blob: 88d6afa0544163a3e589ace2f158e78166e22577 (
plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
|
#
# Device policy configuration file. When devices are opened the
# additional access controls in this file are enforced.
#
# The format of this file is subject to change without notice.
#
# Default open privileges, must be first entry in the file.
#
* read_priv_set=none write_priv_set=none
bridge:* read_priv_set=net_rawaccess write_priv_set=net_rawaccess
fssnap:ctl read_priv_set=sys_config write_priv_set=sys_config
icmp:* read_priv_set=net_icmpaccess write_priv_set=net_icmpaccess
icmp6:* read_priv_set=net_icmpaccess write_priv_set=net_icmpaccess
ipf:* read_priv_set=sys_ip_config write_priv_set=sys_ip_config
ip:* read_priv_set=net_rawaccess write_priv_set=net_rawaccess
ip6:* read_priv_set=net_rawaccess write_priv_set=net_rawaccess
ipnet:* read_priv_set=net_observability write_priv_set=net_observability
ipsecah:* read_priv_set=sys_ip_config write_priv_set=sys_ip_config
ipsecesp:* read_priv_set=sys_ip_config write_priv_set=sys_ip_config
keysock:* read_priv_set=sys_ip_config write_priv_set=sys_ip_config
mm:allkmem read_priv_set=all write_priv_set=all
mm:kmem read_priv_set=none write_priv_set=all
mm:mem read_priv_set=none write_priv_set=all
openeepr:* write_priv_set=all
random:* write_priv_set=sys_devices
scsi_vhci:devctl write_priv_set=sys_devices
spdsock:* read_priv_set=sys_ip_config write_priv_set=sys_ip_config
|
