbin/zoneadm:euid=0 311cb8a054bSGlenn FadenZone Management:solaris:cmd:::/usr/sbin/zlogin:euid=0 312074e084fSml93401acctadm:solaris:cmd:::/usr/sbin/acctadm:euid=0;egid=0;privs=sys_acct,file_dac_write 313