Specifications
Red Hat Enterprise Linux to Oracle Solaris Porting Guide
99
Appendix A Security and Privileges
The Oracle Solaris 11 security privileges are defined in Table A-1.
TABLE A-1. ORACLE SOLARIS 11 SECURITY PRIVILEGES
PRIVILEGE NAME DESCRIPTION
PRIV_CONTRACT_EVENT Allow a process to request reliable delivery of events to an event
endpoint.
Allow a process to include events in the critical event set term of
a template, which could be generated in volume by the user.
PRIV_CONTRACT_OBSERVER Allow a process to observe contract events generated by contracts
created and owned by users other than the process's effective user
ID.
Allow a process to open contract event endpoints belonging to
contracts created and owned by users other than the process's
effective user ID.
PRIV_CPC_CPU Allow a process to access per-CPU hardware performance
counters.
PRIV_DTRACE_KERNEL
Allow DTrace kernel-level tracing.
PRIV_DTRACE_PROC Allow DTrace process-level tracing. Allow process-level tracing
probes to be placed and enabled in processes to which the user
has permissions.
PRIV_DTRACE_USER
Allow DTrace user-level tracing. Allow use of the syscall and
profile DTrace providers to examine processes to which the
user has permissions.
PRIV_FILE_CHOWN Allow a process to change a file's owner user ID. Allow a process
to change a file's group ID to one other than the process's effective
group ID or one of the process's supplemental group IDs.
PRIV_FILE_CHOWN_SELF Allow a process to give away its files. A process with this privilege
will run as if {_POSIX_CHOWN_RESTRICTED} is not in effect.
PRIV_FILE_DAC_EXECUTE Allow a process to execute an executable file whose permission
bits or ACL would otherwise disallow the process execute
permission.
PRIV_FILE_DAC_READ Allow a process to read a file or directory whose permission bits or
ACL would otherwise disallow the process read permission.