diff options
| -rw-r--r-- | usr/src/lib/libsecdb/auth_attr.txt | 12 | ||||
| -rw-r--r-- | usr/src/lib/libsecdb/exec_attr.txt | 4 | ||||
| -rw-r--r-- | usr/src/lib/libsecdb/prof_attr.txt | 4 | ||||
| -rw-r--r-- | usr/src/pkgdefs/SUNWmmsr/Makefile | 16 | ||||
| -rw-r--r-- | usr/src/pkgdefs/SUNWmmsr/mms_auth_attr | 36 | ||||
| -rw-r--r-- | usr/src/pkgdefs/SUNWmmsr/mms_exec_attr | 30 | ||||
| -rw-r--r-- | usr/src/pkgdefs/SUNWmmsr/mms_prof_attr | 29 | ||||
| -rw-r--r-- | usr/src/pkgdefs/SUNWmmsr/pkginfo.tmpl | 2 | ||||
| -rw-r--r-- | usr/src/pkgdefs/SUNWmmsr/postinstall | 5 | ||||
| -rw-r--r-- | usr/src/pkgdefs/SUNWmmsr/prototype_com | 6 | ||||
| -rw-r--r-- | usr/src/pkgdefs/SUNWmmsr/space | 26 |
11 files changed, 22 insertions, 148 deletions
diff --git a/usr/src/lib/libsecdb/auth_attr.txt b/usr/src/lib/libsecdb/auth_attr.txt index 45afcf2fa3..f24cb88ed2 100644 --- a/usr/src/lib/libsecdb/auth_attr.txt +++ b/usr/src/lib/libsecdb/auth_attr.txt @@ -74,6 +74,13 @@ solaris.login.remote:::Remote Login::help=LoginRemote.html solaris.mail.:::Mail::help=MailHeader.html solaris.mail.mailq:::Mail Queue::help=MailQueue.html # +solaris.mms.media:::MMS Media Import, Export, Label and Move::help=AuthMMSMedia.html +solaris.mms.request:::Handle MMS Device Manager Requests::help=AuthMMSRequest.html +solaris.mms.device.state:::Start and Stop MMS Device Managers::help=AuthMMSDeviceState.html +solaris.mms.device.log:::Change MMS Trace and Message Levels::help=AuthMMSDeviceLog.html +solaris.mms.io.read:::Read Permission for MMS Volumes::help=AuthMMSIORead.html +solaris.mms.io.write:::Read and Write Permission for MMS Volumes::help=AuthMMSIOWrite.html +# solaris.network.:::Network::help=NetworkHeader.html solaris.network.link.security:::Link Security::help=LinkSecurity.html solaris.network.wifi.config:::Wifi Config::help=WifiConfig.html @@ -168,3 +175,8 @@ solaris.smf.manage.iscsitgt:::Manage ISCSI Target Service States::help=SmfValueI solaris.smf.read.iscsitgt:::Read ISCSI Target secrets::help=SmfValueIscsitgt.html solaris.smf.modify.iscsitgt:::Add/Remove Values of ISCSI Target Service Properties::help=SmfValueIscsitgt.html solaris.smf.value.iscsitgt:::Change Values of ISCSI Target Service Properties::help=SmfValueIscsitgt.html +# +solaris.smf.manage.mms:::Manage MMS Service States::help=SmfManageMMS.html +solaris.smf.modify.mms:::Add/Remove Values of MMS Service Properties::help=SmfModifyMMS.html +solaris.smf.value.mms:::Change Values of MMS Service Properties::help=SmfValueMMS.html +solaris.smf.read.mms:::Read Permission for Protected MMS Service Properties::help=SmfReadMMS.html diff --git a/usr/src/lib/libsecdb/exec_attr.txt b/usr/src/lib/libsecdb/exec_attr.txt index 186da4dff7..a41c0ace1c 100644 --- a/usr/src/lib/libsecdb/exec_attr.txt +++ b/usr/src/lib/libsecdb/exec_attr.txt @@ -151,6 +151,10 @@ Media Restore:suser:cmd:::/usr/bin/cpio:euid=0 Media Restore:suser:cmd:::/usr/bin/mt:euid=0 Media Restore:suser:cmd:::/usr/lib/fs/ufs/ufsrestore:euid=0 Media Restore:suser:cmd:::/usr/sbin/tar:euid=0 +MMS Administrator:solaris:cmd:::/usr/bin/mmsinit:uid=0 +MMS Administrator:solaris:cmd:::/usr/bin/mmsadm:uid=0 +MMS Operator:solaris:cmd:::/usr/bin/mmsadm:uid=0;privs=file_dac_read +MMS User:solaris:cmd:::/usr/bin/mmsmnt:uid=0;privs=file_dac_read Name Service Management:suser:cmd:::/usr/bin/nischttl:euid=0 Name Service Management:suser:cmd:::/usr/bin/nisln:euid=0 Name Service Management:suser:cmd:::/usr/lib/nis/nisctl:euid=0 diff --git a/usr/src/lib/libsecdb/prof_attr.txt b/usr/src/lib/libsecdb/prof_attr.txt index 6f96046c52..c3815f128a 100644 --- a/usr/src/lib/libsecdb/prof_attr.txt +++ b/usr/src/lib/libsecdb/prof_attr.txt @@ -23,7 +23,6 @@ # Copyright 2008 Sun Microsystems, Inc. All rights reserved. # Use is subject to license terms. # -# ident "%Z%%M% %I% %E% SMI" # # @@ -56,6 +55,9 @@ Mail Management:::Manage sendmail & queues:auths=solaris.smf.manage.sendmail;hel Maintenance and Repair:::Maintain and repair a system:auths=solaris.smf.manage.system-log,solaris.label.range;help=RtMaintAndRepair.html Media Backup:::Backup files and file systems:profiles=NDMP Management;help=RtMediaBkup.html Media Restore:::Restore files and file systems from backups:profiles=NDMP Management;help=RtMediaRestore.html +MMS Administrator:::MMS Media Manager Administrator:auths=solaris.smf.manage.mms,solaris.smf.modify.mms,solaris.smf.value.mms,solaris.mms.* +MMS Operator:::MMS Media Manager Operator:auths=solaris.smf.manage.mms,solaris.mms.media.*,solaris.mms.request.*,solaris.mms.device.state.*,solaris.mms.device.log.* +MMS User:::MMS Tape User:auths=solaris.mms.io.* NDMP Management:::Manage the NDMP service:auths=solaris.smf.manage.ndmp,solaris.smf.value.ndmp,solaris.smf.read.ndmp;help=RtNdmpMngmnt.html Network Management:::Manage the host and network configuration:auths=solaris.smf.manage.name-service-cache,solaris.smf.manage.bind,solaris.smf.value.routing,solaris.smf.manage.routing,solaris.smf.value.nwam,solaris.smf.manage.nwam,solaris.smf.manage.tnd,solaris.smf.manage.tnctl,solaris.smf.manage.wpa,solaris.smf.value.mdns,solaris.smf.manage.mdns;profiles=Network Wifi Management,Inetd Management;help=RtNetMngmnt.html Network Security:::Manage network and host security:auths=solaris.smf.manage.ssh,solaris.smf.value.tnd;profiles=Network Wifi Security,Network Link Security,Network IPsec Management;help=RtNetSecure.html diff --git a/usr/src/pkgdefs/SUNWmmsr/Makefile b/usr/src/pkgdefs/SUNWmmsr/Makefile index 9171fb980d..03b6264ed0 100644 --- a/usr/src/pkgdefs/SUNWmmsr/Makefile +++ b/usr/src/pkgdefs/SUNWmmsr/Makefile @@ -26,22 +26,10 @@ include ../Makefile.com -DATAFILES += i.rbac r.rbac i.manifest r.manifest i.logadmconf +DATAFILES += i.manifest r.manifest i.logadmconf -ETCSEC = $(ROOT)/etc/security - -FILES += $(ETCSEC)/mms_auth_attr -FILES += $(ETCSEC)/mms_exec_attr -FILES += $(ETCSEC)/mms_prof_attr - -all: $(FILES) +all: $(FILES) depend install: all pkg include ../Makefile.targ - -$(ETCSEC): - $(INS.dir) - -$(ETCSEC)/%: $(ETCSEC) % - $(INS.file) diff --git a/usr/src/pkgdefs/SUNWmmsr/mms_auth_attr b/usr/src/pkgdefs/SUNWmmsr/mms_auth_attr deleted file mode 100644 index 3ff764428e..0000000000 --- a/usr/src/pkgdefs/SUNWmmsr/mms_auth_attr +++ /dev/null @@ -1,36 +0,0 @@ -# -# CDDL HEADER START -# -# The contents of this file are subject to the terms of the -# Common Development and Distribution License (the "License"). -# You may not use this file except in compliance with the License. -# -# You can obtain a copy of the license at usr/src/OPENSOLARIS.LICENSE -# or http://www.opensolaris.org/os/licensing. -# See the License for the specific language governing permissions -# and limitations under the License. -# -# When distributing Covered Code, include this CDDL HEADER in each -# file and include the License file at usr/src/OPENSOLARIS.LICENSE. -# If applicable, add the following below this CDDL HEADER, with the -# fields enclosed by brackets "[]" replaced with your own identifying -# information: Portions Copyright [yyyy] [name of copyright owner] -# -# CDDL HEADER END -# -# Copyright 2008 Sun Microsystems, Inc. All rights reserved. -# Use is subject to license terms. -# - -#pragma ident "@(#)auth_attr 1.1 08/06/25 SMI" - -solaris.smf.manage.mms:::Manage MMS Service States::help=SmfManageMMS.html -solaris.smf.modify.mms:::Add/Remove Values of MMS Service Properties::help=SmfModifyMMS.html -solaris.smf.value.mms:::Change Values of MMS Service Properties::help=SmfValueMMS.html -solaris.smf.read.mms:::Read Permission for Protected MMS Service Properties::help=SmfReadMMS.html -solaris.mms.media:::MMS Media Import, Export, Label and Move::help=AuthMMSMedia.html -solaris.mms.request:::Handle MMS Device Manager Requests::help=AuthMMSRequest.html -solaris.mms.device.state:::Start and Stop MMS Device Managers::help=AuthMMSDeviceState.html -solaris.mms.device.log:::Change MMS Trace and Message Levels::help=AuthMMSDeviceLog.html -solaris.mms.io.read:::Read Permission for MMS Volumes::help=AuthMMSIORead.html -solaris.mms.io.write:::Read and Write Permission for MMS Volumes::help=AuthMMSIOWrite.html diff --git a/usr/src/pkgdefs/SUNWmmsr/mms_exec_attr b/usr/src/pkgdefs/SUNWmmsr/mms_exec_attr deleted file mode 100644 index f58119f2c5..0000000000 --- a/usr/src/pkgdefs/SUNWmmsr/mms_exec_attr +++ /dev/null @@ -1,30 +0,0 @@ -# -# CDDL HEADER START -# -# The contents of this file are subject to the terms of the -# Common Development and Distribution License (the "License"). -# You may not use this file except in compliance with the License. -# -# You can obtain a copy of the license at usr/src/OPENSOLARIS.LICENSE -# or http://www.opensolaris.org/os/licensing. -# See the License for the specific language governing permissions -# and limitations under the License. -# -# When distributing Covered Code, include this CDDL HEADER in each -# file and include the License file at usr/src/OPENSOLARIS.LICENSE. -# If applicable, add the following below this CDDL HEADER, with the -# fields enclosed by brackets "[]" replaced with your own identifying -# information: Portions Copyright [yyyy] [name of copyright owner] -# -# CDDL HEADER END -# -# Copyright 2008 Sun Microsystems, Inc. All rights reserved. -# Use is subject to license terms. -# - -#pragma ident "@(#)exec_attr 1.1 08/06/25 SMI" - -MMS Administrator:solaris:cmd:::/usr/bin/mmsinit:uid=0 -MMS Administrator:solaris:cmd:::/usr/bin/mmsadm:uid=0 -MMS Operator:solaris:cmd:::/usr/bin/mmsadm:uid=0;privs=file_dac_read -MMS User:solaris:cmd:::/usr/bin/mmsmnt:uid=0;privs=file_dac_read diff --git a/usr/src/pkgdefs/SUNWmmsr/mms_prof_attr b/usr/src/pkgdefs/SUNWmmsr/mms_prof_attr deleted file mode 100644 index 504c9ca7ad..0000000000 --- a/usr/src/pkgdefs/SUNWmmsr/mms_prof_attr +++ /dev/null @@ -1,29 +0,0 @@ -# -# CDDL HEADER START -# -# The contents of this file are subject to the terms of the -# Common Development and Distribution License (the "License"). -# You may not use this file except in compliance with the License. -# -# You can obtain a copy of the license at usr/src/OPENSOLARIS.LICENSE -# or http://www.opensolaris.org/os/licensing. -# See the License for the specific language governing permissions -# and limitations under the License. -# -# When distributing Covered Code, include this CDDL HEADER in each -# file and include the License file at usr/src/OPENSOLARIS.LICENSE. -# If applicable, add the following below this CDDL HEADER, with the -# fields enclosed by brackets "[]" replaced with your own identifying -# information: Portions Copyright [yyyy] [name of copyright owner] -# -# CDDL HEADER END -# -# Copyright 2008 Sun Microsystems, Inc. All rights reserved. -# Use is subject to license terms. -# - -#pragma ident "@(#)prof_attr 1.1 08/06/25 SMI" - -MMS Administrator:::MMS Media Manager Administrator:auths=solaris.smf.manage.mms,solaris.smf.modify.mms,solaris.smf.value.mms,solaris.mms.* -MMS Operator:::MMS Media Manager Operator:auths=solaris.smf.manage.mms,solaris.mms.media.*,solaris.mms.request.*,solaris.mms.device.state.*,solaris.mms.device.log.* -MMS User:::MMS Tape User:auths=solaris.mms.io.* diff --git a/usr/src/pkgdefs/SUNWmmsr/pkginfo.tmpl b/usr/src/pkgdefs/SUNWmmsr/pkginfo.tmpl index a89c12f6b4..058c7530cc 100644 --- a/usr/src/pkgdefs/SUNWmmsr/pkginfo.tmpl +++ b/usr/src/pkgdefs/SUNWmmsr/pkginfo.tmpl @@ -34,7 +34,7 @@ CATEGORY="system" BASEDIR=/ SUNW_PKGVERS="1.0" SUNW_PKGTYPE="root" -CLASSES="none rbac manifest logadmconf" +CLASSES="none manifest logadmconf" DESC="Media Management System" SUNW_PRODNAME="SunOS" SUNW_PRODVERS="RELEASE/VERSION" diff --git a/usr/src/pkgdefs/SUNWmmsr/postinstall b/usr/src/pkgdefs/SUNWmmsr/postinstall index e7961bf59d..593325bd67 100644 --- a/usr/src/pkgdefs/SUNWmmsr/postinstall +++ b/usr/src/pkgdefs/SUNWmmsr/postinstall @@ -74,9 +74,4 @@ if [ "$dda_rule" = "" ]; then >> ${PKG_INSTALL_ROOT}/etc/devlink.tab fi -/usr/sbin/installf -c rbac SUNWmmsr ${BASEDIR}/etc/security/auth_attr -/usr/sbin/installf -c rbac SUNWmmsr ${BASEDIR}/etc/security/exec_attr -/usr/sbin/installf -c rbac SUNWmmsr ${BASEDIR}/etc/security/prof_attr -/usr/sbin/installf -f SUNWmmsr - exit 0 diff --git a/usr/src/pkgdefs/SUNWmmsr/prototype_com b/usr/src/pkgdefs/SUNWmmsr/prototype_com index 4b3284a179..6b4536bb24 100644 --- a/usr/src/pkgdefs/SUNWmmsr/prototype_com +++ b/usr/src/pkgdefs/SUNWmmsr/prototype_com @@ -40,12 +40,9 @@ i pkginfo i depend i postinstall i preremove -i i.rbac -i r.rbac i i.manifest i r.manifest i i.logadmconf -i space d none etc 0755 root sys d none etc/mms 0755 root sys @@ -58,9 +55,6 @@ f none etc/mms/types/mm_types.xml 0644 root sys d none etc/mms/passwd 0755 root sys f none etc/mms/release-note 0644 root sys d none etc/security 0755 root sys -e rbac etc/security/mms_auth_attr 644 root sys -e rbac etc/security/mms_prof_attr 644 root sys -e rbac etc/security/mms_exec_attr 644 root sys f none kernel/drv/dmd.conf 0644 root sys f none kernel/drv/dda.conf 0644 root sys diff --git a/usr/src/pkgdefs/SUNWmmsr/space b/usr/src/pkgdefs/SUNWmmsr/space deleted file mode 100644 index 853e3418e2..0000000000 --- a/usr/src/pkgdefs/SUNWmmsr/space +++ /dev/null @@ -1,26 +0,0 @@ -# -# CDDL HEADER START -# -# The contents of this file are subject to the terms of the -# Common Development and Distribution License (the "License"). -# You may not use this file except in compliance with the License. -# -# You can obtain a copy of the license at usr/src/OPENSOLARIS.LICENSE -# or http://www.opensolaris.org/os/licensing. -# See the License for the specific language governing permissions -# and limitations under the License. -# -# When distributing Covered Code, include this CDDL HEADER in each -# file and include the License file at usr/src/OPENSOLARIS.LICENSE. -# If applicable, add the following below this CDDL HEADER, with the -# fields enclosed by brackets "[]" replaced with your own identifying -# information: Portions Copyright [yyyy] [name of copyright owner] -# -# CDDL HEADER END -# -# Copyright 2008 Sun Microsystems, Inc. All rights reserved. -# Use is subject to license terms. - -etc/security/mms_auth_attr 1819 1 -etc/security/mms_exec_attr 1190 1 -etc/security/mms_prof_attr 1300 1 |