5.2. Least Privilege in SolarisIn this section we discuss the privilege models found in Solaris, some background that was considered when moving Least Privilege to Solaris, and the model that exists in Solaris today. In Section 5.3 we give the complete formal definition of our model and the additional features. The details of the data structure changes in the kernel, new data structures, and interfaces presented to programs and users can be found in Section 5.5. Throughout this chapter we use the following notation:
|