next up previous contents
Next: 3.7 Integrated permissions in Up: 3 Integrated permissions by Previous: 3.5 Integrated permissions for   Contents

3.6 Integrated permissions for allowcom rules


Table 59: Option:unix suboption:r
Object class Permission Domain Type
unix_dgram_socket accept domain type
  bind    
  listen    
  name_bind    
  read    
  recv_msg    
  recvfrom    
unix_stream_socket accept domain type
  bind    
  listen    
  name_bind    
  read    
  recv_msg    
  recvfrom    


Table 60: Option:unix suboption:w
Object class Permission Domain Type
unix_dgram_socket append domain type
  connect    
  send_msg    
  sendto    
  write    
unix_stream_socket append domain type
  connect    
  connectto    
  send_msg    
  sendto    
  write    


Table 61: Option:sem suboption:r
Object class Permission Domain Type
sem associate domain type
  getattr    
  read    
  unix_read    


Table 62: Option:sem suboption:w
Object class Permission Domain Type
sem create domain type
  destroy    
  setattr    
  unix_write    
  write    


Table 63: Option:msg suboption:r
Object class Permission Domain Type
msg send domain type


Table 64: Option:msg suboption:w
Object class Permission Domain Type
msg receive domain type


Table 65: Option:msgq suboption:r
Object class Permission Domain Type
msgq associate domain type
  getattr    
  read    
  unix_read    


Table 66: Option:msgq suboption:w
Object class Permission Domain Type
msgq create domain type
  destroy    
  enqueue    
  setattr    
  unix_write    
  write    


Table 67: Option:shm suboption:r
Object class Permission Domain Type
shm associate domain type
  getattr    
  read    
  unix_read    


Table 68: Option:shm suboption:w
Object class Permission Domain Type
shm create domain type
  destroy    
  lock    
  setattr    
  unix_write    
  write    


Table 69: Option:pipe suboption:r
Object class Permission Domain Type
fifo_file getattr domain type
  ioctl    
  lock    
  read    


Table 70: Option:pipe suboption:w
Object class Permission Domain Type
fifo_file append domain type
  create    
  execute    
  link    
  lock    
  mounton    
  quotaon    
  relabelfrom    
  relabelto    
  rename    
  setattr    
  unlink    
  write    


Table 71: Option:sig suboption:c
Object class Permission Domain Type
process sigchld domain type


Table 72: Option:sig suboption:k
Object class Permission Domain Type
process sigkill domain type


Table 73: Option:sig suboption:s
Object class Permission Domain Type
process sigstop domain type


Table 74: Option:sig suboption:n
Object class Permission Domain Type
process signull domain type


Table 75: Option:sig suboption:o
Object class Permission Domain Type
process signal domain type


next up previous contents
Next: 3.7 Integrated permissions in Up: 3 Integrated permissions by Previous: 3.5 Integrated permissions for   Contents
Yuichi Nakamura 2006-11-13