#
# Copyright 1999-2001, 2003 Sun Microsystems, Inc.  All rights reserved.
# Use is subject to license terms.
#
# /etc/security/exec_attr
#
# execution attributes for profiles. see exec_attr(4)
#
#pragma ident   "@(#)exec_attr 1.45     03/03/24 SMI; TSOL 2.x"
#
##
#	Solaris Super-user "suser" policy section
##
All:suser:cmd:::*:
Audit Control:suser:cmd:::/etc/init.d/audit:euid=0;egid=3
Audit Control:suser:cmd:::/etc/security/bsmconv:uid=0
Audit Control:suser:cmd:::/etc/security/bsmunconv:uid=0
Audit Control:suser:cmd:::/usr/sbin/audit:euid=0
Audit Control:suser:cmd:::/usr/sbin/auditconfig:euid=0
Audit Control:suser:cmd:::/usr/sbin/auditd:uid=0
Audit Review:suser:cmd:::/usr/sbin/auditreduce:euid=0
Audit Review:suser:cmd:::/usr/sbin/praudit:euid=0
Audit Review:suser:cmd:::/usr/sbin/auditstat:euid=0
Printer Management:suser:cmd:::/etc/init.d/lp:euid=0
Printer Management:suser:cmd:::/usr/bin/cancel:euid=0
Printer Management:suser:cmd:::/usr/bin/lpset:egid=14
Printer Management:suser:cmd:::/usr/bin/lpstat:euid=0
Printer Management:suser:cmd:::/usr/sbin/accept:euid=lp
Printer Management:suser:cmd:::/usr/sbin/lpadmin:egid=14
Printer Management:suser:cmd:::/usr/sbin/lpfilter:euid=lp
Printer Management:suser:cmd:::/usr/sbin/lpforms:euid=lp
Printer Management:suser:cmd:::/usr/sbin/lpmove:euid=lp
Printer Management:suser:cmd:::/usr/sbin/lpshut:euid=lp
Printer Management:suser:cmd:::/usr/sbin/lpusers:euid=lp
Printer Management:suser:cmd:::/usr/lib/lp/lpsched:uid=0
Printer Management:suser:cmd:::/usr/sbin/lpsystem:uid=0
Printer Management:suser:cmd:::/usr/ucb/lpq:euid=0
Printer Management:suser:cmd:::/usr/ucb/lprm:euid=0
Cron Management:suser:cmd:::/etc/init.d/cron:uid=0;gid=3
Cron Management:suser:cmd:::/usr/bin/crontab:euid=0
Device Management:suser:cmd:::/usr/sbin/allocate:uid=0
Device Management:suser:cmd:::/usr/sbin/deallocate:uid=0
Device Security:suser:cmd:::/etc/init.d/devlinks:uid=0;gid=3
Device Security:suser:cmd:::/etc/init.d/drvconfig:uid=0;gid=3
Device Security:suser:cmd:::/etc/init.d/dtlogin:uid=0;gid=3
Device Security:suser:cmd:::/etc/init.d/initpcmcia:uid=0;gid=3
Device Security:suser:cmd:::/etc/init.d/keymap:uid=0;gid=3
Device Security:suser:cmd:::/etc/init.d/mkdtab:uid=0;gid=3
Device Security:suser:cmd:::/etc/init.d/pcmcia:uid=0;gid=3
Device Security:suser:cmd:::/etc/init.d/volmgt:uid=0;gid=3
Device Security:suser:cmd:::/usr/sbin/eeprom:uid=0
Device Security:suser:cmd:::/usr/sbin/list_devices:euid=0
Device Security:suser:cmd:::/usr/sbin/strace:euid=0
File System Management:suser:cmd:::/etc/init.d/autofs:uid=0;gid=3
File System Management:suser:cmd:::/etc/init.d/buildmnttab:uid=0;gid=3
File System Management:suser:cmd:::/etc/init.d/standardmounts:uid=0;gid=3
File System Management:suser:cmd:::/etc/init.d/ufs_quota:uid=0;gid=3
File System Management:suser:cmd:::/usr/bin/eject:euid=0
File System Management:suser:cmd:::/usr/bin/mkdir:euid=0
File System Management:suser:cmd:::/usr/bin/rmdir:euid=0
File System Management:suser:cmd:::/usr/lib/autofs/automountd:euid=0
File System Management:suser:cmd:::/usr/lib/fs/autofs/automount:euid=0
File System Management:suser:cmd:::/usr/sbin/clri:euid=0
File System Management:suser:cmd:::/usr/sbin/devinfo:euid=0
File System Management:suser:cmd:::/usr/sbin/dfmounts:euid=0
File System Management:suser:cmd:::/usr/sbin/dfshares:euid=0
File System Management:suser:cmd:::/usr/sbin/format:uid=0
File System Management:suser:cmd:::/usr/sbin/fsck:euid=0
File System Management:suser:cmd:::/usr/sbin/fsdb:euid=0
File System Management:suser:cmd:::/usr/lib/fs/ufs/fsirand:euid=0
File System Management:suser:cmd:::/usr/sbin/fstyp:euid=0
File System Management:suser:cmd:::/usr/sbin/fuser:euid=0
File System Management:suser:cmd:::/usr/sbin/mkfile:euid=0
File System Management:suser:cmd:::/usr/sbin/mkfs:euid=0
File System Management:suser:cmd:::/usr/sbin/mount:uid=0
File System Management:suser:cmd:::/usr/sbin/mountall:uid=0
File System Management:suser:cmd:::/usr/sbin/ff:euid=0
File System Management:suser:cmd:::/usr/lib/fs/ufs/newfs:euid=0
File System Management:suser:cmd:::/usr/sbin/share:uid=0;gid=root
File System Management:suser:cmd:::/usr/sbin/shareall:uid=0;gid=root
File System Management:suser:cmd:::/usr/lib/fs/nfs/showmount:euid=0
File System Management:suser:cmd:::/usr/sbin/swap:euid=0
File System Management:suser:cmd:::/usr/lib/fs/ufs/tunefs:uid=0
File System Management:suser:cmd:::/usr/sbin/umount:uid=0
File System Management:suser:cmd:::/usr/sbin/umountall:uid=0
File System Management:suser:cmd:::/usr/sbin/unshare:uid=0;gid=root
File System Management:suser:cmd:::/usr/sbin/unshareall:uid=0;gid=root
Mail Management:suser:cmd:::/etc/init.d/sendmail:uid=0;gid=3
Mail Management:suser:cmd:::/usr/bin/mailq:euid=0
Mail Management:suser:cmd:::/usr/bin/mconnect:euid=0
Mail Management:suser:cmd:::/usr/bin/newaliases:euid=0
Mail Management:suser:cmd:::/usr/lib/sendmail:uid=0
Maintenance and Repair:suser:cmd:::/etc/init.d/sysetup:uid=0;gid=3
Maintenance and Repair:suser:cmd:::/etc/init.d/syslog:uid=0;gid=3
Maintenance and Repair:suser:cmd:::/usr/bin/adb:euid=0
Maintenance and Repair:suser:cmd:::/usr/bin/date:euid=0
Maintenance and Repair:suser:cmd:::/usr/bin/ldd:euid=0
Maintenance and Repair:suser:cmd:::/usr/bin/vmstat:euid=0
Maintenance and Repair:suser:cmd:::/usr/sbin/crash:euid=0
Maintenance and Repair:suser:cmd:::/usr/sbin/eeprom:euid=0
Maintenance and Repair:suser:cmd:::/usr/sbin/halt:euid=0
Maintenance and Repair:suser:cmd:::/usr/sbin/init:euid=0
Maintenance and Repair:suser:cmd:::/usr/sbin/poweroff:uid=0
Maintenance and Repair:suser:cmd:::/usr/sbin/prtconf:euid=0
Maintenance and Repair:suser:cmd:::/usr/sbin/reboot:uid=0
Maintenance and Repair:suser:cmd:::/usr/sbin/syslogd:euid=0
Media Backup:suser:cmd:::/usr/bin/mt:euid=0
Media Backup:suser:cmd:::/usr/sbin/tar:euid=0
Media Backup:suser:cmd:::/usr/lib/fs/ufs/ufsdump:euid=0;gid=3
Media Restore:suser:cmd:::/usr/bin/cpio:euid=0
Media Restore:suser:cmd:::/usr/bin/mt:euid=0
Media Restore:suser:cmd:::/usr/sbin/tar:euid=0
Media Restore:suser:cmd:::/usr/lib/fs/ufs/ufsrestore:euid=0
Name Service Management:suser:cmd:::/usr/bin/nischttl:euid=0
Name Service Management:suser:cmd:::/usr/bin/nisln:euid=0
Name Service Management:suser:cmd:::/usr/lib/nis/nisctl:euid=0
Name Service Management:suser:cmd:::/usr/lib/nis/nisping:euid=0
Name Service Management:suser:cmd:::/usr/lib/nis/nisshowcache:euid=0
Name Service Management:suser:cmd:::/usr/lib/nis/nisstat:euid=0
Name Service Management:suser:cmd:::/usr/sbin/nscd:euid=0
Name Service Security:suser:cmd:::/usr/bin/chkey:euid=0
Name Service Security:suser:cmd:::/usr/bin/nisaddcred:euid=0
Name Service Security:suser:cmd:::/usr/bin/nischgrp:euid=0
Name Service Security:suser:cmd:::/usr/bin/nischmod:euid=0
Name Service Security:suser:cmd:::/usr/bin/nischown:euid=0
Name Service Security:suser:cmd:::/usr/bin/nisgrpadm:euid=0
Name Service Security:suser:cmd:::/usr/bin/nismkdir:euid=0
Name Service Security:suser:cmd:::/usr/bin/nispasswd:euid=0
Name Service Security:suser:cmd:::/usr/bin/nisrm:euid=0
Name Service Security:suser:cmd:::/usr/bin/nisrmdir:euid=0
Name Service Security:suser:cmd:::/usr/bin/nistbladm:euid=0
Name Service Security:suser:cmd:::/usr/lib/nis/nisaddent:euid=0
Name Service Security:suser:cmd:::/usr/lib/nis/nisclient:uid=0
Name Service Security:suser:cmd:::/usr/lib/nis/nispopulate:euid=0
Name Service Security:suser:cmd:::/usr/lib/nis/nisserver:uid=0
Name Service Security:suser:cmd:::/usr/lib/nis/nissetup:euid=0
Name Service Security:suser:cmd:::/usr/lib/nis/nisupdkeys:euid=0
Name Service Security:suser:cmd:::/usr/sbin/newkey:euid=0
Name Service Security:suser:cmd:::/usr/sbin/nisinit:euid=0
Name Service Security:suser:cmd:::/usr/sbin/nislog:euid=0
Name Service Security:suser:cmd:::/usr/sbin/rpc.nisd:uid=0;gid=0
Network Management:suser:cmd:::/etc/init.d/asppp:uid=0;gid=3
Network Management:suser:cmd:::/etc/init.d/inetinit:uid=0;gid=3
Network Management:suser:cmd:::/etc/init.d/inetsvc:uid=0;gid=3
Network Management:suser:cmd:::/etc/init.d/nscd:uid=0;gid=3
Network Management:suser:cmd:::/etc/init.d/rpc:uid=0;gid=3
Network Management:suser:cmd:::/etc/init.d/sysid.net:uid=0;gid=3
Network Management:suser:cmd:::/etc/init.d/sysid.sys:uid=0;gid=3
Network Management:suser:cmd:::/etc/init.d/uucp:uid=0;gid=3
Network Management:suser:cmd:::/usr/bin/netstat:uid=0
Network Management:suser:cmd:::/usr/bin/rup:euid=0
Network Management:suser:cmd:::/usr/bin/ruptime:euid=0
Network Management:suser:cmd:::/usr/bin/setuname:euid=0
Network Management:suser:cmd:::/usr/sbin/ifconfig:uid=0
Network Management:suser:cmd:::/usr/sbin/in.named:uid=0
Network Management:suser:cmd:::/usr/sbin/route:uid=0
Network Management:suser:cmd:::/usr/sbin/snoop:uid=0
Network Management:suser:cmd:::/usr/sbin/spray:euid=0
Network Security:suser:cmd:::/usr/sbin/ipsecconf:uid=0
Network Security:suser:cmd:::/usr/sbin/ipseckey:uid=0
Network Security:suser:cmd:::/etc/init.d/rootusr:uid=0;gid=3
Object Access Management:suser:cmd:::/usr/bin/chgrp:euid=0
Object Access Management:suser:cmd:::/usr/bin/chmod:euid=0
Object Access Management:suser:cmd:::/usr/bin/chown:euid=0
Object Access Management:suser:cmd:::/usr/bin/getfacl:euid=0
Object Access Management:suser:cmd:::/usr/bin/setfacl:euid=0
Process Management:suser:cmd:::/etc/init.d/cron:uid=0;gid=3
Process Management:suser:cmd:::/etc/init.d/cvc:uid=0;gid=root
Process Management:suser:cmd:::/etc/init.d/perf:uid=0;gid=3
Process Management:suser:cmd:::/etc/init.d/power:euid=0
Process Management:suser:cmd:::/usr/bin/crontab:euid=0
Process Management:suser:cmd:::/usr/bin/kill:euid=0
Process Management:suser:cmd:::/usr/bin/nice:euid=0
Process Management:suser:cmd:::/usr/bin/ps:euid=0
Process Management:suser:cmd:::/usr/bin/renice:euid=0
Process Management:suser:cmd:::/usr/bin/truss:euid=0
Process Management:suser:cmd:::/usr/bin/pcred:euid=0
Process Management:suser:cmd:::/usr/bin/pfiles:euid=0
Process Management:suser:cmd:::/usr/bin/pflags:euid=0
Process Management:suser:cmd:::/usr/bin/pldd:euid=0
Process Management:suser:cmd:::/usr/bin/pmap:euid=0
Process Management:suser:cmd:::/usr/bin/prun:euid=0
Process Management:suser:cmd:::/usr/bin/psig:euid=0
Process Management:suser:cmd:::/usr/bin/pstack:euid=0
Process Management:suser:cmd:::/usr/bin/pstop:euid=0
Process Management:suser:cmd:::/usr/bin/ptime:euid=0
Process Management:suser:cmd:::/usr/bin/ptree:euid=0
Process Management:suser:cmd:::/usr/bin/pwait:euid=0
Process Management:suser:cmd:::/usr/bin/pwdx:euid=0
Process Management:suser:cmd:::/usr/sbin/fuser:euid=0
Software Installation:suser:cmd:::/usr/bin/ln:euid=0
Software Installation:suser:cmd:::/usr/bin/pkginfo:uid=0
Software Installation:suser:cmd:::/usr/bin/pkgmk:uid=0
Software Installation:suser:cmd:::/usr/bin/pkgparam:uid=0
Software Installation:suser:cmd:::/usr/bin/pkgproto:uid=0
Software Installation:suser:cmd:::/usr/bin/pkgtrans:uid=0
Software Installation:suser:cmd:::/usr/ccs/bin/make:euid=0
Software Installation:suser:cmd:::/usr/sbin/install:euid=0
Software Installation:suser:cmd:::/usr/sbin/pkgadd:uid=0;gid=bin
Software Installation:suser:cmd:::/usr/sbin/pkgask:uid=0
Software Installation:suser:cmd:::/usr/sbin/pkgchk:uid=0
Software Installation:suser:cmd:::/usr/sbin/pkgmv:uid=0;gid=bin
Software Installation:suser:cmd:::/usr/sbin/pkgrm:uid=0;gid=bin
Software Installation:suser:cmd:::/usr/bin/admintool:uid=0;gid=bin
Software Installation:suser:cmd:::/usr/sbin/patchadd:uid=0
Software Installation:suser:cmd:::/usr/sbin/patchrm:uid=0
User Management:suser:cmd:::/etc/init.d/utmpd:uid=0;gid=3
User Management:suser:cmd:::/usr/sbin/grpck:euid=0
User Management:suser:cmd:::/usr/sbin/pwck:euid=0
User Security:suser:cmd:::/usr/bin/passwd:euid=0
User Security:suser:cmd:::/usr/sbin/pwck:euid=0
User Security:suser:cmd:::/usr/sbin/pwconv:euid=0
##
#	Trusted Solaris Privilege/MAC "tsol" policy section
#	Canonicalized form is uid;gid;label;clearance;privs.
##
All Actions:tsol:act:::*;*;*;*;*:
All Commands:tsol:cmd:::*:
All:tsol:act:::*;*;*;*;*:
All:tsol:cmd:::*:
Audit Control:tsol:act:::AuditClass;*;*;*;*:privs=6,15,44
Audit Control:tsol:act:::AuditControl;*;*;*;*:privs=4,6,15,44
Audit Control:tsol:act:::AuditEvent;*;*;*;*:privs=6,15,44
Audit Control:tsol:act:::AuditStartup;*;*;*;*:privs=4,6,15,44
Audit Control:tsol:act:::AuditUser;*;*;*;*:privs=4,6,15,44
##
# init.d/audit needs privs=all because audit_startup is run with all
# see boot profile
##
Audit Control:tsol:cmd:::/etc/init.d/audit:euid=0;egid=3;privs=all
Audit Control:tsol:cmd:::/etc/init.d/tsol_audit_badpromlogins:euid=0;egid=3;privs=file_dac_read,sys_audit
Audit Control:tsol:cmd:::/usr/bin/mkdir:privs=6
Audit Control:tsol:cmd:::/usr/bin/rm:privs=6,12
Audit Control:tsol:cmd:::/usr/bin/rmdir:privs=6
Audit Control:tsol:cmd:::/usr/bin/writeaudit:privs=44
Audit Control:tsol:cmd:::/usr/lib/fs/ufs/newfs:euid=0;privs=all
Audit Control:tsol:cmd:::/usr/lib/fs/ufs/tunefs:euid=0;egid=3;privs=all
Audit Control:tsol:cmd:::/usr/sbin/audit:euid=0;label=admin_high;clearance=admin_high;privs=10,44,48,57
Audit Control:tsol:cmd:::/usr/sbin/auditconfig:euid=0;privs=sys_audit
Audit Control:tsol:cmd:::/usr/sbin/auditd:euid=0;privs=12,52,55,57
Audit Control:tsol:cmd:::/usr/sbin/auditstat:euid=0;privs=sys_audit
Audit Control:tsol:cmd:::/usr/sbin/clri:privs=file_dac_read,file_dac_write
Audit Control:tsol:cmd:::/usr/sbin/format:euid=0;privs=sys_devices
Audit Control:tsol:cmd:::/usr/sbin/mount:privs=4,5,6,10,11,12,35,55,63,67,71
Audit Control:tsol:cmd:::/usr/sbin/mountall:privs=4,5,6,10,11,12,35,55,63,67,71
Audit Control:tsol:cmd:::/usr/sbin/newsecfs:privs=all
Audit Control:tsol:cmd:::/usr/sbin/share:euid=0;egid=0;privs=10,11,12,69
Audit Control:tsol:cmd:::/usr/sbin/shareall:euid=0;egid=0;privs=10,11,12,69
Audit Control:tsol:cmd:::/usr/sbin/umount:privs=4,5,6,10,11,12,35,55,67,71
Audit Control:tsol:cmd:::/usr/sbin/umountall:privs=4,5,6,10,11,12,35,55,67,71
Audit Control:tsol:cmd:::/usr/sbin/unshare:euid=0;egid=0;privs=10,11,12,69
Audit Control:tsol:cmd:::/usr/sbin/unshareall:euid=0;egid=0;privs=10,11,12,69
Audit Review:tsol:cmd:::/usr/bin/awk:euid=0;label=admin_high;clearance=admin_high
Audit Review:tsol:cmd:::/usr/bin/cat:euid=0;label=admin_high;clearance=admin_high
Audit Review:tsol:cmd:::/usr/bin/grep:euid=0;label=admin_high;clearance=admin_high
Audit Review:tsol:cmd:::/usr/bin/sed:euid=0;label=admin_high;clearance=admin_high
Audit Review:tsol:cmd:::/usr/bin/tail:euid=0;label=admin_high;clearance=admin_high
Audit Review:tsol:cmd:::/usr/sbin/auditreduce:euid=0;label=admin_high
Audit Review:tsol:cmd:::/usr/sbin/praudit:euid=0;label=admin_high
Basic Actions:tsol:act:::AddItemToMenu;*;*;*;*:
Basic Actions:tsol:act:::BuildDataBaseRequest;*;*;*;*:
Basic Actions:tsol:act:::Compose;*;*;*;*:
Basic Actions:tsol:act:::Compress;*;*;*;*:
Basic Actions:tsol:act:::CustomizeWorkspaceMenu;*;*;*;0:
Basic Actions:tsol:act:::Df;*;*;*;0:
Basic Actions:tsol:act:::Diff;*;*;*;*:
Basic Actions:tsol:act:::DtEmptyTrash;*;*;*;0:
Basic Actions:tsol:act:::DtPrint;*;*;*;0:
Basic Actions:tsol:act:::DtPrintManager;*;*;*;*:
Basic Actions:tsol:act:::DtTTMediaOpen;*;*;*;0:
Basic Actions:tsol:act:::DtTTMediaOpen;BUFFER;*;!w;>0:
Basic Actions:tsol:act:::DtTTMediaOpen;BUFFER;*;w;>0:
Basic Actions:tsol:act:::DtTTMediaOpen;FILE;*;*;>0:
Basic Actions:tsol:act:::DtUnlink;*;*;*;2:
Basic Actions:tsol:act:::DtUnlink;*;*;*;>2:
Basic Actions:tsol:act:::Dtappmgr;*;*;*;*:
Basic Actions:tsol:act:::Dtcalc;*;*;*;0:
Basic Actions:tsol:act:::Dtcm;*;*;*;*:
Basic Actions:tsol:act:::Dtcreate;*;*;*;*:
Basic Actions:tsol:act:::Dtdevmgr;*;*;*;*:
Basic Actions:tsol:act:::Dtfile;*;*;*;0:
Basic Actions:tsol:act:::DtfileHome;*;*;*;0:
Basic Actions:tsol:act:::Dthelpview;*;*;*;0:
Basic Actions:tsol:act:::Dthelpview;BUFFER;*;*;1:
Basic Actions:tsol:act:::Dthelpview;FILE;DTHELP_VOL;*;1:
Basic Actions:tsol:act:::Dticon;*;*;*;*:
Basic Actions:tsol:act:::Dtmail;*;*;*;*:
Basic Actions:tsol:act:::Dtmanpageview;*;*;*;*:
Basic Actions:tsol:act:::Dtpad;*;*;*;*:
Basic Actions:tsol:act:::Dtprintinfo;*;*;*;*:
Basic Actions:tsol:act:::Dtprintinfo;*;*;*;0:
Basic Actions:tsol:act:::Dtterm;*;*;*;0:
Basic Actions:tsol:act:::Dtterm;*;*;*;1:
Basic Actions:tsol:act:::DttermConsole;*;*;*;0:
Basic Actions:tsol:act:::DttermErrorlog;*;*;*;0:
Basic Actions:tsol:act:::Dttrash;*;*;*;0:
Basic Actions:tsol:act:::Dttrash;*;*;*;>0:
Basic Actions:tsol:act:::DuSort;*;*;*;*:
Basic Actions:tsol:act:::Env;*;*;*;0:
Basic Actions:tsol:act:::FPHelp;*;*;*;0:
Basic Actions:tsol:act:::FileProperties;*;*;*;*:
Basic Actions:tsol:act:::FileProperties;*;*;*;0:
Basic Actions:tsol:act:::Grep;*;*;*;*:
Basic Actions:tsol:act:::HOST_Find;*;*;*;*:
Basic Actions:tsol:act:::InvokeFILEMGR;*;*;*;*:
Basic Actions:tsol:act:::InvokeMAILER;*;*;*;*:
Basic Actions:tsol:act:::MailTo;*;*;*;0:
Basic Actions:tsol:act:::MailTo;*;ADDRESS_CARD;*;*:
Basic Actions:tsol:act:::MailTo;*;EMAIL_ADDRESS,WSMENU_Suggestion_Box;*;1:
Basic Actions:tsol:act:::MailTo;*;EMAIL_ADDRESS,WSMENU_Suggestion_Box;*;>1:
Basic Actions:tsol:act:::MailTo;*;MAILTO_URL;*;1:
Basic Actions:tsol:act:::Note;*;*;*;*:
Basic Actions:tsol:act:::OWanswerbook;*;*;*;*:
Basic Actions:tsol:act:::OWclock;*;*;*;*:
Basic Actions:tsol:act:::OWperfmeter;*;*;*;*:
Basic Actions:tsol:act:::Open;*;*;*;*:
Basic Actions:tsol:act:::OpenCD-ROM;*;*;*;0:
Basic Actions:tsol:act:::OpenCD-ROM;*;*;*;1:
Basic Actions:tsol:act:::OpenDtIntro;*;*;*;0:
Basic Actions:tsol:act:::OpenFloppy;*;*;*;0:
Basic Actions:tsol:act:::OpenFloppy;*;*;*;1:
Basic Actions:tsol:act:::OpenFolder;*;*;*;*:
Basic Actions:tsol:act:::OpenTerminal;*;*;*;*:
Basic Actions:tsol:act:::Print;*;*;*;*:
Basic Actions:tsol:act:::PutOnWorkspace;BUFFER;*;*;1:
Basic Actions:tsol:act:::PutOnWorkspace;FILE;*;*;1:
Basic Actions:tsol:act:::ReOpenRestrictedFolder;*;*;*;1:
Basic Actions:tsol:act:::Record;*;*;*;*:
Basic Actions:tsol:act:::ReloadActions;*;*;*;*:
Basic Actions:tsol:act:::ReloadActionsNotice;*;*;*;*:
Basic Actions:tsol:act:::ReloadApps;*;*;*;0:
Basic Actions:tsol:act:::ReloadResources;*;*;*;0:
Basic Actions:tsol:act:::Rm;*;*;*;*:
Basic Actions:tsol:act:::SDTab2;*;*;*;*:
Basic Actions:tsol:act:::SDTaudio;*;*;*;0:
Basic Actions:tsol:act:::SDTimage;*;*;*;0:
Basic Actions:tsol:act:::SDTimage;BUFFER;*;*;1:
Basic Actions:tsol:act:::SDTimage;FILE;*;*;1:
Basic Actions:tsol:act:::SDTpowermgr;*;*;*;*:
Basic Actions:tsol:act:::SDTsnapshot;*;*;*;0:
Basic Actions:tsol:act:::SDtFind;*;*;*;<2:
Basic Actions:tsol:act:::SDtName;*;*;*;*:
Basic Actions:tsol:act:::SDtName;*;*;*;0:
Basic Actions:tsol:act:::SDtName;*;ADDRESS_CARD;*;*:
Basic Actions:tsol:act:::SDtName;*;DTMAIL_FILE;*;*:
Basic Actions:tsol:act:::SDtName;*;HOST;*;*:
Basic Actions:tsol:act:::SDtPerfmeter;*;*;*;0:
Basic Actions:tsol:act:::SDtPerfmeter;*;HOST,WSMENU_This_Host;*;1:
Basic Actions:tsol:act:::SDtPersonalBookmarks;*;*;*;0:
Basic Actions:tsol:act:::SDtProcess;*;*;*;0:
Basic Actions:tsol:act:::SDtProcess;*;HOST,WSMENU_This_Host;*;1:
Basic Actions:tsol:act:::SDtSampleBookmarks;*;*;*;0:
Basic Actions:tsol:act:::SDtWebClient;*;*;*;0:
Basic Actions:tsol:act:::SDtWebClient;*;HTML;*;1:
Basic Actions:tsol:act:::SDtWebClient;*;WEB_URL,FILE_URL,MAILTO_URL,RLOGIN_URL,WSMENU_SunSolve_Online,WSMENU_Find_Web_Page,WSMENU_Solaris_Support;*;1:
Basic Actions:tsol:act:::SDtWsinfo;*;*;*;0:
Basic Actions:tsol:act:::SDtWsinfo;*;HOST,WSMENU_This_Host;*;1:
Basic Actions:tsol:act:::Terminal;*;*;*;*:
Basic Actions:tsol:act:::TextEditor;*;*;*;*:
Basic Actions:tsol:act:::Trash;*;*;*;*:
Basic Actions:tsol:act:::WebBrowser;*;*;*;*:
Basic Actions:tsol:act:::Xhost+;*;*;*;0:
Basic Actions:tsol:act:::Xhost-;*;*;*;0:
Basic Actions:tsol:act:::Xrefresh;*;*;*;0:
Basic Commands:tsol:cmd:::/usr/dt/bin/tsolxagent:
Basic Commands:tsol:cmd:::/usr/openwin/bin/ttsession:
Basic Commands:tsol:cmd:::/usr/bin/*:
Basic Commands:tsol:cmd:::/usr/lib/sendmail:gid=2
Basic Commands:tsol:cmd:::/usr/openwin/bin/xhost:
Basic Commands:tsol:cmd:::/usr/sbin/df:
Basic Commands:tsol:cmd:::/usr/sbin/ping:
Basic Commands:tsol:cmd:::/usr/sbin/sync:
Basic Commands:tsol:cmd:::/usr/ucb/*:
Cron Management:tsol:cmd:::/etc/init.d/cron:euid=0;egid=3;privs=4,5,6,10,11,12,14,33,44,51,52,53,55,57,59
Object Access Management:tsol:act:::TrustedEditor;*;*;*;*:privs=4,5,6,44
Object Access Management:tsol:cmd:::/usr/dt/bin/trusted_edit:privs=4,5,6,44
Remote Administration:tsol:cmd:::/usr/sadm/bin/smc:privs=76
Remote Administration:tsol:act:::smc;*;*;*;0:privs=76
Remote Administration:tsol:cmd:::/usr/bin/rdist:privs=file_dac_read,file_dac_write,file_chown,file_mac_read,file_setid,file_upgrade_sl
Device Management:tsol:cmd:::/usr/sbin/allocate:privs=2,4,5,6,8,10,11,14,15,57,61,67
Device Management:tsol:cmd:::/usr/sbin/deallocate:privs=2,4,6,10,15,57,61,67,68
Device Management:tsol:cmd:::/usr/sbin/fbconfig:privs=file_dac_search,file_dac_write,win_dga
Device Security:tsol:act:::AddAllocDev;*;*;*;*:privs=2,6,8,10,12,15,71
Device Security:tsol:cmd:::/etc/init.d/buttons_n_dials-setup:euid=0;egid=3
Device Security:tsol:cmd:::/etc/init.d/devlinks:euid=0;egid=3
Device Security:tsol:cmd:::/etc/init.d/drvconfig:uid=0;gid=3;privs=2,10,11,12,14,15,16,17,19,59,47,48,51,53,61,68
##
# dtlogin needs all privileges to pass on to other windows programs
##
Device Security:tsol:cmd:::/etc/init.d/dtlogin:euid=0;egid=3;privs=all
Device Security:tsol:cmd:::/etc/init.d/initpcmcia:euid=0;egid=3
Device Security:tsol:cmd:::/etc/init.d/keymap:euid=0;egid=3
Device Security:tsol:cmd:::/etc/init.d/mkdtab:uid=0;privs=file_dac_write
Device Security:tsol:cmd:::/etc/init.d/pcmcia:euid=0;egid=3
Device Security:tsol:cmd:::/etc/init.d/tsol_dev_allocate:euid=0;egid=3;privs=all
Device Security:tsol:cmd:::/etc/init.d/tsol_dev_clean:euid=0;egid=3;privs=all
Device Security:tsol:cmd:::/etc/init.d/tsol_dev_policy:euid=0;egid=3;privs=all
Device Security:tsol:cmd:::/etc/init.d/volmgt:euid=0;egid=3
Device Security:tsol:cmd:::/usr/bin/kbd:privs=file_dac_read,file_dac_write,sys_devices
Device Security:tsol:cmd:::/usr/sbin/add_allocatable:privs=2,4,6,8,10,12,15,71
Device Security:tsol:cmd:::/usr/sbin/eeprom:euid=0
Device Security:tsol:cmd:::/usr/sbin/mkdevdb:privs=2,4,6,8,10,12,15,71
Device Security:tsol:cmd:::/usr/sbin/remove_allocatable:privs=2,4,6,8,10,12,15,71
File System Management:tsol:act:::ShareFS;*;*;*;*:privs=6,15,44
File System Management:tsol:act:::Vfstab;*;*;*;*:privs=6,15,44
File System Management:tsol:cmd:::/etc/init.d/autofs:euid=0;egid=3;privs=all
File System Management:tsol:cmd:::/etc/init.d/buildmnttab:euid=0;egid=3;privs=all
File System Management:tsol:cmd:::/etc/init.d/nfs.client:euid=0;egid=7;privs=all
File System Management:tsol:cmd:::/etc/init.d/nfs.server:euid=0;egid=3;privs=all
File System Management:tsol:cmd:::/etc/init.d/standardmounts:euid=0;egid=3;privs=all
File System Management:tsol:cmd:::/etc/init.d/ufs_quota:euid=0;egid=3;privs=all
File System Management:tsol:cmd:::/usr/bin/eject:privs=file_dac_read
File System Management:tsol:cmd:::/usr/bin/getfattrflag:privs=5,10,11
File System Management:tsol:cmd:::/usr/bin/mkdir:privs=file_dac_write
File System Management:tsol:cmd:::/usr/bin/nfsstat:euid=0;label=admin_high;clearance=admin_high;privs=file_mac_write,sys_config
File System Management:tsol:cmd:::/usr/bin/rmdir:privs=file_dac_write
File System Management:tsol:cmd:::/usr/bin/setfattrflag:privs=5,11,12,14
File System Management:tsol:cmd:::/usr/lib/autofs/automountd:privs=3,4,5,6,10,11,12,14,19,33,35,42,44,55,67,71
File System Management:tsol:cmd:::/usr/lib/fs/autofs/automount:privs=4,6,10,12,67
File System Management:tsol:cmd:::/usr/lib/fs/ufs/newfs:privs=file_dac_read,file_dac_write,file_mac_read,file_mac_write
File System Management:tsol:cmd:::/usr/sbin/fsck:privs=file_dac_read,file_dac_write,file_mac_read,file_mac_write
File System Management:tsol:cmd:::/usr/lib/fs/ufs/tunefs:euid=0;privs=all
File System Management:tsol:cmd:::/usr/sbin/clri:privs=file_dac_read,file_dac_write
File System Management:tsol:cmd:::/usr/sbin/format:euid=0;privs=sys_devices
File System Management:tsol:cmd:::/usr/sbin/fuser:privs=5,11,44,51,67
File System Management:tsol:cmd:::/usr/sbin/getfsattr:privs=4,5,11,71
File System Management:tsol:cmd:::/usr/sbin/mount:privs=4,5,6,10,11,12,35,55,63,67,71
File System Management:tsol:cmd:::/usr/sbin/mountall:privs=4,5,6,10,11,12,35,55,63,67,71
File System Management:tsol:cmd:::/usr/sbin/share:euid=0;egid=0;privs=file_mac_read,file_mac_search,file_mac_write,sys_nfs
File System Management:tsol:cmd:::/usr/sbin/shareall:euid=0;egid=0;privs=file_mac_read,file_mac_search,file_mac_write,sys_nfs
File System Management:tsol:cmd:::/usr/sbin/swap:privs=all
File System Management:tsol:cmd:::/usr/sbin/umount:privs=4,5,6,10,11,12,35,55,67,71
File System Management:tsol:cmd:::/usr/sbin/umountall:privs=4,5,6,10,11,12,35,55,67,71
File System Management:tsol:cmd:::/usr/sbin/unshare:euid=0;egid=0;privs=file_mac_read,file_mac_search,file_mac_write,sys_nfs
File System Management:tsol:cmd:::/usr/sbin/unshareall:euid=0;egid=0;privs=file_mac_read,file_mac_search,file_mac_write,sys_nfs
File System Security:tsol:act:::Vfstab_adjunct;*;*;*;*:privs=6,15,44
File System Security:tsol:cmd:::/usr/sbin/getfsattr:privs=4,5,11,71
File System Security:tsol:cmd:::/usr/sbin/newsecfs:privs=4,6
File System Security:tsol:cmd:::/usr/sbin/setfsattr:privs=all
Host Alternate Pathing:tsol:cmd:::/etc/init.d/ap:euid=0;egid=1;label=admin_low;clearance=admin_high;privs=all
Host Alternate Pathing:tsol:cmd:::/etc/init.d/drvconfig:uid=0;gid=3;privs=2,10,11,12,14,15,16,17,19,53,59,47,48,51,61,68
Host Alternate Pathing:tsol:cmd:::/etc/init.d/xntpd:uid=0;gid=1;label=admin_low;clearance=admin_high;privs=35,59
Host Alternate Pathing:tsol:cmd:::/sbin/apboot:euid=0;egid=1;label=admin_low;clearance=admin_high;privs=all
Host Alternate Pathing:tsol:cmd:::/sbin/apcheck:euid=0;egid=1;label=admin_low;clearance=admin_high;privs=2,10,11,12,14,33,35,37,56,61
Host Alternate Pathing:tsol:cmd:::/sbin/apconfig:euid=0;egid=1;label=admin_low;clearance=admin_high;privs=2,10,11,12,14,33,35,37,56,61
Host Alternate Pathing:tsol:cmd:::/sbin/apdb:euid=0;egid=1;label=admin_low;clearance=admin_high;privs=2,10,11,12,14,33,35,37,56,61
Host Alternate Pathing:tsol:cmd:::/sbin/apdisk:euid=0;egid=1;label=admin_low;clearance=admin_high;privs=2,10,11,12,14,33,35,37,56,61
Host Alternate Pathing:tsol:cmd:::/sbin/apinst:euid=0;egid=1;label=admin_low;clearance=admin_high;privs=2,10,11,12,14,33,35,37,56,61
Host Alternate Pathing:tsol:cmd:::/sbin/apnet:euid=0;egid=1;label=admin_low;clearance=admin_high;privs=2,10,11,12,14,33,35,37,56,61
Host Alternate Pathing:tsol:cmd:::/usr/sbin/ap_daemon:euid=0;egid=1;label=admin_low;clearance=admin_high;privs=all
Host Alternate Pathing:tsol:cmd:::/usr/sbin/apconfig:euid=0;egid=1;label=admin_low;clearance=admin_high;privs=2,10,11,12,14,33,35,37,56,61
Host Alternate Pathing:tsol:cmd:::/usr/sbin/apdb:euid=0;egid=1;label=admin_low;clearance=admin_high;privs=2,10,11,12,14,33,35,37,56,61
Host Alternate Pathing:tsol:cmd:::/usr/sbin/apdisk:euid=0;egid=1;label=admin_low;clearance=admin_high;privs=2,10,11,12,14,33,35,37,56,61
Host Alternate Pathing:tsol:cmd:::/usr/sbin/apnet:euid=0;egid=1;label=admin_low;clearance=admin_high;privs=2,10,11,12,14,33,35,37,56,61
Host Alternate Pathing:tsol:cmd:::/usr/sbin/drvconfig:uid=0;gid=3;privs=2,10,11,12,14,15,16,17,19,53,59,47,48,51,61,68
Host System Management:tsol:cmd:::/etc/init.d/cvc:euid=0;egid=0;privs=33,35,37,51,60
Host System Management:tsol:cmd:::/etc/init.d/power:privs=all
Mail Management:tsol:act:::SendMail;*;*;*;*:privs=6,15,44
Mail Management:tsol:cmd:::/etc/init.d/sendmail:euid=0;egid=3;privs=all
Mail Management:tsol:cmd:::/usr/lib/sendmail:euid=0;gid=2;privs=10,11,35
Maintenance and Repair:tsol:cmd:::/etc/init.d/sysetup:euid=0;egid=3;privs=all
Maintenance and Repair:tsol:cmd:::/etc/init.d/syslog:euid=0;egid=3;privs=all
Maintenance and Repair:tsol:cmd:::/etc/init.d/tsol_sync_time:euid=0;egid=3;privs=sys_config
Maintenance and Repair:tsol:cmd:::/usr/bin/date:privs=sys_config
Maintenance and Repair:tsol:cmd:::/usr/sbin/dmesg:label=admin_high;clearance=admin_high
Maintenance and Repair:tsol:cmd:::/usr/sbin/halt:euid=0;privs=10,57,58
Maintenance and Repair:tsol:cmd:::/usr/sbin/init:privs=2,6,10,12,44,57
Maintenance and Repair:tsol:cmd:::/usr/sbin/poweroff:euid=0;privs=sys_boot
Maintenance and Repair:tsol:cmd:::/usr/sbin/reboot:euid=0;label=admin_low;privs=10,57,58
Maintenance and Repair:tsol:act:::SDTpowermgr;*;*;*;*:label=admin_low
Media Backup:tsol:act:::OWtapetool;*;*;*;*:privs=1,4,5,8,10,11,12,19,71
Media Backup:tsol:act:::Tar;*;*;*;*:privs=1,2,4,5,6,8,10,11,12,14,15,16,17,19,56,61,71
Media Backup:tsol:act:::Tar;*;TAR,MAGTAPE;*;>0:privs=1,2,4,5,6,8,10,11,12,14,15,16,17,19,56,61,71
Media Backup:tsol:act:::TarList;*;*;*;*:
Media Backup:tsol:cmd:::/usr/lib/fs/ufs/ufsdump:egid=3;privs=1,4,5,8,10,11,12,19,71
Media Backup:tsol:cmd:::/usr/sbin/tar:privs=1,2,4,5,6,8,10,11,12,14,15,16,17,19,56,61,71
Media Restore:tsol:act:::OWtapetool;*;*;*;*:
Media Restore:tsol:act:::TarList;*;*;*;*:
Media Restore:tsol:act:::TarUnpack;*;*;*;2:privs=1,2,4,5,6,8,10,11,12,14,15,16,17,19,56,61,71
Media Restore:tsol:act:::TarUnpack;*;*;*;<2:privs=1,2,4,5,6,8,10,11,12,14,15,16,17,19,56,61,71
Media Restore:tsol:cmd:::/usr/bin/cpio:
Media Restore:tsol:cmd:::/usr/bin/mt:
Media Restore:tsol:cmd:::/usr/lib/fs/ufs/ufsrestore:privs=1,2,4,5,6,8,10,11,12,14,15,16,17,19,71
Media Restore:tsol:cmd:::/usr/sbin/tar:privs=1,2,4,5,6,8,10,11,12,14,15,16,17,19,56,61,71
Name Service Management:tsol:act:::Niscat;*;*;*;*:
Name Service Management:tsol:act:::Ypcat;*;*;*;*:
Name Service Management:tsol:act:::Niscat_o;*;*;*;*:
Name Service Management:tsol:cmd:::/usr/bin/nischttl:
Name Service Management:tsol:cmd:::/usr/bin/nisln:
Name Service Management:tsol:cmd:::/usr/lib/nis/nisctl:
Name Service Management:tsol:cmd:::/usr/lib/nis/nisping:
Name Service Management:tsol:cmd:::/usr/lib/nis/nisshowcache:
Name Service Management:tsol:cmd:::/usr/lib/nis/nisstat:
Name Service Security:tsol:cmd:::/usr/lib/nis/nistnsetup:
Name Service Security:tsol:cmd:::/usr/lib/nis/nistntime:
Name Service Management:tsol:cmd:::/usr/sbin/nscd:privs=6,16,28,33,42,52,68,71
Name Service Security:tsol:act:::Nisclient;*;*;*;*:euid=0;privs=4,6,10,16,28,33,37,38,39,40,42,51,52,68,71
Name Service Security:tsol:act:::Nispopulate;*;*;*;*:euid=0
Name Service Security:tsol:act:::Nisserver;*;*;*;*:euid=0;privs=4,6,10,16,28,33,37,38,39,40,42,51,52,55,68,71
Name Service Security:tsol:act:::Ypclient;*;*;*;*:euid=0;privs=4,6,10,16,28,33,37,38,39,40,42,51,52,68,71
Name Service Security:tsol:act:::Ypserver;*;*;*;*:euid=0;privs=4,6,10,16,28,33,37,38,39,40,42,51,52,55,68,71
Name Service Security:tsol:cmd:::/usr/bin/domainname:privs=68
Name Service Security:tsol:cmd:::/usr/bin/chkey:
Name Service Security:tsol:cmd:::/usr/bin/nisaddcred:
Name Service Security:tsol:cmd:::/usr/bin/nischgrp:
Name Service Security:tsol:cmd:::/usr/bin/nischmod:
Name Service Security:tsol:cmd:::/usr/bin/nischown:
Name Service Security:tsol:cmd:::/usr/bin/nisgrpadm:
Name Service Security:tsol:cmd:::/usr/bin/nismkdir:
Name Service Security:tsol:cmd:::/usr/bin/nispasswd:
Name Service Security:tsol:cmd:::/usr/bin/nisrm:
Name Service Security:tsol:cmd:::/usr/bin/nisrmdir:
Name Service Security:tsol:cmd:::/usr/bin/nistbladm:
Name Service Security:tsol:cmd:::/usr/lib/nis/nisaddent:
Name Service Security:tsol:cmd:::/usr/lib/nis/nisclient:euid=0;privs=4,6,10,16,28,33,37,38,39,40,42,51,52,68,71
Name Service Security:tsol:cmd:::/usr/lib/nis/nispopulate:
Name Service Security:tsol:cmd:::/usr/lib/nis/nisserver:euid=0;privs=4,6,10,16,28,33,37,38,39,40,42,52,55,68,71
Name Service Security:tsol:cmd:::/usr/lib/nis/nissetup:
Name Service Security:tsol:cmd:::/usr/lib/nis/nisupdkeys:
Name Service Security:tsol:cmd:::/usr/sbin/newkey:
Name Service Security:tsol:cmd:::/usr/sbin/nisinit:
Name Service Security:tsol:cmd:::/usr/sbin/nislog:
Name Service Security:tsol:cmd:::/usr/sbin/rpc.nisd:euid=0;egid=0;privs=33,42,52,55
Name Service Security:tsol:cmd:::/usr/sbin/ypinit:euid=0;privs=file_dac_write,sys_net_config
Name Service Security:tsol:cmd:::/usr/lib/netsvc/yp/ypstart:euid=0;egid=0;privs=4,6,30,32,33,35,42,52,55
Name Service Security:tsol:cmd:::/usr/lib/netsvc/yp/ypstop:euid=0;egid=0;privs=proc_owner
Name Service Security:tsol:cmd:::/usr/lib/netsvc/yp/ypserv:euid=0;egid=0;privs=4,32,33,35,42,52,55
Name Service Security:tsol:cmd:::/usr/lib/netsvc/yp/ypbind:euid=0;egid=0;privs=6,30,32,33,35,42,52,55
Name Service Security:tsol:cmd:::/usr/lib/netsvc/yp/rpc.yppasswdd:euid=0;egid=0;privs=30,32,33,35,42,52,55
Name Service Security:tsol:cmd:::/usr/lib/netsvc/yp/rpc.ypupdated:euid=0;egid=0;privs=30,32,33,35,42,52,55
Name Service Security:tsol:cmd:::/usr/lib/netsvc/yp/ypxfrd:euid=0;egid=0;privs=30,32,33,35,42,52,55
Network Management:tsol:act:::DNS_Resolve;*;*;*;*:privs=6,15,44
Network Management:tsol:act:::EditMotd;*;*;*;*:privs=6,15,44
Network Management:tsol:act:::Nsswitch;*;*;*;*:privs=6,15,44
Network Management:tsol:act:::SetRoutes;*;*;*;*:privs=4,6,15,44
Network Management:tsol:act:::Tnchkdb;*;*;*;*:
Network Management:tsol:act:::Tnchkdb_nisplus;*;*;*;*:
Network Management:tsol:act:::Tsolgateways;*;*;*;*:privs=4,6,44
Network Management:tsol:cmd:::/etc/init.d/asppp:euid=0;egid=3;privs=all
Network Management:tsol:cmd:::/etc/init.d/inetinit:euid=0;egid=3;privs=all
Network Management:tsol:cmd:::/etc/init.d/inetsvc:euid=0;egid=3;privs=all
Network Management:tsol:cmd:::/etc/init.d/nscd:euid=0;egid=3;privs=all
Network Management:tsol:cmd:::/etc/init.d/rpc:euid=0;egid=3;privs=all
Network Management:tsol:cmd:::/etc/init.d/sysid.net:euid=0;egid=3;privs=all
Network Management:tsol:cmd:::/etc/init.d/sysid.sys:euid=0;egid=3;privs=all
Network Management:tsol:cmd:::/etc/init.d/tsol_tcb_verify:euid=0;egid=3;privs=all
Network Management:tsol:cmd:::/etc/init.d/uucp:euid=0;egid=3
Network Management:tsol:cmd:::/usr/bin/netstat:euid=0;privs=net_rawaccess,sys_trans_label,sys_net_config
Network Management:tsol:cmd:::/usr/bin/setuname:privs=4,6,10,12
Network Management:tsol:cmd:::/usr/lib/inet/in.dhcpd:privs=2,5,33,35,36,59,68,70
Network Management:tsol:cmd:::/usr/sbin/ifconfig:euid=0;privs=10,36,68
Network Management:tsol:cmd:::/usr/sbin/in.named:euid=0;privs=10,33,35,42,52,59,68,71
Network Management:tsol:cmd:::/usr/sbin/route:euid=0;privs=sys_net_config,sys_trans_label
Network Management:tsol:cmd:::/usr/sbin/snoop:euid=0;privs=sys_net_config,sys_devices
Network Management:tsol:cmd:::/usr/sbin/tokmapd:privs=net_privaddr,proc_setclr,proc_setsl,file_mac_write,file_dac_write,sys_net_config,net_mac_read
Network Management:tsol:cmd:::/usr/sbin/traceroute:privs=net_rawaccess
##
#  CheckEncodings calls pkill, thus it needs
#  file_dac_read/file_mac_read/file_mac_search (4/10/11)
##
Network Security:tsol:act:::CheckEncodings;*;*;*;*:euid=0;privs=2,4,6,10,11,12,14,15,28,51,52,55
Network Security:tsol:act:::Niscat;*;*;*;*:
Network Security:tsol:act:::Ypcat;*;*;*;*:
Network Security:tsol:act:::Tnchkdb;*;*;*;*:
Network Security:tsol:act:::Tnchkdb_nisplus;*;*;*;*:
Network Security:tsol:cmd:::/etc/init.d/rootusr:euid=0;egid=3
Network Security:tsol:cmd:::/usr/sbin/ipsecconf:euid=0;label=admin_low;clearance=admin_high;privs=sys_net_config
Network Security:tsol:cmd:::/usr/sbin/ipseckey:euid=0;label=admin_low;clearance=admin_high;privs=sys_net_config
Network Security:tsol:cmd:::/usr/sbin/tnctl:privs=68,71
Network Security:tsol:cmd:::/usr/sbin/tnd:privs=11,28,33,42,52,55,68
Network Security:tsol:cmd:::/usr/sbin/tninfo:privs=4,10,68,71
Object Access Management:tsol:act:::Dtfile;*;*;*;0:
Object Access Management:tsol:act:::DtfileHome;*;*;*;0:
Object Access Management:tsol:act:::Dttrash;*;*;*;0:
Object Access Management:tsol:act:::Dttrash;*;*;*;>0:
Object Access Management:tsol:act:::InvokeFILEMGR;*;*;*;*:
Object Access Management:tsol:cmd:::/usr/bin/chgrp:privs=2,4,5,10,11,14,15,16
Object Access Management:tsol:cmd:::/usr/bin/chmod:privs=4,5,10,11,15,16
Object Access Management:tsol:cmd:::/usr/bin/chown:privs=2,4,5,10,11,14
Object Access Management:tsol:cmd:::/usr/bin/getfacl:privs=5,10,11
Object Access Management:tsol:cmd:::/usr/bin/getfattrflag:privs=1,5,10,11
Object Access Management:tsol:cmd:::/usr/bin/getlabel:privs=5,10,11,71
Object Access Management:tsol:cmd:::/usr/bin/mldpwd:privs=6
Object Access Management:tsol:cmd:::/usr/bin/mldrealpath:privs=6
Object Access Management:tsol:cmd:::/usr/bin/setfacl:privs=4,5,6,10,11,15
Object Access Management:tsol:cmd:::/usr/bin/setfattrflag:privs=1,5,11,12,14
##
# See CheckEncodings above
##
Object Label Management:tsol:act:::CheckEncodings;*;*;*;*:euid=0;privs=2,4,6,10,11,12,14,15,28,51,52,55
Object Label Management:tsol:act:::Dtfile;*;*;*;0:
Object Label Management:tsol:act:::DtfileHome;*;*;*;0:
Object Label Management:tsol:act:::Dttrash;*;*;*;0:
Object Label Management:tsol:act:::Dttrash;*;*;*;>0:
Object Label Management:tsol:act:::EditEncodings;*;*;*;*:euid=0;privs=file_dac_read,file_dac_write,proc_audit_tcb
Object Label Management:tsol:act:::Selconfig;*;*;*;*:privs=4,6,44
Object Label Management:tsol:cmd:::/etc/init.d/tsol_label_services:euid=0;privs=4,10,11,28,51,52,55
Object Label Management:tsol:cmd:::/usr/bin/getlabel:privs=4,5,10,11,71
Object Label Management:tsol:cmd:::/usr/bin/mldpwd:privs=6
Object Label Management:tsol:cmd:::/usr/bin/mldrealpath:privs=6
Object Label Management:tsol:cmd:::/usr/bin/setfattrflag:privs=1,5,11,12,14
Object Label Management:tsol:cmd:::/usr/bin/setlabel:privs=4,5,6,8,10,11,12,14,19
Object Label Management:tsol:cmd:::/usr/sbin/hextoalabel:privs=71
Object Label Management:tsol:cmd:::/usr/sbin/tokmapctl:privs=33,35
Object Privilege Management:tsol:act:::Dtfile;*;*;*;0:
Object Privilege Management:tsol:act:::DtfileHome;*;*;*;0:
Object Privilege Management:tsol:act:::InvokeFILEMGR;*;*;*;*:
Object Privilege Management:tsol:cmd:::/usr/bin/setfpriv:privs=4,5,6,10,11,14,16,17
Object Privilege Management:tsol:cmd:::/usr/bin/testfpriv:privs=5,10,11
Object Privilege Management:tsol:cmd:::/usr/bin/ppriv:privs=47,51
Object Privilege Management:tsol:cmd:::/usr/bin/pprivtest:privs=47,51
Object Privilege Management:tsol:cmd:::/usr/bin/crle:uid=0;label=admin_low
Printer Management:tsol:cmd:::/etc/init.d/lp:euid=0;egid=3;privs=all
Printer Management:tsol:cmd:::/usr/bin/cancel:privs=6,10,12;euid=71
Printer Management:tsol:cmd:::/usr/bin/lpstat:privs=4,10,71
Printer Management:tsol:cmd:::/usr/lib/lp/lpsched:euid=0;privs=2,4,5,6,8,10,11,12,14,15,16,19,32,33,39,40,44,48,51,52,53,55,56,71
Printer Management:tsol:cmd:::/usr/sbin/accept:privs=sys_devices
Printer Management:tsol:cmd:::/usr/sbin/lpadmin:euid=0;egid=14;privs=2,4,5,6,8,10,12,14,15,44,71
Printer Management:tsol:cmd:::/usr/sadm/admin/bin/printmgr:euid=0;egid=14;privs=2,4,5,6,8,10,12,14,15,44,71
Printer Management:tsol:act:::PrinterAdministrator;*;*;*;*:euid=0;egid=14;privs=2,4,5,6,8,10,12,14,15,44,71
Printer Management:tsol:cmd:::/usr/sbin/lpfilter:euid=0;privs=file_dac_write
Printer Management:tsol:cmd:::/usr/sbin/lpforms:euid=0
Printer Management:tsol:cmd:::/usr/sbin/lpmove:euid=0
Printer Management:tsol:cmd:::/usr/sbin/lpshut:euid=0
Printer Management:tsol:cmd:::/usr/sbin/lpsystem:euid=0
Printer Management:tsol:cmd:::/usr/sbin/lpusers:euid=0
##
# privs=all for all privileged shells
##
Privileged Shells:tsol:cmd:::/usr/bin/csh:uid=0;gid=0;privs=all
Privileged Shells:tsol:cmd:::/usr/bin/ksh:uid=0;gid=0;privs=all
Privileged Shells:tsol:cmd:::/usr/bin/sh:uid=0;gid=0;privs=all
Process Management:tsol:cmd:::/etc/init.d/cron:euid=0;egid=3;privs=4,5,6,10,11,12,14,33,44,51,52,53,55,57,59
Process Management:tsol:cmd:::/etc/init.d/perf:euid=0;egid=3;privs=all
Process Management:tsol:cmd:::/usr/bin/kill:privs=48,51
Process Management:tsol:cmd:::/usr/bin/ps:privs=4,10,47,51
Process Management:tsol:cmd:::/usr/bin/renice:privs=48,51
Process Management:tsol:cmd:::/usr/bin/pattr:privs=4,47,51
Process Management:tsol:cmd:::/usr/bin/pclear:privs=4,47,51,71
Process Management:tsol:cmd:::/usr/bin/pcred:privs=4,48,51
Process Management:tsol:cmd:::/usr/bin/pfiles:privs=4,47,51
Process Management:tsol:cmd:::/usr/bin/pflags:privs=4,48,51
Process Management:tsol:cmd:::/usr/bin/plabel:privs=4,47,51,71
Process Management:tsol:cmd:::/usr/bin/pldd:privs=4,47,51
Process Management:tsol:cmd:::/usr/bin/pmap:privs=4,47,51
Process Management:tsol:cmd:::/usr/bin/ppriv:privs=4,47,51
Process Management:tsol:cmd:::/usr/bin/pprivtest:privs=4,10,51
Process Management:tsol:cmd:::/usr/bin/prun:privs=4,47,51
Process Management:tsol:cmd:::/usr/bin/psig:privs=4,47,51
Process Management:tsol:cmd:::/usr/bin/pstack:privs=4,47,51
Process Management:tsol:cmd:::/usr/bin/pstop:privs=4,47,51
Process Management:tsol:cmd:::/usr/bin/ptime:privs=4,47,51
Process Management:tsol:cmd:::/usr/bin/ptree:privs=4,47,51
Process Management:tsol:cmd:::/usr/bin/pwait:privs=4,47,51
Process Management:tsol:cmd:::/usr/bin/pwdx:privs=4,47,51
Process Management:tsol:cmd:::/usr/sbin/fuser:privs=5,11,44,51
Process Management:tsol:cmd:::/usr/ucb/ps:privs=4,10,47,51
SSP Administration:tsol:act:::Hostview;*;*;*;*:label=admin_low;clearance=admin_high;privs=all
SSP Administration:tsol:act:::Netcon;*;*;*;*:label=admin_low;clearance=admin_high;privs=all
SSP Administration:tsol:act:::Netcontool;*;*;*;*:label=admin_low;clearance=admin_high;privs=all
SSP Administration:tsol:cmd:::/etc/opt/SUNWssp/ssp_startup.sh:label=admin_low;clearance=admin_high;privs=all
SSP Administration:tsol:cmd:::/etc/opt/SUNWssp/ssp_startup.tcl:label=admin_low;clearance=admin_high;privs=all
SSP Administration:tsol:cmd:::/opt/SUNWssp/bin/acfg_check:label=admin_low;clearance=admin_high;privs=all
SSP Administration:tsol:cmd:::/opt/SUNWssp/bin/acfg_update_db:label=admin_low;clearance=admin_high;privs=all
SSP Administration:tsol:cmd:::/opt/SUNWssp/bin/addboard:label=admin_low;clearance=admin_high;privs=all
SSP Administration:tsol:cmd:::/opt/SUNWssp/bin/autoconfig:label=admin_low;clearance=admin_high;privs=all
SSP Administration:tsol:cmd:::/opt/SUNWssp/bin/bist_test:label=admin_low;clearance=admin_high;privs=all
SSP Administration:tsol:cmd:::/opt/SUNWssp/bin/board_id:label=admin_low;clearance=admin_high;privs=all
SSP Administration:tsol:cmd:::/opt/SUNWssp/bin/bringup:label=admin_low;clearance=admin_high;privs=all
SSP Administration:tsol:cmd:::/opt/SUNWssp/bin/cb_prom:label=admin_low;clearance=admin_high;privs=all
SSP Administration:tsol:cmd:::/opt/SUNWssp/bin/cb_reset:label=admin_low;clearance=admin_high;privs=all
SSP Administration:tsol:cmd:::/opt/SUNWssp/bin/cbs:label=admin_low;clearance=admin_high;privs=all
SSP Administration:tsol:cmd:::/opt/SUNWssp/bin/chain_test:label=admin_low;clearance=admin_high;privs=all
SSP Administration:tsol:cmd:::/opt/SUNWssp/bin/chain_test_cb:label=admin_low;clearance=admin_high;privs=all
SSP Administration:tsol:cmd:::/opt/SUNWssp/bin/chain_test_cp:label=admin_low;clearance=admin_high;privs=all
SSP Administration:tsol:cmd:::/opt/SUNWssp/bin/chain_test_sb:label=admin_low;clearance=admin_high;privs=all
SSP Administration:tsol:cmd:::/opt/SUNWssp/bin/chip_test_cp:label=admin_low;clearance=admin_high;privs=all
SSP Administration:tsol:cmd:::/opt/SUNWssp/bin/chip_test_sb:label=admin_low;clearance=admin_high;privs=all
SSP Administration:tsol:cmd:::/opt/SUNWssp/bin/deleteboard:label=admin_low;clearance=admin_high;privs=all
SSP Administration:tsol:cmd:::/opt/SUNWssp/bin/drtk:label=admin_low;clearance=admin_high;privs=all
SSP Administration:tsol:cmd:::/opt/SUNWssp/bin/edd:label=admin_low;clearance=admin_high;privs=all
SSP Administration:tsol:cmd:::/opt/SUNWssp/bin/fad:label=admin_low;clearance=admin_high;privs=all
SSP Administration:tsol:cmd:::/opt/SUNWssp/bin/generic.scotty:label=admin_low;clearance=admin_high;privs=all
SSP Administration:tsol:cmd:::/opt/SUNWssp/bin/hostview:label=admin_low;clearance=admin_high;privs=all
SSP Administration:tsol:cmd:::/opt/SUNWssp/bin/hostview_child:label=admin_low;clearance=admin_high;privs=all
SSP Administration:tsol:cmd:::/opt/SUNWssp/bin/ict_test:label=admin_low;clearance=admin_high;privs=all
SSP Administration:tsol:cmd:::/opt/SUNWssp/bin/interconnect_test_cb:label=admin_low;clearance=admin_high;privs=all
SSP Administration:tsol:cmd:::/opt/SUNWssp/bin/interconnect_test_cp:label=admin_low;clearance=admin_high;privs=all
SSP Administration:tsol:cmd:::/opt/SUNWssp/bin/interconnect_test_sb:label=admin_low;clearance=admin_high;privs=all
SSP Administration:tsol:cmd:::/opt/SUNWssp/bin/interconnect_test_sb_psycho:label=admin_low;clearance=admin_high;privs=all
SSP Administration:tsol:cmd:::/opt/SUNWssp/bin/machine_server:label=admin_low;clearance=admin_high;privs=all
SSP Administration:tsol:cmd:::/opt/SUNWssp/bin/moveboard:label=admin_low;clearance=admin_high;privs=all
SSP Administration:tsol:cmd:::/opt/SUNWssp/bin/netcon.openwin:label=admin_low;clearance=admin_high;privs=all
SSP Administration:tsol:cmd:::/opt/SUNWssp/bin/netcon:label=admin_low;clearance=admin_high;privs=all
SSP Administration:tsol:cmd:::/opt/SUNWssp/bin/netcon_wrapper:label=admin_low;clearance=admin_high;privs=all
SSP Administration:tsol:cmd:::/opt/SUNWssp/bin/netcontool.openwin:label=admin_low;clearance=admin_high;privs=all
SSP Administration:tsol:cmd:::/opt/SUNWssp/bin/netcontool:label=admin_low;clearance=admin_high;privs=all
SSP Administration:tsol:cmd:::/opt/SUNWssp/bin/netcontool_wrapper:label=admin_low;clearance=admin_high;privs=all
SSP Administration:tsol:cmd:::/opt/SUNWssp/bin/newssplog:label=admin_low;clearance=admin_high;privs=all
SSP Administration:tsol:cmd:::/opt/SUNWssp/bin/power:label=admin_low;clearance=admin_high;privs=all
SSP Administration:tsol:cmd:::/opt/SUNWssp/bin/resetMessaging:label=admin_low;clearance=admin_high;privs=all
SSP Administration:tsol:cmd:::/opt/SUNWssp/bin/ring_test:label=admin_low;clearance=admin_high;privs=all
SSP Administration:tsol:cmd:::/opt/SUNWssp/bin/ring_test_cb:label=admin_low;clearance=admin_high;privs=all
SSP Administration:tsol:cmd:::/opt/SUNWssp/bin/ring_test_cp:label=admin_low;clearance=admin_high;privs=all
SSP Administration:tsol:cmd:::/opt/SUNWssp/bin/ring_test_sb:label=admin_low;clearance=admin_high;privs=all
SSP Administration:tsol:cmd:::/opt/SUNWssp/bin/scotty:label=admin_low;clearance=admin_high;privs=all
SSP Administration:tsol:cmd:::/opt/SUNWssp/bin/showusage:label=admin_low;clearance=admin_high;privs=all
SSP Administration:tsol:cmd:::/opt/SUNWssp/bin/snmpd:label=admin_low;clearance=admin_high;privs=all
SSP Administration:tsol:cmd:::/opt/SUNWssp/bin/ssptk:label=admin_low;clearance=admin_high;privs=all
SSP Administration:tsol:cmd:::/opt/SUNWssp/bin/straps:label=admin_low;clearance=admin_high;privs=all
SSP Administration:tsol:cmd:::/opt/SUNWssp/bin/sys_id:label=admin_low;clearance=admin_high;privs=all
SSP Administration:tsol:cmd:::/opt/SUNWssp/bin/tclsh:label=admin_low;clearance=admin_high;privs=all
SSP Administration:tsol:cmd:::/opt/SUNWssp/bin/thermcal:label=admin_low;clearance=admin_high;privs=all
SSP Administration:tsol:cmd:::/opt/SUNWssp/bin/ver.exec:label=admin_low;clearance=admin_high;privs=all
SSP Installation:tsol:cmd:::/etc/init.d/ssp:label=admin_low;clearance=admin_high;privs=all
SSP Installation:tsol:cmd:::/etc/init.d/sysidssp:label=admin_low;clearance=admin_high;privs=all
SSP Installation:tsol:cmd:::/etc/init.d/xntpd:uid=0;gid=1;label=admin_low;clearance=admin_high;privs=35,59
SSP Installation:tsol:cmd:::/etc/opt/SUNWssp/ssp_startup.sh:label=admin_low;clearance=admin_high;privs=all
SSP Installation:tsol:cmd:::/etc/opt/SUNWssp/ssp_startup.tcl:label=admin_low;clearance=admin_high;privs=all
SSP Installation:tsol:cmd:::/etc/rc3.d/S76snmpdx:label=admin_low;clearance=admin_high;privs=all
SSP Installation:tsol:cmd:::/opt/SUNWssp/bin/ssp_backup:uid=0;gid=1;label=admin_low;clearance=admin_high;privs=all
SSP Installation:tsol:cmd:::/opt/SUNWssp/bin/ssp_config:uid=0;gid=1;label=admin_low;clearance=admin_high;privs=all
SSP Installation:tsol:cmd:::/opt/SUNWssp/bin/ssp_install:uid=0;gid=1;label=admin_low;clearance=admin_high;privs=all
SSP Installation:tsol:cmd:::/opt/SUNWssp/bin/ssp_post_os_upgrade:uid=0;gid=1;label=admin_low;clearance=admin_high;privs=all
SSP Installation:tsol:cmd:::/opt/SUNWssp/bin/ssp_restore:uid=0;gid=1;label=admin_low;clearance=admin_high;privs=all
SSP Installation:tsol:cmd:::/opt/SUNWssp/bin/ssp_terminate:uid=0;gid=1;label=admin_low;clearance=admin_high;privs=all
SSP Installation:tsol:cmd:::/opt/SUNWssp/bin/ssp_unconfig:uid=0;gid=1;label=admin_low;clearance=admin_high;privs=all
SSP Installation:tsol:cmd:::/opt/SUNWssp/bin/ssp_upgrade:uid=0;gid=1;label=admin_low;clearance=admin_high;privs=all
SSP Installation:tsol:cmd:::/cdrom/admin-cdrom_0/trusted_sol_8_sup1/System_Service_Processor_3.3/Tools/ssp_install:uid=0;gid=1;label=admin_low;clearance=admin_high;privs=all
Software Installation:tsol:cmd:::/usr/bin/admintool:euid=0;egid=2;privs=2,4,5,6,10,14,15,16,51,53,61,66
Software Installation:tsol:cmd:::/usr/bin/catman:euid=0;egid=2
Software Installation:tsol:cmd:::/usr/bin/ln:privs=6
Software Installation:tsol:cmd:::/usr/bin/pkginfo:euid=0
Software Installation:tsol:cmd:::/usr/bin/pkgmk:euid=0
Software Installation:tsol:cmd:::/usr/bin/pkgparam:euid=0
Software Installation:tsol:cmd:::/usr/bin/pkgproto:euid=0
Software Installation:tsol:cmd:::/usr/bin/pkgtrans:euid=0
Software Installation:tsol:cmd:::/usr/sbin/add_drv:uid=0;gid=3;privs=4,6,10,12,61
Software Installation:tsol:cmd:::/usr/sbin/install:privs=2,4,5,6,16
Software Installation:tsol:cmd:::/usr/sbin/pkgadd:uid=0;gid=2;privs=1,2,4,5,6,10,11,12,14,15,16,17,19,51,53,57,61,66,68,71
Software Installation:tsol:cmd:::/usr/sbin/pkgask:uid=0
Software Installation:tsol:cmd:::/usr/sbin/pkgchk:uid=0;privs=file_audit
Software Installation:tsol:cmd:::/usr/sbin/pkgmv:uid=0;egid=2;privs=2,4,5,6,10,11,12,14,15,16,17,19,51,53,61,66,71
Software Installation:tsol:cmd:::/usr/sbin/pkgrm:uid=0;egid=2;privs=2,4,5,6,10,11,12,14,15,16,51,53,61,66
Software Installation:tsol:cmd:::/usr/sbin/rem_drv:euid=0;egid=3;privs=4,6,10,12,61
Software Installation:tsol:cmd:::/usr/sbin/patchadd:uid=0;privs=all;label=admin_low
Software Installation:tsol:cmd:::/usr/sbin/patchrm:uid=0;privs=all;label=admin_low
Software Installation:tsol:act:::Open;*;JAVA_BYTE_CODE;*;*:uid=0;gid=2;privs=1,2,4,5,6,10,11,12,14,15,16,17,19,51,53,57,61,66,68,71
Software Installation:tsol:cmd:::/cdrom/admin-cdrom_0/tsol_8_sparc_2/Solaris_8/Tools/add_to_install_server:uid=0;privs=all
Software Installation:tsol:cmd:::/cdrom/admin-cdrom_0/tsol_8_ia_2/Solaris_8/Tools/add_to_install_server:uid=0;privs=all
Software Installation:tsol:cmd:::/cdrom/admin-cdrom_0/trusted_sol_8_sparc/Trusted_Solaris_8/Tools/setup_install_server:uid=0;privs=all
Software Installation:tsol:cmd:::/cdrom/admin-cdrom_0/trusted_sol_8_ia/Trusted_Solaris_8/Tools/setup_install_server:uid=0;privs=all
Software Installation:tsol:cmd:::/cdrom/admin-cdrom_0/tsol_8_401_sparc/Trusted_Solaris_8/Tools/setup_install_server:uid=0;privs=all
Software Installation:tsol:cmd:::/cdrom/admin-cdrom_0/tsol_8_401_ia/Trusted_Solaris_8/Tools/setup_install_server:uid=0;privs=all
Software Installation:tsol:cmd:::/cdrom/admin-cdrom_0/tsol_8_401_sparc_2/Solaris_8/Tools/add_to_install_server:uid=0;privs=all
Software Installation:tsol:cmd:::/cdrom/admin-cdrom_0/tsol_8_401_ia_2/Solaris_8/Tools/add_to_install_server:uid=0;privs=all
Software Installation:tsol:cmd:::/cdrom/admin-cdrom_0/tsol_8_401_lang_sparc/Solaris_8/Tools/add_to_install_server:uid=0;privs=all
Software Installation:tsol:cmd:::/cdrom/admin-cdrom_0/tsol_8_401_lang_ia/Solaris_8/Tools/add_to_install_server:uid=0;privs=all
Software Installation:tsol:cmd:::/export/install/ts8_sparc/Trusted_Solaris_8/Tools/add_install_client:uid=0;privs=4,5,6,10,11,12,17,30,32,33,35,36,39,52,55,57,61,68,69
Software Installation:tsol:cmd:::/export/install/ts8_ia/Trusted_Solaris_8/Tools/add_install_client:uid=0;privs=4,5,6,10,11,12,17,30,32,33,35,36,39,52,55,57,61,68,69
Software Installation:tsol:cmd:::/export/install/ts8_sparc/Trusted_Solaris_8/Tools/rm_install_client:uid=0;privs=4,5,6,10,11,12,17,30,32,33,35,36,39,52,55,57,61,68,69
Software Installation:tsol:cmd:::/export/install/ts8_ia/Trusted_Solaris_8/Tools/rm_install_client:uid=0;privs=4,5,6,10,11,12,17,30,32,33,35,36,39,52,55,57,61,68,69
Software Installation:tsol:cmd:::/usr/sbin/install.d/pfinstall:privs=file_dac_read,file_dac_write,file_mac_read
Software Installation:tsol:cmd:::/usr/sbin/prtvtoc:privs=file_dac_read,file_mac_read
Software Installation:tsol:cmd:::/usr/sbin/in.rarpd:uid=0;privs=30,68
Software Installation:tsol:cmd:::/usr/sbin/rpc.bootparamd:uid=0;privs=33
Software Installation:tsol:cmd:::/usr/sbin/rpc.tbootparamd:uid=0;privs=33,68
Sunray Management:tsol:cmd:::/cdrom/cdrom0/utinstall:privs=1,2,4,6,8,10,11,12,14,15,17,35,51,53,61,68,71;uid=0
Sunray Management:tsol:cmd:::/opt/SUNWut/sbin/utinstall:privs=1,2,4,6,8,10,11,12,14,15,17,35,51,53,61,68,71;uid=0
Sunray Management:tsol:cmd:::/opt/SUNWconn/ldap/lib/dsgfp:privs=35
Sunray Management:tsol:cmd:::/opt/SUNWconn/ldap/lib/dsnmprad:privs=5,33,35,36,59,68
Sunray Management:tsol:cmd:::/opt/SUNWconn/ldap/lib/dsnmpserv:privs=5,33,35,36,59,68
Sunray Management:tsol:cmd:::/opt/SUNWconn/ldap/lib/dsservd:privs=5,10,33,35,36,59,68
Sunray Management:tsol:cmd:::/opt/SUNWut/lib/utdevmgrd:privs=5,35,53,59,68
Sunray Management:tsol:cmd:::/opt/SUNWut/lib/utlog:privs=1,2,4,5,6,11,14,15,17,43,48,68
Sunray Management:tsol:cmd:::/opt/SUNWut/lib/utparalleld:privs=2,4,5,6,10,35,53,59,60,61,68
Sunray Management:tsol:cmd:::/opt/SUNWut/lib/utseriald:privs=2,4,5,6,10,35,53,59,60,61,68
Sunray Management:tsol:cmd:::/opt/SUNWut/lib/utsessiond:privs=35,59,68
Sunray Management:tsol:cmd:::/opt/SUNWut/sbin/utadm:privs=1,2,4,5,6,10,11,14,15,17,33,35,36,53,59,68;uid=0;gid=7
Sunray Management:tsol:cmd:::/opt/SUNWut/sbin/utuser:privs=5,10,33,35,36,53,59,68
Sunray Management:tsol:cmd:::/opt/SUNWut/sbin/utconfig:privs=1,2,4,5,6,10,11,14,15,33,35,36,43,53,59,68;uid=0
Sunray Management:tsol:cmd::://usr/lib/httpd:privs=10,68
Sunray Management:tsol:cmd:::/usr/lib/nscd_check:privs=10,35,68
Sunray Management:tsol:cmd:::/usr/sbin/pntadm:privs=5,68
Sunray Management:tsol:cmd:::/usr/sbin/dhtadm:privs=5,68
Sunray Management:tsol:cmd:::/usr/bin/crontab:privs=43
Sunray Management:tsol:cmd:::/usr/bin/htserver:privs=6,10,53,68
Sunray Management:tsol:cmd:::/usr/bin/htmap:privs=10
Sunray Management:tsol:cmd:::/usr/bin/htcontent:privs=10
Sunray Management:tsol:cmd:::/usr/bin/nohup:privs=5,35,53,59,68
Sunray Management:tsol:cmd:::/usr/bin/priocntl:privs=35,53,59,68
Sunray Management:tsol:cmd:::/usr/sbin/dispadmin:privs=5,35,53,59,68
Sunray Management:tsol:cmd:::/opt/SUNWut/http/bin/htserver:privs=6,10,53,68
Sunray Management:tsol:cmd:::/opt/SUNWut/http/bin/htmap:privs=10
Sunray Management:tsol:cmd:::/opt/SUNWut/http/bin/htcontent:privs=10
Sunray Management:tsol:cmd:::/usr/bin/cp:privs=2,6,14,15
Sunray Management:tsol:cmd:::/usr/bin/rm:privs=6
Sunray Management:tsol:cmd:::/usr/bin/tar:privs=1
Sunray Management:tsol:cmd:::/usr/bin/uname:privs=68
Sunray Management:tsol:cmd:::/usr/sbin/chroot:privs=45
Sunray Management:tsol:cmd:::/usr/bin/find:privs=4,5,6
User Management:tsol:cmd:::/etc/init.d/utmpd:euid=0;egid=3;privs=all
User Security:tsol:cmd:::/usr/sbin/pwconv:privs=all
User Security:tsol:cmd:::/usr/dt/bin/sdtsmartcardadmin:uid=0;privs=51
User Security:tsol:cmd:::/usr/bin/smartcard:euid=0;privs=6
User Security:tsol:act:::SDTscgui;*;*;*;0:uid=0
allocate:tsol:cmd:::/etc/security/lib/disk_clean:privs=2,4,5,6,8,10,11,12,14,15,19,56,67
allocate:tsol:cmd:::/etc/security/lib/st_clean:privs=2,4,5,6,10,11,12,14,15
allocate:tsol:cmd:::/etc/security/lib/audio_clean_wrapper:privs=2,4,5,6,10,11,12,14,15
##
#	Boot Profile not to be administered or modified except by
#	Trusted Solaris engineering.
##
boot:tsol:cmd:::/platform/SUNW,Ultra-Enterprise-10000/lib/cvcd:euid=0;egid=0;label=admin_low;clearance=admin_high;privs=33,35,37,51,60
boot:tsol:cmd:::/sbin/umount:privs=4,5,6,10,11,12,35,55,67,71
boot:tsol:cmd:::/sbin/umountall:clearance=admin_high;privs=4,5,6,10,11,12,35,55,67,71
boot:tsol:cmd:::/usr/bin/chgrp:privs=file_chown
boot:tsol:cmd:::/usr/bin/chmod:privs=file_setdac
boot:tsol:cmd:::/usr/bin/chown:privs=file_chown
boot:tsol:cmd:::/usr/bin/domainname:privs=sys_net_config
##
# pkill needs file_dac/mac_read/mac_search to list processes and open psinfo
##
boot:tsol:cmd:::/usr/bin/pkill:privs=file_mac_read,file_dac_read,file_mac_search,proc_owner
boot:tsol:cmd:::/usr/bin/rdate:privs=sys_config
boot:tsol:cmd:::/usr/bin/savecore:label=admin_high;clearance=admin_high;privs=10,11,12
boot:tsol:cmd:::/usr/bin/setaudit:privs=4,57
boot:tsol:cmd:::/usr/bin/setlabel:privs=4,5,6,8,10,11,12,14,19,56
##
#	Java use during install of second CD.  Run from S96webstart
##
boot:tsol:cmd:::/usr/java1.2/jre/bin/.java_wrapper:privs=all
boot:tsol:cmd:::/usr/lib/ab2/dweb/sunos5/bin/dwhttpd:uid=1;gid=12;privs=4,5,10,11,12,33,37
boot:tsol:cmd:::/usr/lib/autofs/automountd:label=admin_low;clearance=admin_high;privs=3,4,5,6,10,11,12,14,19,33,35,42,44,55,67,71
boot:tsol:cmd:::/usr/lib/devfsadm/devfseventd:privs=sys_devices,proc_owner
boot:tsol:cmd:::/usr/lib/sysevent/syseventd:privs=sys_devices
boot:tsol:cmd:::/usr/lib/picl/picld:privs=file_dac_write
boot:tsol:cmd:::/usr/lib/expreserve:privs=file_chown,file_dac_read,file_dac_search,file_mac_read,file_mac_search,proc_setclr,proc_setsl,file_dac_write
boot:tsol:cmd:::/usr/lib/fs/autofs/automount:label=admin_low;clearance=admin_high;privs=4,6,10,12,67
boot:tsol:cmd:::/usr/lib/inet/in.dhcpd:privs=2,5,33,35,36,59,68,70
boot:tsol:cmd:::/usr/lib/inet/in.ndpd:privs=net_rawaccess,sys_net_config
boot:tsol:cmd:::/usr/lib/inet/in.ripngd:privs=net_broadcast,net_privaddr
boot:tsol:cmd:::/usr/lib/lp/lpsched:euid=0;label=admin_high;clearance=admin_high;privs=2,4,5,6,8,10,11,12,14,15,16,19,32,33,39,40,44,48,51,52,53,55,56,71
boot:tsol:cmd:::/usr/lib/netsvc/yp/ypstart:euid=0;egid=0;label=admin_low;clearance=admin_high;privs=4,6,30,32,33,35,42,52,55
boot:tsol:cmd:::/usr/lib/nfs/lockd:euid=0;label=admin_low;clearance=admin_high;privs=33,35,42,68,69,70,71
boot:tsol:cmd:::/usr/lib/nfs/mountd:label=admin_low;clearance=admin_high;privs=5,6,10,11,12,33,35,52,55,57,61,68,69
Device Security:tsol:cmd:::/usr/bin/kbd:privs=file_dac_read,file_dac_write,sys_devices
boot:tsol:cmd:::/usr/lib/nfs/statd:euid=0;label=admin_low;clearance=admin_high;privs=2,33,35,42,53,71
boot:tsol:cmd:::/usr/lib/saf/sac:privs=file_dac_read,file_dac_write,file_setid,proc_setid
boot:tsol:cmd:::/usr/lib/saf/ttymon:privs=file_dac_read,file_dac_write,file_setid,proc_setid
boot:tsol:cmd:::/usr/lib/sendmail:euid=0;label=admin_low;clearance=admin_high;privs=10,11,35
boot:tsol:cmd:::/usr/sadm/sysadm/bin/mkdtab:uid=0;privs=file_dac_write
boot:tsol:cmd:::/usr/sbin/audit:uid=0;privs=proc_owner,sys_audit
boot:tsol:cmd:::/usr/sbin/auditd:privs=12,52,55,57
boot:tsol:cmd:::/usr/sbin/cron:euid=0;label=admin_low;clearance=admin_high;privs=4,5,6,12,14,33,44,52,53,55,57,59
boot:tsol:cmd:::/usr/sbin/deallocate:privs=2,4,6,10,15,57,61,67,68
boot:tsol:cmd:::/usr/sbin/devfsadm:privs=file_chown,sys_devices,file_mac_read,file_mac_write,file_upgrade_sl,file_dac_write,file_downgrade_sl,file_setdac,sys_trans_label
boot:tsol:cmd:::/usr/sbin/ifconfig:privs=net_rawaccess,sys_net_config
boot:tsol:cmd:::/usr/sbin/in.named:euid=0;label=admin_low;clearance=admin_high;privs=10,33,35,42,52,59,68,71
boot:tsol:cmd:::/usr/sbin/in.rdisc:privs=net_broadcast,net_rawaccess,sys_net_config
boot:tsol:cmd:::/usr/sbin/in.routed:label=admin_high;clearance=admin_high;privs=net_broadcast,net_mac_read,net_privaddr,sys_net_config
boot:tsol:cmd:::/usr/sbin/ipsecconf:privs=sys_net_config
boot:tsol:cmd:::/usr/sbin/labeld:label=admin_low;clearance=admin_high;privs=file_mac_read,sys_system_door,proc_setsl
boot:tsol:cmd:::/usr/sbin/mkdevdb:privs=2,6,8,10,12,15,71
boot:tsol:cmd:::/usr/sbin/modload:privs=sys_devices
boot:tsol:cmd:::/usr/sbin/mount:privs=4,5,6,10,11,12,35,55,63,67,71
boot:tsol:cmd:::/usr/sbin/mountall:privs=4,5,6,10,11,12,35,55,63,67,71
boot:tsol:cmd:::/usr/sbin/ndd:privs=sys_net_config
boot:tsol:cmd:::/usr/sbin/nis_cachemgr:label=admin_low;clearance=admin_high;privs=4,6,28,33,42
boot:tsol:cmd:::/usr/sbin/nscd:label=admin_low;clearance=admin_high;privs=6,16,28,33,42,52,68,71
boot:tsol:cmd:::/usr/lib/security/sparcv9/cryptorand:privs=10
boot:tsol:cmd:::/usr/lib/security/cryptorand:privs=10
##
#	For Java install of second CD.  Run from S96webstart
##
boot:tsol:cmd:::/usr/sbin/reboot:euid=0;privs=file_mac_read,sys_audit,sys_boot
boot:tsol:cmd:::/usr/sbin/rpc.nisd:euid=0;egid=0;privs=33,42,52,55
boot:tsol:cmd:::/usr/sbin/rpc.nispasswdd:euid=0;egid=0;privs=33,42
boot:tsol:cmd:::/usr/sbin/route:euid=0;privs=sys_net_config,sys_trans_label
boot:tsol:cmd:::/usr/sbin/share:euid=0;egid=0
boot:tsol:cmd:::/usr/sbin/shareall:euid=0;egid=0;label=admin_low;clearance=admin_high;privs=10,11,12,69
boot:tsol:cmd:::/usr/sbin/swap:privs=sys_mount
boot:tsol:cmd:::/usr/sbin/syslogd:label=admin_low;clearance=admin_high;privs=5,6,12,28,32,33,35,52,55,71
boot:tsol:cmd:::/usr/sbin/tokmapd:privs=net_privaddr,proc_setclr,proc_setsl,file_mac_write,file_dac_write,sys_net_config,net_mac_read
boot:tsol:cmd:::/usr/sbin/tnctl:privs=sys_net_config,sys_trans_label
boot:tsol:cmd:::/usr/sbin/tnd:privs=11,28,33,42,52,55,68
boot:tsol:cmd:::/usr/sbin/unshare:euid=0;egid=0;label=admin_low;clearance=admin_high;privs=10,11,12,69
boot:tsol:cmd:::/usr/sbin/unshareall:euid=0;egid=0;label=admin_low;clearance=admin_high;privs=10,11,12,69
##
# audit_setup should probably have all privs because it is site
# configurable.
##
boot:tsol:cmd:::/etc/security/audit_startup:privs=all
##
# dtlogin needs all privileges to pass on to other windows programs
##
boot:tsol:cmd:::/usr/dt/bin/dtlogin:privs=all
##
# inetd needs all privileges to pass the appropriate privileges to
# programs it execs
##
boot:tsol:cmd:::/usr/sbin/inetd:label=admin_low;clearance=admin_high;privs=all
##
# Used during system install only.  All privs make no difference there are
# no users at this time.
##
boot:tsol:cmd:::/usr/sbin/sysidconfig:privs=all
boot:tsol:cmd:::/usr/sbin/sysidkrb5:privs=all
boot:tsol:cmd:::/usr/sbin/sysidnet:privs=all
boot:tsol:cmd:::/usr/sbin/sysidns:privs=all
boot:tsol:cmd:::/usr/sbin/sysidpm:privs=all
boot:tsol:cmd:::/usr/sbin/sysidroot:privs=all
boot:tsol:cmd:::/usr/sbin/sysidsys:privs=all
boot:tsol:cmd:::/usr/sbin/sysidtty:privs=all
##
boot:tsol:cmd:::/sbin/mountall:clearance=admin_high;privs=all
boot:tsol:cmd:::/usr/sbin/rpcbind:label=admin_high;clearance=admin_high;privs=all
boot:tsol:cmd:::/usr/sbin/keyserv:label=admin_low;clearance=admin_high;privs=net_mac_read,net_upgrade_sl,sys_system_door
boot:tsol:cmd:::/usr/lib/nfs/nfsd:label=admin_low;clearance=admin_high;privs=all
boot:tsol:cmd:::/usr/bin/coreadm:privs=all
boot:tsol:cmd:::/usr/lib/dmi/dmispd:privs=all
boot:tsol:cmd:::/usr/lib/dmi/snmpXdmid:privs=all
boot:tsol:cmd:::/usr/lib/snmp/snmpdx:privs=all
boot:tsol:cmd:::/usr/lib/utmpd:privs=all
boot:tsol:cmd:::/usr/sadm/lib/smc/bin/smcboot:clearance=admin_high;privs=all
boot:tsol:cmd:::/usr/sbin/bdconfig:privs=all
boot:tsol:cmd:::/usr/sbin/dumpadm:privs=all
boot:tsol:cmd:::/usr/sbin/pmconfig:privs=all
boot:tsol:cmd:::/usr/sbin/in.rarpd:privs=30,68
boot:tsol:cmd:::/usr/sbin/rpc.bootparamd:privs=33
boot:tsol:cmd:::/usr/sbin/rpc.tbootparamd:privs=33,68
boot:tsol:cmd:::/usr/sbin/ntpdate:uid=0;gid=1;label=admin_low;clearance=admin_high;privs=35,59
boot:tsol:cmd:::/usr/lib/inet/xntpd:uid=0;gid=1;label=admin_low;clearance=admin_high;privs=35,59
boot:tsol:cmd:::/usr/sbin/cssd:uid=1;gid=12;privs=33,37
##
#	This is the catch all for rc? and a few others
##
sbinboot:tsol:cmd:::/sbin/*:privs=all
##
#	End of Boot Profiles
##
cron:tsol:cmd:::/usr/bin/rdate:privs=sys_config
cron:tsol:cmd:::/usr/sbin/rtc:privs=sys_config
cron:tsol:cmd:::/etc/init.d/tsol_audit_badpromlogins:egid=3;privs=4,57
cron:tsol:cmd:::/usr/lib/newsyslog:privs=12
cron:tsol:cmd:::/usr/lib/fs/nfs/nfsfind:privs=4,5,6,12
dtwm:tsol:act:::AddItemToMenu;*;*;*;*:
dtwm:tsol:act:::BuildDtwmrcFromWsmenuDir;*;*;*;*:
dtwm:tsol:act:::BuildWorkspaceMenuFromWsmenuDir;*;*;*;*:
dtwm:tsol:act:::Dtdevmgr;*;*;*;*:
dtwm:tsol:act:::Dtstyle;*;*;*;0:
dtwm:tsol:act:::ExitSession;*;*;*;0:
dtwm:tsol:act:::LockDisplay;*;*;*;*:
dtwm:tsol:act:::RegenerateWorkspaceMenu;*;*;*;*:
dtwm:tsol:act:::RestoreDtwmrc;*;*;*;*:
dtwm:tsol:act:::RestoreWorkspaceMenu;*;*;*;*:
dtwm:tsol:act:::RestoreWsmenuDir;*;*;*;*:
dtwm:tsol:act:::SDTaccessx;*;*;*;*:
dtwm:tsol:act:::SDTsuspend;*;*;*;*:
dtwm:tsol:act:::StartDtscreenBlank;*;*;*;*:
dtwm:tsol:act:::StartDtscreenFlame;*;*;*;*:
dtwm:tsol:act:::StartDtscreenHop;*;*;*;*:
dtwm:tsol:act:::StartDtscreenImage;*;*;*;*:
dtwm:tsol:act:::StartDtscreenLife;*;*;*;*:
dtwm:tsol:act:::StartDtscreenPyro;*;*;*;*:
dtwm:tsol:act:::StartDtscreenQix;*;*;*;*:
dtwm:tsol:act:::StartDtscreenRotor;*;*;*;*:
dtwm:tsol:act:::StartDtscreenSwarm;*;*;*;*:
dtwm:tsol:act:::StartDtscreenWorm;*;*;*;*:
dtwm:tsol:act:::UndoCustomizeWorkspaceMenu;*;*;*;*:
dtwm:tsol:act:::UpdateWorkspaceMenu;*;*;*;*:
inetd:tsol:cmd:::/platform/SUNW,Ultra-Enterprise-10000/lib/dr_daemon:euid=0;egid=1;label=admin_low;clearance=admin_high;privs=all
inetd:tsol:cmd:::/usr/dt/bin/rpc.cmsd:privs=2,4,6,8,10,12,14,15,16,30,32,35,47,48,51,53
inetd:tsol:cmd:::/usr/openwin/bin/rpc.ttdbserverd:privs=2,4,5,6,10,11,12,14,15,16,30,32,33,35,37,44,47,48,51
inetd:tsol:cmd:::/usr/lib/print/in.lpd:privs=2,6,8,10,11,12,14,15,32,33,35,38,39,42,44,56,71
inetd:tsol:cmd:::/usr/sbin/ap_daemon:euid=0;egid=1;privs=all
inetd:tsol:cmd:::/usr/sbin/in.ftpd:privs=4,6,8,12,35,44,45,53,57,59,71
inetd:tsol:cmd:::/usr/sbin/in.rexecd:privs=35,44,53,57,59,71
inetd:tsol:cmd:::/usr/sbin/in.rlogind:privs=2,12,15,35,44,57
inetd:tsol:cmd:::/usr/sbin/in.rshd:privs=35,44,53,57,59
inetd:tsol:cmd:::/usr/sbin/in.telnetd:privs=2,12,15,35,44,57
inetd:tsol:cmd:::/usr/sbin/in.tftpd:privs=45,51,53
inetd:tsol:cmd:::/usr/sbin/rpc.getpeerinfo:privs=32,42,44
inetd:tsol:cmd:::/usr/sbin/rpc.rexd:privs=35,44,53,57
inetd:tsol:cmd:::/usr/sbin/sadmind:privs=all
inetd:tsol:cmd:::/usr/sbin/ocfserv:privs=1,4,6,10,11,17,33,35,37,68
shutdown:tsol:act:::Halt;*;*;*;0:
shutdown:tsol:act:::Halt;*;HOST,WSMENU_This_Host;*;1:
shutdown:tsol:act:::Reboot;*;*;*;0:
shutdown:tsol:act:::SDTsuspend;*;*;*;*:
shutdown:tsol:act:::SDTpowermgr;*;*;*;*:
