Using authorizations to control commands
Authorizations can be used to control the running of commands.
You can use the setsecattr command to associate
authorizations with a command. The setsecattr command adds
a stanza to the privileged commands database (/etc/security/privcmds).
Modifications to this database must be downloaded to the kernel with the setkst command.
- To associate authorizations with a command, run the following command:
setsecattr –c accessauths=auth_names innateprivs=privileges proxyprivs=privileges authprivs=auth_name=privileges command_name