Basic File Privileges [PSARC/2009/378 FastTrack timeout 7/10/2009]
Casper.Dik at sun.com
Casper.Dik at sun.com
Mon Jul 6 13:17:39 PDT 2009
>hey casper,
>
>fyi, this is not how zones works. zones starts with the empty set and
>then adds privs. please see the brand config.xml files for where this
>is defined. you'll need to upate these files with these new privileges.
>(and feel free to file an RFE against zones to start with the basic set
>and then add or remove privs as necessary.)
I looked through the code and it appears that the code tries to always
adds "basic" to the 'default' set.
It appears, then, that adding stuff the "basic" will just work except
when you configure a zone without specifying "default" for limitpriv.
Casper
More information about the opensolaris-arc
mailing list