privileges.5 (2011 09)

ManualsBrandsHP ManualsSoftwareHP-UX Manpages

privileges(5) privileges(5)

PRIV_FORK (FORK)

Allows a process to create additional processes (using

fork() and vfork()).

PRIV_FSINTEGRITY (FSINTEGRITY)

Allows a process to perform disk operations such as removing or modifying the size or boun-

daries of disk partitions, or to import and export an LVM volume group across the system.

PRIV_FSMOUNT (FSMOUNT)

Allows a process to mount and unmount a ﬁle system using the

mount() and umount() sys-

tem calls. See mount(2) and umount(2).

This privilege is valid only when the HP-UX ContainmentPlus product (version B.11.31.02 or

later) is installed on the system.

PRIV_FSSTHREAD (FSSTHREAD)

Reserved.

PRIV_FSS (FSS)

Reserved.

PRIV_HOSTATTR (HOSTATTR)

Enables a process to modify the host name and domain name.

This privilege is valid only when the HP-UX ContainmentPlus product (version B.11.31.02 or

later) is installed on the system.

PRIV_LIMIT (LIMIT)

Allows a process to set resource and priority limits beyond the maximum limit values (see

setrlimit (2) or nice (2)).

PRIV_LINKANY (LINKANY)

Reserved.

PRIV_LOCKRDONLY (LOCKRDONLY)

Permits the use of the lockf() system call for setting locks on ﬁles open for reading only (see

lockf (2)).

PRIV_MKNOD (MKNOD)

Allows a process to create character or block special ﬁles using the mknod() system call (see

mknod(2)).

PRIV_MLOCK (MLOCK)

Allows access to the plock() system call (see plock (2)).

PRIV_MOUNT (MOUNT)

Allows a process to control swap space, mount, and unmount a ﬁle system using the

mount()

and umount() system calls. See mount(2) and umount(2).

If the HP-UX ContainmentPlus product (version B.11.31.02 or later) is installed on the system,

PRIV_MOUNT becomes a compound privilege, which includes PRIV_FSMOUNT and

PRIV_SWAPCTL.

PRIV_MPCTL (MPCTL)

Permits the use of the mpctl() system call for changing processor binding, locality domain

binding or launch policy of a process (see mpctl (2)).

PRIV_NETADMIN (NETADMIN)

Allows a process to perform network administrative operations including conﬁguring the net-

work routing tables and querying interface information.

PRIV_NETPRIVPORT (NETPRIVPORT)

Allows a process to bind to a privileged port. By default, port numbers 0-1023 are privileged

ports.

PRIV_NETPROMISCUOUS (NETPROMISCUOUS)

Enables a process to conﬁgure an interface to listen in promiscuous mode.

PRIV_NETRAWACCESS (NETRAWACCESS)

Allows a process to access the raw internet network protocols.

PRIV_OBJSUID (OBJSUID)

Allows a process to set the suid or sgid bits on any ﬁle if they also have the OWNER privilege.

Additionally, allows a process to change the ownership of a ﬁle without clearing the suid or

4 Hewlett-Packard Company − 4 − HP-UX 11i Version 3: September 2011