And, you can also check out the Solaris Security How To Guide : Preventing Web Page Hijacking Using Solaris Security, where we also use this same method to grant certain privileges to the Apache2 service that Solaris has built-in, while taking away it's need to run as "root" for the initial instance.
On May 6, 2009, at 2:46 PM, Wolfgang Ley wrote: > Hi, > > if you already have an SMF service then you can directly specify the > privileges in the start method there. Inside the exec_method use the > method_context and inside this use privileges= > You might want to have a look at the SMF manifest for rpcbind ro get > an example (see /var/svc/manifest/network/rpc/bind.xml). > > Bye, > Drusus. > -- > This message posted from opensolaris.org > _______________________________________________ > security-discuss mailing list > security-discuss at opensolaris.org Mark Thacker Group Product Manager, Security & Virtualization mark.thacker at sun.com 972-992-3178
