RSBAC 1.4.7 RC Configuration

Types

22 FD types defined

Number	Name	Secdel
0	General FD	no
1	Security FD	no
2	System FD	no
3	Executables	no
4	Libraries	no
5	SysExecutables	no
6	InitScripts	no
7	Configs	no
8	ConfigsUser	no
9	TempDirs	no
10	Home	no
11	HomeAdmin	no
12	HomeUser	no
13	Var	no
14	VarCache	no
15	VarLib	no
16	VarSpool	no
17	VarSpoolMail	no
18	VarSpoolCron	no
19	VarLog	no
20	VarSpoolPostfix	no
21	VarRun	no

3 DEV types defined

Number	Name
0	General Device
1	Security Device
2	System Device

3 IPC types defined

Number	Name
0	General IPC
1	Security IPC
2	System IPC

26 SCD types defined

Number	Name
0	time_strucs
1	clock
2	host_id
3	net_id
4	ioports
5	rlimit
6	swap
7	syslog
8	rsbac
9	rsbac_log
10	other
11	kmem
12	network
13	firewall
14	priority
15	sysfs
16	rsbac_remote_lo
17	quota
18	sysctl
19	nfsd
20	ksyms
21	mlock
22	capability
23	kexec
24	videomem
32	auth_administra

3 USER types defined

Number	Name
0	General User
1	Security User
2	System User

4 PROCESS types defined

Number	Name
0	General Process
1	Security Proc
2	System Process
999999	Kernel Process

1 GROUP types defined

Number	Name
0	General Group

3 NETDEV types defined

Number	Name
0	General NETDEV
1	Security NETDEV
2	System NETDEV

3 NETTEMP types defined

Number	Name
0	General NETTEMP
1	Securit NETTEMP
2	System NETTEMP

3 NETOBJ types defined

Number	Name
0	General NETOBJ
1	Security NETOBJ
2	System NETOBJ

24 Roles defined

Role 0: General User

Admin Type	No Admin
Default FD Create Type	4294967294 (S: Inherit Parent)
Default User Create Type	0 (General User)
Default Process Create Type	4294967294 (S: Inherit Parent)
Default Process Chown Type	4294967291 (S: Use New Role Def Create)
Default Process Execute Type	4294967294 (S: Inherit Parent)
Default IPC Create Type	0 (General IPC)
Default Group Create Type	0 (General Group)
Default Unixsock Create Type	4294967289 (Unknown)
Boot Role	No
Req Reauth	No

FD Type Compatibilities of Role 0:

0 (General FD)	CHDIR CLOSE GET_PERMISSIONS_DATA GET_STATUS_DATA READ READ_OPEN SEARCH
3 (Executables)	CHDIR CLOSE EXECUTE GET_PERMISSIONS_DATA GET_STATUS_DATA READ READ_OPEN SEARCH MAP_EXEC
4 (Libraries)	CHDIR CLOSE GET_PERMISSIONS_DATA GET_STATUS_DATA READ READ_OPEN SEARCH MAP_EXEC
7 (Configs)	SEARCH
8 (ConfigsUser)	CHDIR CLOSE GET_PERMISSIONS_DATA GET_STATUS_DATA READ READ_OPEN SEARCH
9 (TempDirs)	APPEND_OPEN CHANGE_OWNER CHDIR CLOSE CREATE DELETE GET_PERMISSIONS_DATA GET_STATUS_DATA LINK_HARD MODIFY_ACCESS_DATA MODIFY_PERMISSIONS_DATA READ READ_WRITE_OPEN READ_OPEN RENAME SEARCH TRUNCATE WRITE WRITE_OPEN LISTEN ACCEPT CONNECT SEND RECEIVE NET_SHUTDOWN IOCTL LOCK MOVETO
10 (Home)	CHDIR CLOSE GET_PERMISSIONS_DATA GET_STATUS_DATA READ READ_OPEN SEARCH
11 (HomeAdmin)	CHDIR CLOSE GET_PERMISSIONS_DATA GET_STATUS_DATA READ READ_OPEN SEARCH
12 (HomeUser)	APPEND_OPEN CHANGE_OWNER CHDIR CLOSE CREATE DELETE GET_PERMISSIONS_DATA GET_STATUS_DATA LINK_HARD MODIFY_ACCESS_DATA MODIFY_PERMISSIONS_DATA READ READ_WRITE_OPEN READ_OPEN RENAME SEARCH TRUNCATE WRITE WRITE_OPEN LISTEN ACCEPT CONNECT SEND RECEIVE NET_SHUTDOWN IOCTL LOCK MOVETO
13 (Var)	APPEND_OPEN CHANGE_OWNER CHDIR CLOSE CREATE DELETE GET_PERMISSIONS_DATA GET_STATUS_DATA LINK_HARD MODIFY_ACCESS_DATA MODIFY_PERMISSIONS_DATA READ READ_WRITE_OPEN READ_OPEN RENAME SEARCH TRUNCATE WRITE WRITE_OPEN LISTEN ACCEPT CONNECT SEND RECEIVE NET_SHUTDOWN IOCTL LOCK MOVETO
17 (VarSpoolMail)	APPEND_OPEN CHANGE_OWNER CHDIR CLOSE CREATE DELETE GET_PERMISSIONS_DATA GET_STATUS_DATA LINK_HARD MODIFY_ACCESS_DATA MODIFY_PERMISSIONS_DATA READ READ_WRITE_OPEN READ_OPEN RENAME SEARCH TRUNCATE WRITE WRITE_OPEN LISTEN ACCEPT CONNECT SEND RECEIVE NET_SHUTDOWN IOCTL LOCK MOVETO

DEV Type Compatibilities of Role 0:

0 (General Device)

APPEND_OPEN CLOSE GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ READ_WRITE_OPEN READ_OPEN WRITE WRITE_OPEN SEND IOCTL

IPC Type Compatibilities of Role 0:

0 (General IPC)

ALTER CHANGE_GROUP CHANGE_OWNER CLOSE CREATE DELETE GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ READ_WRITE_OPEN READ_OPEN WRITE WRITE_OPEN BIND LISTEN ACCEPT CONNECT SEND RECEIVE NET_SHUTDOWN IOCTL LOCK

SCD Type Compatibilities of Role 0:

5 (rlimit)	GET_STATUS_DATA MODIFY_SYSTEM_DATA
10 (other)	MAP_EXEC
12 (network)	GET_STATUS_DATA

USER Type Compatibilities of Role 0:

0 (General User)

CHANGE_OWNER GET_STATUS_DATA SEARCH

PROCESS Type Compatibilities of Role 0:

0 (General Process)	CHANGE_GROUP CHANGE_OWNER CLONE CREATE GET_STATUS_DATA MODIFY_SYSTEM_DATA SEND_SIGNAL TERMINATE TRACE CHANGE_DAC_EFF_OWNER CHANGE_DAC_FS_OWNER CHANGE_DAC_EFF_GROUP CHANGE_DAC_FS_GROUP
999999 (Kernel Process)	GET_STATUS_DATA TERMINATE

GROUP Type Compatibilities of Role 0:

0 (General Group)

GET_STATUS_DATA SEARCH

NETDEV Type Compatibilities of Role 0:

0 (General NETDEV)

GET_STATUS_DATA MODIFY_SYSTEM_DATA BIND

NETOBJ Type Compatibilities of Role 0:

0 (General NETOBJ)

CLOSE CREATE GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ WRITE BIND LISTEN ACCEPT CONNECT SEND RECEIVE NET_SHUTDOWN IOCTL

Role 1: Role Admin

Administrated roles	0 1 2 3 4 5 6 7
Admin Type	Role Admin
Default FD Create Type	4294967294 (S: Inherit Parent)
Default User Create Type	0 (General User)
Default Process Create Type	4294967294 (S: Inherit Parent)
Default Process Chown Type	4294967291 (S: Use New Role Def Create)
Default Process Execute Type	4294967294 (S: Inherit Parent)
Default IPC Create Type	0 (General IPC)
Default Group Create Type	0 (General Group)
Default Unixsock Create Type	4294967289 (Unknown)
Boot Role	No
Req Reauth	No

FD Type Compatibilities of Role 1:

0 (General FD)	CHDIR CLOSE GET_PERMISSIONS_DATA GET_STATUS_DATA READ READ_OPEN SEARCH ADMIN ASSIGN ACCESS_CONTROL SUPERVISOR MODIFY_AUTH CHANGE_AUTHED_OWNER SELECT
1 (Security FD)	APPEND_OPEN CHANGE_OWNER CHDIR CLOSE CREATE DELETE EXECUTE GET_PERMISSIONS_DATA GET_STATUS_DATA LINK_HARD MODIFY_ACCESS_DATA MODIFY_ATTRIBUTE MODIFY_PERMISSIONS_DATA READ READ_ATTRIBUTE READ_WRITE_OPEN READ_OPEN RENAME SEARCH TRUNCATE WRITE WRITE_OPEN MAP_EXEC LISTEN ACCEPT CONNECT SEND RECEIVE NET_SHUTDOWN IOCTL LOCK MOVETO ADMIN ASSIGN ACCESS_CONTROL SUPERVISOR MODIFY_AUTH CHANGE_AUTHED_OWNER SELECT
2 (System FD)	CHDIR CLOSE GET_PERMISSIONS_DATA GET_STATUS_DATA READ READ_OPEN SEARCH ADMIN ASSIGN ACCESS_CONTROL SUPERVISOR MODIFY_AUTH CHANGE_AUTHED_OWNER SELECT
3 (Executables)	CHDIR CLOSE EXECUTE GET_PERMISSIONS_DATA GET_STATUS_DATA READ READ_OPEN SEARCH MAP_EXEC ADMIN ASSIGN ACCESS_CONTROL SUPERVISOR MODIFY_AUTH CHANGE_AUTHED_OWNER SELECT
4 (Libraries)	CHDIR CLOSE GET_PERMISSIONS_DATA GET_STATUS_DATA READ READ_OPEN SEARCH MAP_EXEC
5 (SysExecutables)	CHDIR CLOSE EXECUTE GET_PERMISSIONS_DATA GET_STATUS_DATA READ READ_OPEN SEARCH MAP_EXEC ADMIN ASSIGN ACCESS_CONTROL SUPERVISOR MODIFY_AUTH CHANGE_AUTHED_OWNER SELECT
6 (InitScripts)	CHDIR CLOSE EXECUTE GET_PERMISSIONS_DATA GET_STATUS_DATA READ READ_OPEN SEARCH MAP_EXEC ADMIN ASSIGN ACCESS_CONTROL SUPERVISOR MODIFY_AUTH CHANGE_AUTHED_OWNER SELECT
7 (Configs)	CHDIR CLOSE GET_PERMISSIONS_DATA GET_STATUS_DATA READ READ_OPEN SEARCH
8 (ConfigsUser)	CHDIR CLOSE GET_PERMISSIONS_DATA GET_STATUS_DATA READ READ_OPEN SEARCH
9 (TempDirs)	APPEND_OPEN CHANGE_OWNER CHDIR CLOSE CREATE DELETE GET_PERMISSIONS_DATA GET_STATUS_DATA LINK_HARD MODIFY_ACCESS_DATA MODIFY_PERMISSIONS_DATA READ READ_WRITE_OPEN READ_OPEN RENAME SEARCH TRUNCATE WRITE WRITE_OPEN LISTEN ACCEPT CONNECT SEND RECEIVE NET_SHUTDOWN IOCTL LOCK MOVETO
10 (Home)	CHDIR CLOSE GET_PERMISSIONS_DATA GET_STATUS_DATA READ READ_OPEN SEARCH
11 (HomeAdmin)	APPEND_OPEN CHANGE_OWNER CHDIR CLOSE CREATE DELETE GET_PERMISSIONS_DATA GET_STATUS_DATA LINK_HARD MODIFY_ACCESS_DATA MODIFY_PERMISSIONS_DATA READ READ_WRITE_OPEN READ_OPEN RENAME SEARCH TRUNCATE WRITE WRITE_OPEN LISTEN ACCEPT CONNECT SEND RECEIVE NET_SHUTDOWN IOCTL LOCK MOVETO
12 (HomeUser)	APPEND_OPEN CHANGE_OWNER CHDIR CLOSE CREATE DELETE GET_PERMISSIONS_DATA GET_STATUS_DATA LINK_HARD MODIFY_ACCESS_DATA MODIFY_PERMISSIONS_DATA READ READ_WRITE_OPEN READ_OPEN RENAME SEARCH TRUNCATE WRITE WRITE_OPEN LISTEN ACCEPT CONNECT SEND RECEIVE NET_SHUTDOWN IOCTL LOCK MOVETO
13 (Var)	CHDIR CLOSE GET_PERMISSIONS_DATA GET_STATUS_DATA READ READ_OPEN SEARCH
17 (VarSpoolMail)	APPEND_OPEN CHANGE_OWNER CHDIR CLOSE CREATE DELETE GET_PERMISSIONS_DATA GET_STATUS_DATA LINK_HARD MODIFY_ACCESS_DATA MODIFY_PERMISSIONS_DATA READ READ_WRITE_OPEN READ_OPEN RENAME SEARCH TRUNCATE WRITE WRITE_OPEN LISTEN ACCEPT CONNECT SEND RECEIVE NET_SHUTDOWN IOCTL LOCK MOVETO
21 (VarRun)	CHDIR CLOSE GET_PERMISSIONS_DATA GET_STATUS_DATA READ READ_OPEN SEARCH

DEV Type Compatibilities of Role 1:

0 (General Device)	APPEND_OPEN CLOSE GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_ATTRIBUTE MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ READ_ATTRIBUTE READ_WRITE_OPEN READ_OPEN WRITE WRITE_OPEN SEND IOCTL ADMIN ASSIGN ACCESS_CONTROL SUPERVISOR MODIFY_AUTH CHANGE_AUTHED_OWNER SELECT
1 (Security Device)	APPEND_OPEN CLOSE GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_ATTRIBUTE MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ READ_ATTRIBUTE READ_WRITE_OPEN READ_OPEN WRITE WRITE_OPEN SEND IOCTL ADMIN ASSIGN ACCESS_CONTROL SUPERVISOR MODIFY_AUTH CHANGE_AUTHED_OWNER SELECT

IPC Type Compatibilities of Role 1:

0 (General IPC)	ALTER CHANGE_GROUP CHANGE_OWNER CLOSE CREATE DELETE GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_ATTRIBUTE MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ READ_ATTRIBUTE READ_WRITE_OPEN READ_OPEN WRITE WRITE_OPEN BIND LISTEN ACCEPT CONNECT SEND RECEIVE NET_SHUTDOWN IOCTL LOCK ADMIN ASSIGN ACCESS_CONTROL SUPERVISOR MODIFY_AUTH CHANGE_AUTHED_OWNER SELECT
1 (Security IPC)	ALTER CHANGE_GROUP CHANGE_OWNER CLOSE CREATE DELETE GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_ATTRIBUTE MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ READ_ATTRIBUTE READ_WRITE_OPEN READ_OPEN WRITE WRITE_OPEN BIND LISTEN ACCEPT CONNECT SEND RECEIVE NET_SHUTDOWN IOCTL LOCK ADMIN ASSIGN ACCESS_CONTROL SUPERVISOR MODIFY_AUTH CHANGE_AUTHED_OWNER SELECT

SCD Type Compatibilities of Role 1:

5 (rlimit)	GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_ATTRIBUTE MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ_ATTRIBUTE WRITE ADMIN ASSIGN ACCESS_CONTROL SUPERVISOR MODIFY_AUTH CHANGE_AUTHED_OWNER SELECT
8 (rsbac)	GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_ATTRIBUTE MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ_ATTRIBUTE WRITE ADMIN ASSIGN ACCESS_CONTROL SUPERVISOR MODIFY_AUTH CHANGE_AUTHED_OWNER SELECT
9 (rsbac_log)	GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_ATTRIBUTE MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ_ATTRIBUTE WRITE ADMIN ASSIGN ACCESS_CONTROL SUPERVISOR MODIFY_AUTH CHANGE_AUTHED_OWNER SELECT
10 (other)	MODIFY_PERMISSIONS_DATA SWITCH_LOG SWITCH_MODULE MAP_EXEC ADMIN ASSIGN ACCESS_CONTROL SUPERVISOR MODIFY_AUTH CHANGE_AUTHED_OWNER SELECT
12 (network)	GET_STATUS_DATA ADMIN ASSIGN ACCESS_CONTROL SUPERVISOR MODIFY_AUTH CHANGE_AUTHED_OWNER SELECT
13 (firewall)	GET_STATUS_DATA ADMIN ASSIGN ACCESS_CONTROL SUPERVISOR MODIFY_AUTH CHANGE_AUTHED_OWNER SELECT
15 (sysfs)	GET_STATUS_DATA ADMIN ASSIGN ACCESS_CONTROL SUPERVISOR MODIFY_AUTH CHANGE_AUTHED_OWNER SELECT
32 (auth_administra)	GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_ATTRIBUTE MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ_ATTRIBUTE WRITE ADMIN ASSIGN ACCESS_CONTROL SUPERVISOR MODIFY_AUTH CHANGE_AUTHED_OWNER SELECT

USER Type Compatibilities of Role 1:

0 (General User)	CHANGE_GROUP CHANGE_OWNER CREATE DELETE GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_ATTRIBUTE MODIFY_PERMISSIONS_DATA READ READ_ATTRIBUTE RENAME SEARCH WRITE AUTHENTICATE ADMIN ASSIGN ACCESS_CONTROL SUPERVISOR MODIFY_AUTH CHANGE_AUTHED_OWNER SELECT
1 (Security User)	CHANGE_GROUP CHANGE_OWNER CREATE DELETE GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_ATTRIBUTE MODIFY_PERMISSIONS_DATA READ READ_ATTRIBUTE RENAME SEARCH WRITE AUTHENTICATE ADMIN ASSIGN ACCESS_CONTROL SUPERVISOR MODIFY_AUTH CHANGE_AUTHED_OWNER SELECT
2 (System User)	CHANGE_GROUP CHANGE_OWNER CREATE DELETE GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_ATTRIBUTE MODIFY_PERMISSIONS_DATA READ READ_ATTRIBUTE RENAME SEARCH WRITE AUTHENTICATE ADMIN ASSIGN ACCESS_CONTROL SUPERVISOR MODIFY_AUTH CHANGE_AUTHED_OWNER SELECT

PROCESS Type Compatibilities of Role 1:

0 (General Process)	CHANGE_GROUP CHANGE_OWNER CLONE CREATE GET_STATUS_DATA MODIFY_ATTRIBUTE MODIFY_SYSTEM_DATA READ_ATTRIBUTE SEND_SIGNAL TERMINATE TRACE CHANGE_DAC_EFF_OWNER CHANGE_DAC_FS_OWNER CHANGE_DAC_EFF_GROUP CHANGE_DAC_FS_GROUP ADMIN ASSIGN ACCESS_CONTROL SUPERVISOR MODIFY_AUTH CHANGE_AUTHED_OWNER SELECT
1 (Security Proc)	CHANGE_GROUP CHANGE_OWNER CLONE CREATE GET_STATUS_DATA MODIFY_ATTRIBUTE MODIFY_SYSTEM_DATA READ_ATTRIBUTE SEND_SIGNAL TERMINATE TRACE CHANGE_DAC_EFF_OWNER CHANGE_DAC_FS_OWNER CHANGE_DAC_EFF_GROUP CHANGE_DAC_FS_GROUP ADMIN ASSIGN ACCESS_CONTROL SUPERVISOR MODIFY_AUTH CHANGE_AUTHED_OWNER SELECT
999999 (Kernel Process)	CHANGE_GROUP CHANGE_OWNER CLONE CREATE GET_STATUS_DATA MODIFY_ATTRIBUTE MODIFY_SYSTEM_DATA READ_ATTRIBUTE SEND_SIGNAL TERMINATE TRACE CHANGE_DAC_EFF_OWNER CHANGE_DAC_FS_OWNER CHANGE_DAC_EFF_GROUP CHANGE_DAC_FS_GROUP ADMIN ASSIGN ACCESS_CONTROL SUPERVISOR MODIFY_AUTH CHANGE_AUTHED_OWNER SELECT

GROUP Type Compatibilities of Role 1:

0 (General Group)

CREATE DELETE GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_ATTRIBUTE MODIFY_PERMISSIONS_DATA READ READ_ATTRIBUTE RENAME SEARCH WRITE ADMIN ASSIGN ACCESS_CONTROL SUPERVISOR MODIFY_AUTH CHANGE_AUTHED_OWNER SELECT

NETDEV Type Compatibilities of Role 1:

0 (General NETDEV)	GET_STATUS_DATA MODIFY_ATTRIBUTE READ_ATTRIBUTE ADMIN ASSIGN ACCESS_CONTROL SUPERVISOR MODIFY_AUTH CHANGE_AUTHED_OWNER SELECT
1 (Security NETDEV)	GET_STATUS_DATA MODIFY_ATTRIBUTE READ_ATTRIBUTE ADMIN ASSIGN ACCESS_CONTROL SUPERVISOR MODIFY_AUTH CHANGE_AUTHED_OWNER SELECT
2 (System NETDEV)	GET_STATUS_DATA MODIFY_ATTRIBUTE READ_ATTRIBUTE ADMIN ASSIGN ACCESS_CONTROL SUPERVISOR MODIFY_AUTH CHANGE_AUTHED_OWNER SELECT

NETTEMP Type Compatibilities of Role 1:

0 (General NETTEMP)	CREATE DELETE MODIFY_ATTRIBUTE READ READ_ATTRIBUTE WRITE ADMIN ASSIGN ACCESS_CONTROL SUPERVISOR MODIFY_AUTH CHANGE_AUTHED_OWNER SELECT
1 (Securit NETTEMP)	CREATE DELETE MODIFY_ATTRIBUTE READ READ_ATTRIBUTE WRITE ADMIN ASSIGN ACCESS_CONTROL SUPERVISOR MODIFY_AUTH CHANGE_AUTHED_OWNER SELECT

NETOBJ Type Compatibilities of Role 1:

0 (General NETOBJ)

CLOSE CREATE GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_ATTRIBUTE MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ READ_ATTRIBUTE WRITE BIND LISTEN ACCEPT CONNECT SEND RECEIVE NET_SHUTDOWN IOCTL ADMIN ASSIGN ACCESS_CONTROL SUPERVISOR MODIFY_AUTH CHANGE_AUTHED_OWNER SELECT

Role 2: System Admin

Admin Type	System Admin
Default FD Create Type	4294967294 (S: Inherit Parent)
Default User Create Type	0 (General User)
Default Process Create Type	4294967294 (S: Inherit Parent)
Default Process Chown Type	4294967291 (S: Use New Role Def Create)
Default Process Execute Type	4294967294 (S: Inherit Parent)
Default IPC Create Type	0 (General IPC)
Default Group Create Type	0 (General Group)
Default Unixsock Create Type	4294967289 (Unknown)
Boot Role	No
Req Reauth	No

FD Type Compatibilities of Role 2:

0 (General FD)	ADD_TO_KERNEL APPEND_OPEN CHANGE_OWNER CHDIR CLOSE CREATE DELETE EXECUTE GET_PERMISSIONS_DATA GET_STATUS_DATA LINK_HARD MODIFY_ACCESS_DATA MODIFY_PERMISSIONS_DATA MOUNT READ READ_ATTRIBUTE READ_WRITE_OPEN READ_OPEN REMOVE_FROM_KERNEL RENAME SEARCH TRUNCATE UMOUNT WRITE WRITE_OPEN MAP_EXEC LISTEN ACCEPT CONNECT SEND RECEIVE NET_SHUTDOWN IOCTL LOCK MOVETO
2 (System FD)	ADD_TO_KERNEL APPEND_OPEN CHANGE_OWNER CHDIR CLOSE CREATE DELETE EXECUTE GET_PERMISSIONS_DATA GET_STATUS_DATA LINK_HARD MODIFY_ACCESS_DATA MODIFY_PERMISSIONS_DATA MOUNT READ READ_ATTRIBUTE READ_WRITE_OPEN READ_OPEN REMOVE_FROM_KERNEL RENAME SEARCH TRUNCATE UMOUNT WRITE WRITE_OPEN MAP_EXEC LISTEN ACCEPT CONNECT SEND RECEIVE NET_SHUTDOWN IOCTL LOCK MOVETO
3 (Executables)	ADD_TO_KERNEL APPEND_OPEN CHANGE_OWNER CHDIR CLOSE CREATE DELETE EXECUTE GET_PERMISSIONS_DATA GET_STATUS_DATA LINK_HARD MODIFY_ACCESS_DATA MODIFY_PERMISSIONS_DATA MOUNT READ READ_ATTRIBUTE READ_WRITE_OPEN READ_OPEN REMOVE_FROM_KERNEL RENAME SEARCH TRUNCATE UMOUNT WRITE WRITE_OPEN MAP_EXEC LISTEN ACCEPT CONNECT SEND RECEIVE NET_SHUTDOWN IOCTL LOCK MOVETO
4 (Libraries)	CHDIR CLOSE GET_PERMISSIONS_DATA GET_STATUS_DATA READ READ_OPEN SEARCH MAP_EXEC
5 (SysExecutables)	ADD_TO_KERNEL APPEND_OPEN CHANGE_OWNER CHDIR CLOSE CREATE DELETE EXECUTE GET_PERMISSIONS_DATA GET_STATUS_DATA LINK_HARD MODIFY_ACCESS_DATA MODIFY_PERMISSIONS_DATA MOUNT READ READ_ATTRIBUTE READ_WRITE_OPEN READ_OPEN REMOVE_FROM_KERNEL RENAME SEARCH TRUNCATE UMOUNT WRITE WRITE_OPEN MAP_EXEC LISTEN ACCEPT CONNECT SEND RECEIVE NET_SHUTDOWN IOCTL LOCK MOVETO
6 (InitScripts)	ADD_TO_KERNEL APPEND_OPEN CHANGE_OWNER CHDIR CLOSE CREATE DELETE EXECUTE GET_PERMISSIONS_DATA GET_STATUS_DATA LINK_HARD MODIFY_ACCESS_DATA MODIFY_PERMISSIONS_DATA MOUNT READ READ_ATTRIBUTE READ_WRITE_OPEN READ_OPEN REMOVE_FROM_KERNEL RENAME SEARCH TRUNCATE UMOUNT WRITE WRITE_OPEN MAP_EXEC LISTEN ACCEPT CONNECT SEND RECEIVE NET_SHUTDOWN IOCTL LOCK MOVETO
7 (Configs)	CHDIR CLOSE GET_PERMISSIONS_DATA GET_STATUS_DATA READ READ_OPEN SEARCH
8 (ConfigsUser)	CHDIR CLOSE GET_PERMISSIONS_DATA GET_STATUS_DATA READ READ_OPEN SEARCH
10 (Home)	CHDIR CLOSE GET_PERMISSIONS_DATA GET_STATUS_DATA READ READ_OPEN SEARCH
13 (Var)	CHDIR CLOSE GET_PERMISSIONS_DATA GET_STATUS_DATA READ READ_OPEN SEARCH
19 (VarLog)	APPEND_OPEN CHANGE_OWNER CREATE DELETE LINK_HARD MODIFY_ACCESS_DATA MODIFY_PERMISSIONS_DATA RENAME TRUNCATE WRITE WRITE_OPEN IOCTL LOCK MOVETO

DEV Type Compatibilities of Role 2:

0 (General Device)	ADD_TO_KERNEL APPEND_OPEN CLOSE GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA MOUNT READ READ_ATTRIBUTE READ_WRITE_OPEN READ_OPEN REMOVE_FROM_KERNEL UMOUNT WRITE WRITE_OPEN SEND IOCTL
2 (System Device)	ADD_TO_KERNEL APPEND_OPEN CLOSE GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA MOUNT READ READ_ATTRIBUTE READ_WRITE_OPEN READ_OPEN REMOVE_FROM_KERNEL UMOUNT WRITE WRITE_OPEN SEND IOCTL

IPC Type Compatibilities of Role 2:

0 (General IPC)	ALTER CHANGE_GROUP CHANGE_OWNER CLOSE CREATE DELETE GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ READ_ATTRIBUTE READ_WRITE_OPEN READ_OPEN WRITE WRITE_OPEN BIND LISTEN ACCEPT CONNECT SEND RECEIVE NET_SHUTDOWN IOCTL LOCK
2 (System IPC)	ALTER CHANGE_GROUP CHANGE_OWNER CLOSE CREATE DELETE GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ READ_ATTRIBUTE READ_WRITE_OPEN READ_OPEN WRITE WRITE_OPEN BIND LISTEN ACCEPT CONNECT SEND RECEIVE NET_SHUTDOWN IOCTL LOCK

SCD Type Compatibilities of Role 2:

0 (time_strucs)	GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ_ATTRIBUTE WRITE
1 (clock)	GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ_ATTRIBUTE WRITE
2 (host_id)	GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ_ATTRIBUTE WRITE
3 (net_id)	GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ_ATTRIBUTE WRITE
4 (ioports)	GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ_ATTRIBUTE WRITE
5 (rlimit)	GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ_ATTRIBUTE WRITE
6 (swap)	GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ_ATTRIBUTE WRITE
7 (syslog)	GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ_ATTRIBUTE WRITE
8 (rsbac)	GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ_ATTRIBUTE WRITE
10 (other)	ADD_TO_KERNEL MODIFY_SYSTEM_DATA MOUNT REMOVE_FROM_KERNEL SHUTDOWN UMOUNT MAP_EXEC
12 (network)	GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ_ATTRIBUTE WRITE
13 (firewall)	GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ_ATTRIBUTE WRITE
14 (priority)	GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ_ATTRIBUTE WRITE
15 (sysfs)	GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ_ATTRIBUTE WRITE
16 (rsbac_remote_lo)	GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ_ATTRIBUTE WRITE
17 (quota)	GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ_ATTRIBUTE WRITE
18 (sysctl)	GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ_ATTRIBUTE WRITE
19 (nfsd)	GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ_ATTRIBUTE WRITE
20 (ksyms)	GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ_ATTRIBUTE WRITE
21 (mlock)	GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ_ATTRIBUTE WRITE
22 (capability)	GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ_ATTRIBUTE WRITE
23 (kexec)	GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ_ATTRIBUTE WRITE
24 (videomem)	GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ_ATTRIBUTE WRITE

USER Type Compatibilities of Role 2:

0 (General User)	CHANGE_OWNER GET_STATUS_DATA SEARCH AUTHENTICATE
1 (Security User)	SEARCH AUTHENTICATE
2 (System User)	GET_STATUS_DATA SEARCH AUTHENTICATE

PROCESS Type Compatibilities of Role 2:

0 (General Process)	CHANGE_GROUP CHANGE_OWNER CLONE CREATE GET_STATUS_DATA MODIFY_SYSTEM_DATA READ_ATTRIBUTE SEND_SIGNAL TERMINATE TRACE CHANGE_DAC_EFF_OWNER CHANGE_DAC_FS_OWNER CHANGE_DAC_EFF_GROUP CHANGE_DAC_FS_GROUP
2 (System Process)	CHANGE_GROUP CHANGE_OWNER CLONE CREATE GET_STATUS_DATA MODIFY_SYSTEM_DATA READ_ATTRIBUTE SEND_SIGNAL TERMINATE TRACE CHANGE_DAC_EFF_OWNER CHANGE_DAC_FS_OWNER CHANGE_DAC_EFF_GROUP CHANGE_DAC_FS_GROUP
999999 (Kernel Process)	CHANGE_GROUP CHANGE_OWNER CLONE CREATE GET_STATUS_DATA MODIFY_SYSTEM_DATA READ_ATTRIBUTE SEND_SIGNAL TERMINATE TRACE CHANGE_DAC_EFF_OWNER CHANGE_DAC_FS_OWNER CHANGE_DAC_EFF_GROUP CHANGE_DAC_FS_GROUP

GROUP Type Compatibilities of Role 2:

0 (General Group)

GET_STATUS_DATA READ SEARCH

NETDEV Type Compatibilities of Role 2:

0 (General NETDEV)

GET_STATUS_DATA MODIFY_SYSTEM_DATA READ_ATTRIBUTE BIND

NETTEMP Type Compatibilities of Role 2:

0 (General NETTEMP)

READ

NETOBJ Type Compatibilities of Role 2:

0 (General NETOBJ)

CLOSE CREATE GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ READ_ATTRIBUTE WRITE BIND LISTEN ACCEPT CONNECT SEND RECEIVE NET_SHUTDOWN IOCTL

Role 3: Auditor

Default FD Create Type	4294967294 (S: Inherit Parent)
Default User Create Type	0 (General User)
Default Process Create Type	4294967294 (S: Inherit Parent)
Default Process Chown Type	4294967291 (S: Use New Role Def Create)
Default Process Execute Type	4294967294 (S: Inherit Parent)
Default IPC Create Type	0 (General IPC)
Default Group Create Type	0 (General Group)
Default Unixsock Create Type	4294967289 (Unknown)
Boot Role	No
Req Reauth	No

FD Type Compatibilities of Role 3:

0 (General FD)	APPEND_OPEN CHANGE_OWNER CHDIR CLOSE CREATE DELETE EXECUTE GET_PERMISSIONS_DATA GET_STATUS_DATA LINK_HARD MODIFY_ACCESS_DATA MODIFY_PERMISSIONS_DATA READ READ_WRITE_OPEN READ_OPEN RENAME SEARCH TRUNCATE WRITE WRITE_OPEN MAP_EXEC LISTEN ACCEPT CONNECT SEND RECEIVE NET_SHUTDOWN IOCTL LOCK MOVETO
3 (Executables)	APPEND_OPEN CHANGE_OWNER CHDIR CLOSE CREATE DELETE EXECUTE GET_PERMISSIONS_DATA GET_STATUS_DATA LINK_HARD MODIFY_ACCESS_DATA MODIFY_PERMISSIONS_DATA READ READ_WRITE_OPEN READ_OPEN RENAME SEARCH TRUNCATE WRITE WRITE_OPEN MAP_EXEC LISTEN ACCEPT CONNECT SEND RECEIVE NET_SHUTDOWN IOCTL LOCK MOVETO
8 (ConfigsUser)	CHDIR CLOSE GET_PERMISSIONS_DATA GET_STATUS_DATA READ READ_OPEN SEARCH

DEV Type Compatibilities of Role 3:

0 (General Device)

APPEND_OPEN CLOSE GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ READ_WRITE_OPEN READ_OPEN WRITE WRITE_OPEN SEND IOCTL

IPC Type Compatibilities of Role 3:

0 (General IPC)

SCD Type Compatibilities of Role 3:

5 (rlimit)	GET_STATUS_DATA MODIFY_SYSTEM_DATA
9 (rsbac_log)	GET_STATUS_DATA MODIFY_SYSTEM_DATA
10 (other)	MAP_EXEC
12 (network)	GET_STATUS_DATA

USER Type Compatibilities of Role 3:

0 (General User)

CHANGE_OWNER GET_STATUS_DATA SEARCH

PROCESS Type Compatibilities of Role 3:

0 (General Process)	CHANGE_GROUP CHANGE_OWNER CLONE CREATE GET_STATUS_DATA MODIFY_SYSTEM_DATA SEND_SIGNAL TERMINATE TRACE CHANGE_DAC_EFF_OWNER CHANGE_DAC_FS_OWNER CHANGE_DAC_EFF_GROUP CHANGE_DAC_FS_GROUP
999999 (Kernel Process)	CHANGE_GROUP CHANGE_OWNER CLONE CREATE GET_STATUS_DATA MODIFY_SYSTEM_DATA SEND_SIGNAL TERMINATE TRACE CHANGE_DAC_EFF_OWNER CHANGE_DAC_FS_OWNER CHANGE_DAC_EFF_GROUP CHANGE_DAC_FS_GROUP

GROUP Type Compatibilities of Role 3:

0 (General Group)

GET_STATUS_DATA SEARCH

NETDEV Type Compatibilities of Role 3:

0 (General NETDEV)

GET_STATUS_DATA MODIFY_SYSTEM_DATA BIND

NETOBJ Type Compatibilities of Role 3:

0 (General NETOBJ)

CLOSE CREATE GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ WRITE BIND LISTEN ACCEPT CONNECT SEND RECEIVE NET_SHUTDOWN IOCTL

Role 4: InitRole

Admin Type	System Admin
Default FD Create Type	4294967294 (S: Inherit Parent)
Default User Create Type	0 (General User)
Default Process Create Type	4294967294 (S: Inherit Parent)
Default Process Chown Type	4294967291 (S: Use New Role Def Create)
Default Process Execute Type	4294967294 (S: Inherit Parent)
Default IPC Create Type	0 (General IPC)
Default Group Create Type	0 (General Group)
Default Unixsock Create Type	4294967289 (Unknown)
Boot Role	No
Req Reauth	No

FD Type Compatibilities of Role 4:

0 (General FD)	ADD_TO_KERNEL APPEND_OPEN CHANGE_OWNER CHDIR CLOSE CREATE DELETE EXECUTE GET_PERMISSIONS_DATA GET_STATUS_DATA LINK_HARD MODIFY_ACCESS_DATA MODIFY_PERMISSIONS_DATA MOUNT READ READ_ATTRIBUTE READ_WRITE_OPEN READ_OPEN REMOVE_FROM_KERNEL RENAME SEARCH TRUNCATE UMOUNT WRITE WRITE_OPEN MAP_EXEC LISTEN ACCEPT CONNECT SEND RECEIVE NET_SHUTDOWN IOCTL LOCK MOVETO
2 (System FD)	ADD_TO_KERNEL APPEND_OPEN CHANGE_OWNER CHDIR CLOSE CREATE DELETE EXECUTE GET_PERMISSIONS_DATA GET_STATUS_DATA LINK_HARD MODIFY_ACCESS_DATA MODIFY_PERMISSIONS_DATA MOUNT READ READ_ATTRIBUTE READ_WRITE_OPEN READ_OPEN REMOVE_FROM_KERNEL RENAME SEARCH TRUNCATE UMOUNT WRITE WRITE_OPEN MAP_EXEC LISTEN ACCEPT CONNECT SEND RECEIVE NET_SHUTDOWN IOCTL LOCK MOVETO
3 (Executables)	ADD_TO_KERNEL APPEND_OPEN CHANGE_OWNER CHDIR CLOSE CREATE DELETE EXECUTE GET_PERMISSIONS_DATA GET_STATUS_DATA LINK_HARD MODIFY_ACCESS_DATA MODIFY_PERMISSIONS_DATA MOUNT READ READ_ATTRIBUTE READ_WRITE_OPEN READ_OPEN REMOVE_FROM_KERNEL RENAME SEARCH TRUNCATE UMOUNT WRITE WRITE_OPEN MAP_EXEC LISTEN ACCEPT CONNECT SEND RECEIVE NET_SHUTDOWN IOCTL LOCK MOVETO
4 (Libraries)	CHDIR CLOSE GET_PERMISSIONS_DATA GET_STATUS_DATA READ READ_OPEN SEARCH MAP_EXEC
5 (SysExecutables)	ADD_TO_KERNEL APPEND_OPEN CHANGE_OWNER CHDIR CLOSE CREATE DELETE EXECUTE GET_PERMISSIONS_DATA GET_STATUS_DATA LINK_HARD MODIFY_ACCESS_DATA MODIFY_PERMISSIONS_DATA MOUNT READ READ_ATTRIBUTE READ_WRITE_OPEN READ_OPEN REMOVE_FROM_KERNEL RENAME SEARCH TRUNCATE UMOUNT WRITE WRITE_OPEN MAP_EXEC LISTEN ACCEPT CONNECT SEND RECEIVE NET_SHUTDOWN IOCTL LOCK MOVETO
6 (InitScripts)	ADD_TO_KERNEL APPEND_OPEN CHANGE_OWNER CHDIR CLOSE CREATE DELETE EXECUTE GET_PERMISSIONS_DATA GET_STATUS_DATA LINK_HARD MODIFY_ACCESS_DATA MODIFY_PERMISSIONS_DATA MOUNT READ READ_ATTRIBUTE READ_WRITE_OPEN READ_OPEN REMOVE_FROM_KERNEL RENAME SEARCH TRUNCATE UMOUNT WRITE WRITE_OPEN MAP_EXEC LISTEN ACCEPT CONNECT SEND RECEIVE NET_SHUTDOWN IOCTL LOCK MOVETO
7 (Configs)	CHDIR CLOSE GET_PERMISSIONS_DATA GET_STATUS_DATA READ READ_OPEN SEARCH
8 (ConfigsUser)	CHDIR CLOSE GET_PERMISSIONS_DATA GET_STATUS_DATA READ READ_OPEN SEARCH
13 (Var)	CHDIR CLOSE GET_PERMISSIONS_DATA GET_STATUS_DATA READ READ_OPEN SEARCH

DEV Type Compatibilities of Role 4:

0 (General Device)	ADD_TO_KERNEL APPEND_OPEN CLOSE GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA MOUNT READ READ_ATTRIBUTE READ_WRITE_OPEN READ_OPEN REMOVE_FROM_KERNEL UMOUNT WRITE WRITE_OPEN SEND IOCTL
2 (System Device)	ADD_TO_KERNEL APPEND_OPEN CLOSE GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA MOUNT READ READ_ATTRIBUTE READ_WRITE_OPEN READ_OPEN REMOVE_FROM_KERNEL UMOUNT WRITE WRITE_OPEN SEND IOCTL

IPC Type Compatibilities of Role 4:

0 (General IPC)	ALTER CHANGE_GROUP CHANGE_OWNER CLOSE CREATE DELETE GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ READ_ATTRIBUTE READ_WRITE_OPEN READ_OPEN WRITE WRITE_OPEN BIND LISTEN ACCEPT CONNECT SEND RECEIVE NET_SHUTDOWN IOCTL LOCK
2 (System IPC)	ALTER CHANGE_GROUP CHANGE_OWNER CLOSE CREATE DELETE GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ READ_ATTRIBUTE READ_WRITE_OPEN READ_OPEN WRITE WRITE_OPEN BIND LISTEN ACCEPT CONNECT SEND RECEIVE NET_SHUTDOWN IOCTL LOCK

SCD Type Compatibilities of Role 4:

0 (time_strucs)	GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ_ATTRIBUTE WRITE
1 (clock)	GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ_ATTRIBUTE WRITE
2 (host_id)	GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ_ATTRIBUTE WRITE
3 (net_id)	GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ_ATTRIBUTE WRITE
4 (ioports)	GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ_ATTRIBUTE WRITE
5 (rlimit)	GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ_ATTRIBUTE WRITE
6 (swap)	GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ_ATTRIBUTE WRITE
7 (syslog)	GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ_ATTRIBUTE WRITE
8 (rsbac)	GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ_ATTRIBUTE WRITE
10 (other)	ADD_TO_KERNEL MODIFY_SYSTEM_DATA MOUNT REMOVE_FROM_KERNEL SHUTDOWN UMOUNT MAP_EXEC
12 (network)	GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ_ATTRIBUTE WRITE
13 (firewall)	GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ_ATTRIBUTE WRITE
14 (priority)	GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ_ATTRIBUTE WRITE
15 (sysfs)	GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ_ATTRIBUTE WRITE
16 (rsbac_remote_lo)	GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ_ATTRIBUTE WRITE
17 (quota)	GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ_ATTRIBUTE WRITE
18 (sysctl)	GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ_ATTRIBUTE WRITE
19 (nfsd)	GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ_ATTRIBUTE WRITE
20 (ksyms)	GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ_ATTRIBUTE WRITE
21 (mlock)	GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ_ATTRIBUTE WRITE
22 (capability)	GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ_ATTRIBUTE WRITE
23 (kexec)	GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ_ATTRIBUTE WRITE
24 (videomem)	GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ_ATTRIBUTE WRITE

USER Type Compatibilities of Role 4:

0 (General User)	CHANGE_OWNER GET_PERMISSIONS_DATA GET_STATUS_DATA READ READ_ATTRIBUTE SEARCH AUTHENTICATE
1 (Security User)	CHANGE_OWNER SEARCH AUTHENTICATE
2 (System User)	GET_PERMISSIONS_DATA GET_STATUS_DATA READ READ_ATTRIBUTE SEARCH AUTHENTICATE

PROCESS Type Compatibilities of Role 4:

0 (General Process)	CHANGE_GROUP CHANGE_OWNER CLONE CREATE GET_STATUS_DATA MODIFY_SYSTEM_DATA READ_ATTRIBUTE SEND_SIGNAL TERMINATE TRACE CHANGE_DAC_EFF_OWNER CHANGE_DAC_FS_OWNER CHANGE_DAC_EFF_GROUP CHANGE_DAC_FS_GROUP
2 (System Process)	CHANGE_GROUP CHANGE_OWNER CLONE CREATE GET_STATUS_DATA MODIFY_SYSTEM_DATA READ_ATTRIBUTE SEND_SIGNAL TERMINATE TRACE CHANGE_DAC_EFF_OWNER CHANGE_DAC_FS_OWNER CHANGE_DAC_EFF_GROUP CHANGE_DAC_FS_GROUP
999999 (Kernel Process)	CHANGE_GROUP CHANGE_OWNER CLONE CREATE GET_STATUS_DATA MODIFY_SYSTEM_DATA READ_ATTRIBUTE SEND_SIGNAL TERMINATE TRACE CHANGE_DAC_EFF_OWNER CHANGE_DAC_FS_OWNER CHANGE_DAC_EFF_GROUP CHANGE_DAC_FS_GROUP

NETDEV Type Compatibilities of Role 4:

0 (General NETDEV)

GET_STATUS_DATA MODIFY_SYSTEM_DATA READ_ATTRIBUTE BIND

NETTEMP Type Compatibilities of Role 4:

0 (General NETTEMP)

READ

NETOBJ Type Compatibilities of Role 4:

0 (General NETOBJ)

CLOSE CREATE GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ READ_ATTRIBUTE WRITE BIND LISTEN ACCEPT CONNECT SEND RECEIVE NET_SHUTDOWN IOCTL

Role 5: RootRole

Default FD Create Type	4294967294 (S: Inherit Parent)
Default User Create Type	0 (General User)
Default Process Create Type	4294967294 (S: Inherit Parent)
Default Process Chown Type	4294967291 (S: Use New Role Def Create)
Default Process Execute Type	4294967294 (S: Inherit Parent)
Default IPC Create Type	0 (General IPC)
Default Group Create Type	0 (General Group)
Default Unixsock Create Type	4294967289 (Unknown)
Boot Role	No
Req Reauth	No

FD Type Compatibilities of Role 5:

0 (General FD)	CHDIR CLOSE GET_PERMISSIONS_DATA GET_STATUS_DATA READ READ_OPEN SEARCH
3 (Executables)	CHDIR CLOSE EXECUTE GET_PERMISSIONS_DATA GET_STATUS_DATA READ READ_OPEN SEARCH MAP_EXEC
4 (Libraries)	CHDIR CLOSE GET_PERMISSIONS_DATA GET_STATUS_DATA READ READ_OPEN SEARCH MAP_EXEC
5 (SysExecutables)	CHDIR CLOSE EXECUTE GET_PERMISSIONS_DATA GET_STATUS_DATA READ READ_OPEN SEARCH MAP_EXEC
6 (InitScripts)	CHDIR CLOSE EXECUTE GET_PERMISSIONS_DATA GET_STATUS_DATA READ READ_OPEN SEARCH
7 (Configs)	CHDIR CLOSE GET_PERMISSIONS_DATA GET_STATUS_DATA READ READ_OPEN SEARCH
8 (ConfigsUser)	CHDIR CLOSE GET_PERMISSIONS_DATA GET_STATUS_DATA READ READ_OPEN SEARCH
9 (TempDirs)	APPEND_OPEN CHANGE_OWNER CHDIR CLOSE CREATE DELETE GET_PERMISSIONS_DATA GET_STATUS_DATA LINK_HARD MODIFY_ACCESS_DATA MODIFY_PERMISSIONS_DATA READ READ_WRITE_OPEN READ_OPEN RENAME SEARCH TRUNCATE WRITE WRITE_OPEN LISTEN ACCEPT CONNECT SEND RECEIVE NET_SHUTDOWN IOCTL LOCK MOVETO
10 (Home)	CHDIR CLOSE GET_PERMISSIONS_DATA GET_STATUS_DATA READ READ_OPEN SEARCH
11 (HomeAdmin)	CHDIR CLOSE GET_PERMISSIONS_DATA GET_STATUS_DATA READ READ_OPEN SEARCH
12 (HomeUser)	APPEND_OPEN CHANGE_OWNER CHDIR CLOSE CREATE DELETE GET_PERMISSIONS_DATA GET_STATUS_DATA LINK_HARD MODIFY_ACCESS_DATA MODIFY_PERMISSIONS_DATA READ READ_WRITE_OPEN READ_OPEN RENAME SEARCH TRUNCATE WRITE WRITE_OPEN LISTEN ACCEPT CONNECT SEND RECEIVE NET_SHUTDOWN IOCTL LOCK MOVETO
13 (Var)	CHDIR CLOSE GET_PERMISSIONS_DATA GET_STATUS_DATA READ READ_OPEN SEARCH
17 (VarSpoolMail)	APPEND_OPEN CHANGE_OWNER CHDIR CLOSE CREATE DELETE GET_PERMISSIONS_DATA GET_STATUS_DATA LINK_HARD MODIFY_ACCESS_DATA MODIFY_PERMISSIONS_DATA READ READ_WRITE_OPEN READ_OPEN RENAME SEARCH TRUNCATE WRITE WRITE_OPEN LISTEN ACCEPT CONNECT SEND RECEIVE NET_SHUTDOWN IOCTL LOCK MOVETO
18 (VarSpoolCron)	APPEND_OPEN CHANGE_OWNER CHDIR CLOSE CREATE DELETE GET_PERMISSIONS_DATA GET_STATUS_DATA LINK_HARD MODIFY_ACCESS_DATA MODIFY_PERMISSIONS_DATA READ READ_WRITE_OPEN READ_OPEN RENAME SEARCH TRUNCATE WRITE WRITE_OPEN LISTEN ACCEPT CONNECT SEND RECEIVE NET_SHUTDOWN IOCTL LOCK MOVETO
19 (VarLog)	CHDIR CLOSE GET_PERMISSIONS_DATA GET_STATUS_DATA READ READ_OPEN SEARCH

DEV Type Compatibilities of Role 5:

0 (General Device)

APPEND_OPEN CLOSE GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ READ_WRITE_OPEN READ_OPEN WRITE WRITE_OPEN SEND IOCTL

IPC Type Compatibilities of Role 5:

0 (General IPC)

SCD Type Compatibilities of Role 5:

5 (rlimit)	GET_STATUS_DATA MODIFY_SYSTEM_DATA
10 (other)	MAP_EXEC
12 (network)	GET_STATUS_DATA

USER Type Compatibilities of Role 5:

0 (General User)

CHANGE_OWNER GET_STATUS_DATA SEARCH

PROCESS Type Compatibilities of Role 5:

0 (General Process)	CHANGE_GROUP CHANGE_OWNER CLONE CREATE GET_STATUS_DATA MODIFY_SYSTEM_DATA SEND_SIGNAL TERMINATE TRACE CHANGE_DAC_EFF_OWNER CHANGE_DAC_FS_OWNER CHANGE_DAC_EFF_GROUP CHANGE_DAC_FS_GROUP
999999 (Kernel Process)	GET_STATUS_DATA TERMINATE

GROUP Type Compatibilities of Role 5:

0 (General Group)

GET_STATUS_DATA SEARCH

NETDEV Type Compatibilities of Role 5:

0 (General NETDEV)

GET_STATUS_DATA MODIFY_SYSTEM_DATA BIND

NETOBJ Type Compatibilities of Role 5:

0 (General NETOBJ)

CLOSE CREATE GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ WRITE BIND LISTEN ACCEPT CONNECT SEND RECEIVE NET_SHUTDOWN IOCTL

Role 6: LoginRole

Default FD Create Type	4294967294 (S: Inherit Parent)
Default User Create Type	0 (General User)
Default Process Create Type	4294967294 (S: Inherit Parent)
Default Process Chown Type	4294967291 (S: Use New Role Def Create)
Default Process Execute Type	4294967294 (S: Inherit Parent)
Default IPC Create Type	0 (General IPC)
Default Group Create Type	0 (General Group)
Default Unixsock Create Type	4294967289 (Unknown)
Boot Role	No
Req Reauth	No

FD Type Compatibilities of Role 6:

0 (General FD)	CHDIR CLOSE GET_PERMISSIONS_DATA GET_STATUS_DATA READ READ_OPEN SEARCH
3 (Executables)	CHDIR CLOSE EXECUTE GET_PERMISSIONS_DATA GET_STATUS_DATA READ READ_OPEN SEARCH MAP_EXEC
4 (Libraries)	CHDIR CLOSE GET_PERMISSIONS_DATA GET_STATUS_DATA READ READ_OPEN SEARCH MAP_EXEC
7 (Configs)	SEARCH
8 (ConfigsUser)	CHDIR CLOSE GET_PERMISSIONS_DATA GET_STATUS_DATA READ READ_OPEN SEARCH
9 (TempDirs)	APPEND_OPEN CHANGE_OWNER CHDIR CLOSE CREATE DELETE GET_PERMISSIONS_DATA GET_STATUS_DATA LINK_HARD MODIFY_ACCESS_DATA MODIFY_PERMISSIONS_DATA READ READ_WRITE_OPEN READ_OPEN RENAME SEARCH TRUNCATE WRITE WRITE_OPEN LISTEN ACCEPT CONNECT SEND RECEIVE NET_SHUTDOWN IOCTL LOCK MOVETO
10 (Home)	CHDIR CLOSE GET_PERMISSIONS_DATA GET_STATUS_DATA READ READ_OPEN SEARCH
11 (HomeAdmin)	CHDIR CLOSE GET_PERMISSIONS_DATA GET_STATUS_DATA READ READ_OPEN SEARCH
12 (HomeUser)	APPEND_OPEN CHANGE_OWNER CHDIR CLOSE CREATE DELETE GET_PERMISSIONS_DATA GET_STATUS_DATA LINK_HARD MODIFY_ACCESS_DATA MODIFY_PERMISSIONS_DATA READ READ_WRITE_OPEN READ_OPEN RENAME SEARCH TRUNCATE WRITE WRITE_OPEN LISTEN ACCEPT CONNECT SEND RECEIVE NET_SHUTDOWN IOCTL LOCK MOVETO
13 (Var)	APPEND_OPEN CHANGE_OWNER CHDIR CLOSE CREATE DELETE GET_PERMISSIONS_DATA GET_STATUS_DATA LINK_HARD MODIFY_ACCESS_DATA MODIFY_PERMISSIONS_DATA READ READ_WRITE_OPEN READ_OPEN RENAME SEARCH TRUNCATE WRITE WRITE_OPEN LISTEN ACCEPT CONNECT SEND RECEIVE NET_SHUTDOWN IOCTL LOCK MOVETO
17 (VarSpoolMail)	APPEND_OPEN CHANGE_OWNER CHDIR CLOSE CREATE DELETE GET_PERMISSIONS_DATA GET_STATUS_DATA LINK_HARD MODIFY_ACCESS_DATA MODIFY_PERMISSIONS_DATA READ READ_WRITE_OPEN READ_OPEN RENAME SEARCH TRUNCATE WRITE WRITE_OPEN LISTEN ACCEPT CONNECT SEND RECEIVE NET_SHUTDOWN IOCTL LOCK MOVETO

DEV Type Compatibilities of Role 6:

0 (General Device)

APPEND_OPEN CLOSE GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ READ_WRITE_OPEN READ_OPEN WRITE WRITE_OPEN SEND IOCTL

IPC Type Compatibilities of Role 6:

0 (General IPC)

SCD Type Compatibilities of Role 6:

5 (rlimit)	GET_STATUS_DATA MODIFY_SYSTEM_DATA
10 (other)	MAP_EXEC
12 (network)	GET_STATUS_DATA

USER Type Compatibilities of Role 6:

0 (General User)

CHANGE_OWNER GET_STATUS_DATA SEARCH

PROCESS Type Compatibilities of Role 6:

0 (General Process)	CHANGE_GROUP CHANGE_OWNER CLONE CREATE GET_STATUS_DATA MODIFY_SYSTEM_DATA SEND_SIGNAL TERMINATE TRACE CHANGE_DAC_EFF_OWNER CHANGE_DAC_FS_OWNER CHANGE_DAC_EFF_GROUP CHANGE_DAC_FS_GROUP
999999 (Kernel Process)	GET_STATUS_DATA TERMINATE

GROUP Type Compatibilities of Role 6:

0 (General Group)

GET_STATUS_DATA SEARCH

NETDEV Type Compatibilities of Role 6:

0 (General NETDEV)

GET_STATUS_DATA MODIFY_SYSTEM_DATA BIND

NETOBJ Type Compatibilities of Role 6:

0 (General NETOBJ)

CLOSE CREATE GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ WRITE BIND LISTEN ACCEPT CONNECT SEND RECEIVE NET_SHUTDOWN IOCTL

Role 7: SshdRole

Default FD Create Type	4294967294 (S: Inherit Parent)
Default User Create Type	0 (General User)
Default Process Create Type	4294967294 (S: Inherit Parent)
Default Process Chown Type	4294967291 (S: Use New Role Def Create)
Default Process Execute Type	4294967294 (S: Inherit Parent)
Default IPC Create Type	0 (General IPC)
Default Group Create Type	0 (General Group)
Default Unixsock Create Type	4294967289 (Unknown)
Boot Role	No
Req Reauth	No

FD Type Compatibilities of Role 7:

0 (General FD)	CHDIR CLOSE GET_PERMISSIONS_DATA GET_STATUS_DATA READ READ_OPEN SEARCH
3 (Executables)	CHDIR CLOSE EXECUTE GET_PERMISSIONS_DATA GET_STATUS_DATA READ READ_OPEN SEARCH MAP_EXEC
4 (Libraries)	CHDIR CLOSE GET_PERMISSIONS_DATA GET_STATUS_DATA READ READ_OPEN SEARCH MAP_EXEC
5 (SysExecutables)	CHDIR CLOSE GET_PERMISSIONS_DATA GET_STATUS_DATA READ READ_OPEN SEARCH
7 (Configs)	CHDIR CLOSE GET_PERMISSIONS_DATA GET_STATUS_DATA READ READ_OPEN SEARCH
8 (ConfigsUser)	CHDIR CLOSE GET_PERMISSIONS_DATA GET_STATUS_DATA READ READ_OPEN SEARCH
9 (TempDirs)	APPEND_OPEN CHANGE_OWNER CHDIR CLOSE CREATE DELETE GET_PERMISSIONS_DATA GET_STATUS_DATA LINK_HARD MODIFY_ACCESS_DATA MODIFY_PERMISSIONS_DATA READ READ_WRITE_OPEN READ_OPEN RENAME SEARCH TRUNCATE WRITE WRITE_OPEN LISTEN ACCEPT CONNECT SEND RECEIVE NET_SHUTDOWN IOCTL LOCK MOVETO
10 (Home)	CHDIR CLOSE GET_PERMISSIONS_DATA GET_STATUS_DATA READ READ_OPEN SEARCH
11 (HomeAdmin)	CHDIR CLOSE GET_PERMISSIONS_DATA GET_STATUS_DATA READ READ_OPEN SEARCH
12 (HomeUser)	APPEND_OPEN CHANGE_OWNER CHDIR CLOSE CREATE DELETE GET_PERMISSIONS_DATA GET_STATUS_DATA LINK_HARD MODIFY_ACCESS_DATA MODIFY_PERMISSIONS_DATA READ READ_WRITE_OPEN READ_OPEN RENAME SEARCH TRUNCATE WRITE WRITE_OPEN LISTEN ACCEPT CONNECT SEND RECEIVE NET_SHUTDOWN IOCTL LOCK MOVETO
13 (Var)	APPEND_OPEN CHANGE_OWNER CHDIR CLOSE CREATE DELETE GET_PERMISSIONS_DATA GET_STATUS_DATA LINK_HARD MODIFY_ACCESS_DATA MODIFY_PERMISSIONS_DATA READ READ_WRITE_OPEN READ_OPEN RENAME SEARCH TRUNCATE WRITE WRITE_OPEN LISTEN ACCEPT CONNECT SEND RECEIVE NET_SHUTDOWN IOCTL LOCK MOVETO
17 (VarSpoolMail)	APPEND_OPEN CHANGE_OWNER CHDIR CLOSE CREATE DELETE GET_PERMISSIONS_DATA GET_STATUS_DATA LINK_HARD MODIFY_ACCESS_DATA MODIFY_PERMISSIONS_DATA READ READ_WRITE_OPEN READ_OPEN RENAME SEARCH TRUNCATE WRITE WRITE_OPEN LISTEN ACCEPT CONNECT SEND RECEIVE NET_SHUTDOWN IOCTL LOCK MOVETO
19 (VarLog)	APPEND_OPEN CHANGE_OWNER CHDIR CLOSE CREATE DELETE GET_PERMISSIONS_DATA GET_STATUS_DATA LINK_HARD MODIFY_ACCESS_DATA MODIFY_PERMISSIONS_DATA READ READ_WRITE_OPEN READ_OPEN RENAME SEARCH TRUNCATE WRITE WRITE_OPEN LISTEN ACCEPT CONNECT SEND RECEIVE NET_SHUTDOWN IOCTL LOCK MOVETO
21 (VarRun)	APPEND_OPEN CHANGE_OWNER CHDIR CLOSE CREATE DELETE GET_PERMISSIONS_DATA GET_STATUS_DATA LINK_HARD MODIFY_ACCESS_DATA MODIFY_PERMISSIONS_DATA READ READ_WRITE_OPEN READ_OPEN RENAME SEARCH TRUNCATE WRITE WRITE_OPEN LISTEN ACCEPT CONNECT SEND RECEIVE NET_SHUTDOWN IOCTL LOCK MOVETO

DEV Type Compatibilities of Role 7:

0 (General Device)

APPEND_OPEN CLOSE GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ READ_WRITE_OPEN READ_OPEN WRITE WRITE_OPEN SEND IOCTL

IPC Type Compatibilities of Role 7:

0 (General IPC)

SCD Type Compatibilities of Role 7:

5 (rlimit)	GET_STATUS_DATA MODIFY_SYSTEM_DATA
10 (other)	MAP_EXEC
12 (network)	GET_STATUS_DATA

USER Type Compatibilities of Role 7:

0 (General User)

CHANGE_OWNER GET_STATUS_DATA SEARCH

PROCESS Type Compatibilities of Role 7:

0 (General Process)	CHANGE_GROUP CHANGE_OWNER CLONE CREATE GET_STATUS_DATA MODIFY_SYSTEM_DATA SEND_SIGNAL TERMINATE TRACE CHANGE_DAC_EFF_OWNER CHANGE_DAC_FS_OWNER CHANGE_DAC_EFF_GROUP CHANGE_DAC_FS_GROUP
999999 (Kernel Process)	GET_STATUS_DATA TERMINATE

GROUP Type Compatibilities of Role 7:

0 (General Group)

GET_STATUS_DATA SEARCH

NETDEV Type Compatibilities of Role 7:

0 (General NETDEV)

GET_STATUS_DATA MODIFY_SYSTEM_DATA BIND

NETOBJ Type Compatibilities of Role 7:

0 (General NETOBJ)

CLOSE CREATE GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ WRITE BIND LISTEN ACCEPT CONNECT SEND RECEIVE NET_SHUTDOWN IOCTL

Role 8: SyslogRole

Default FD Create Type	4294967294 (S: Inherit Parent)
Default User Create Type	0 (General User)
Default Process Create Type	4294967294 (S: Inherit Parent)
Default Process Chown Type	4294967291 (S: Use New Role Def Create)
Default Process Execute Type	4294967294 (S: Inherit Parent)
Default IPC Create Type	0 (General IPC)
Default Group Create Type	0 (General Group)
Default Unixsock Create Type	4294967289 (Unknown)
Boot Role	No
Req Reauth	No

FD Type Compatibilities of Role 8:

0 (General FD)	CHDIR CLOSE GET_PERMISSIONS_DATA GET_STATUS_DATA READ READ_OPEN SEARCH
3 (Executables)	CHDIR CLOSE EXECUTE GET_PERMISSIONS_DATA GET_STATUS_DATA READ READ_OPEN SEARCH MAP_EXEC
4 (Libraries)	CHDIR CLOSE GET_PERMISSIONS_DATA GET_STATUS_DATA READ READ_OPEN SEARCH MAP_EXEC
7 (Configs)	SEARCH
8 (ConfigsUser)	CHDIR CLOSE GET_PERMISSIONS_DATA GET_STATUS_DATA READ READ_OPEN SEARCH
9 (TempDirs)	APPEND_OPEN CHANGE_OWNER CHDIR CLOSE CREATE DELETE GET_PERMISSIONS_DATA GET_STATUS_DATA LINK_HARD MODIFY_ACCESS_DATA MODIFY_PERMISSIONS_DATA READ READ_WRITE_OPEN READ_OPEN RENAME SEARCH TRUNCATE WRITE WRITE_OPEN LISTEN ACCEPT CONNECT SEND RECEIVE NET_SHUTDOWN IOCTL LOCK MOVETO
10 (Home)	CHDIR CLOSE GET_PERMISSIONS_DATA GET_STATUS_DATA READ READ_OPEN SEARCH
11 (HomeAdmin)	CHDIR CLOSE GET_PERMISSIONS_DATA GET_STATUS_DATA READ READ_OPEN SEARCH
12 (HomeUser)	APPEND_OPEN CHANGE_OWNER CHDIR CLOSE CREATE DELETE GET_PERMISSIONS_DATA GET_STATUS_DATA LINK_HARD MODIFY_ACCESS_DATA MODIFY_PERMISSIONS_DATA READ READ_WRITE_OPEN READ_OPEN RENAME SEARCH TRUNCATE WRITE WRITE_OPEN LISTEN ACCEPT CONNECT SEND RECEIVE NET_SHUTDOWN IOCTL LOCK MOVETO
13 (Var)	APPEND_OPEN CHANGE_OWNER CHDIR CLOSE CREATE DELETE GET_PERMISSIONS_DATA GET_STATUS_DATA LINK_HARD MODIFY_ACCESS_DATA MODIFY_PERMISSIONS_DATA READ READ_WRITE_OPEN READ_OPEN RENAME SEARCH TRUNCATE WRITE WRITE_OPEN LISTEN ACCEPT CONNECT SEND RECEIVE NET_SHUTDOWN IOCTL LOCK MOVETO
17 (VarSpoolMail)	APPEND_OPEN CHANGE_OWNER CHDIR CLOSE CREATE DELETE GET_PERMISSIONS_DATA GET_STATUS_DATA LINK_HARD MODIFY_ACCESS_DATA MODIFY_PERMISSIONS_DATA READ READ_WRITE_OPEN READ_OPEN RENAME SEARCH TRUNCATE WRITE WRITE_OPEN LISTEN ACCEPT CONNECT SEND RECEIVE NET_SHUTDOWN IOCTL LOCK MOVETO
19 (VarLog)	APPEND_OPEN CHANGE_OWNER CLOSE CREATE DELETE GET_STATUS_DATA LINK_HARD MODIFY_ACCESS_DATA MODIFY_PERMISSIONS_DATA RENAME SEARCH TRUNCATE WRITE WRITE_OPEN IOCTL LOCK MOVETO

DEV Type Compatibilities of Role 8:

0 (General Device)

APPEND_OPEN CLOSE GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ READ_WRITE_OPEN READ_OPEN WRITE WRITE_OPEN SEND IOCTL

IPC Type Compatibilities of Role 8:

0 (General IPC)

SCD Type Compatibilities of Role 8:

5 (rlimit)	GET_STATUS_DATA MODIFY_SYSTEM_DATA
10 (other)	MAP_EXEC
12 (network)	GET_STATUS_DATA

USER Type Compatibilities of Role 8:

0 (General User)

CHANGE_OWNER GET_STATUS_DATA SEARCH

PROCESS Type Compatibilities of Role 8:

0 (General Process)	CHANGE_GROUP CHANGE_OWNER CLONE CREATE GET_STATUS_DATA MODIFY_SYSTEM_DATA SEND_SIGNAL TERMINATE TRACE CHANGE_DAC_EFF_OWNER CHANGE_DAC_FS_OWNER CHANGE_DAC_EFF_GROUP CHANGE_DAC_FS_GROUP
999999 (Kernel Process)	GET_STATUS_DATA TERMINATE

GROUP Type Compatibilities of Role 8:

0 (General Group)

GET_STATUS_DATA SEARCH

NETDEV Type Compatibilities of Role 8:

0 (General NETDEV)

GET_STATUS_DATA MODIFY_SYSTEM_DATA BIND

NETOBJ Type Compatibilities of Role 8:

0 (General NETOBJ)

CLOSE CREATE GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ WRITE BIND LISTEN ACCEPT CONNECT SEND RECEIVE NET_SHUTDOWN IOCTL

Role 9: CronRole

Default FD Create Type	4294967294 (S: Inherit Parent)
Default User Create Type	0 (General User)
Default Process Create Type	4294967294 (S: Inherit Parent)
Default Process Chown Type	4294967291 (S: Use New Role Def Create)
Default Process Execute Type	4294967294 (S: Inherit Parent)
Default IPC Create Type	0 (General IPC)
Default Group Create Type	0 (General Group)
Default Unixsock Create Type	4294967289 (Unknown)
Boot Role	No
Req Reauth	No

FD Type Compatibilities of Role 9:

0 (General FD)	CHDIR CLOSE GET_PERMISSIONS_DATA GET_STATUS_DATA READ READ_OPEN SEARCH
3 (Executables)	CHDIR CLOSE EXECUTE GET_PERMISSIONS_DATA GET_STATUS_DATA READ READ_OPEN SEARCH MAP_EXEC
4 (Libraries)	CHDIR CLOSE GET_PERMISSIONS_DATA GET_STATUS_DATA READ READ_OPEN SEARCH MAP_EXEC
7 (Configs)	SEARCH
8 (ConfigsUser)	CHDIR CLOSE GET_PERMISSIONS_DATA GET_STATUS_DATA READ READ_OPEN SEARCH
9 (TempDirs)	APPEND_OPEN CHANGE_OWNER CHDIR CLOSE CREATE DELETE GET_PERMISSIONS_DATA GET_STATUS_DATA LINK_HARD MODIFY_ACCESS_DATA MODIFY_PERMISSIONS_DATA READ READ_WRITE_OPEN READ_OPEN RENAME SEARCH TRUNCATE WRITE WRITE_OPEN LISTEN ACCEPT CONNECT SEND RECEIVE NET_SHUTDOWN IOCTL LOCK MOVETO
10 (Home)	CHDIR CLOSE GET_PERMISSIONS_DATA GET_STATUS_DATA READ READ_OPEN SEARCH
11 (HomeAdmin)	CHDIR CLOSE GET_PERMISSIONS_DATA GET_STATUS_DATA READ READ_OPEN SEARCH
12 (HomeUser)	APPEND_OPEN CHANGE_OWNER CHDIR CLOSE CREATE DELETE GET_PERMISSIONS_DATA GET_STATUS_DATA LINK_HARD MODIFY_ACCESS_DATA MODIFY_PERMISSIONS_DATA READ READ_WRITE_OPEN READ_OPEN RENAME SEARCH TRUNCATE WRITE WRITE_OPEN LISTEN ACCEPT CONNECT SEND RECEIVE NET_SHUTDOWN IOCTL LOCK MOVETO
13 (Var)	APPEND_OPEN CHANGE_OWNER CHDIR CLOSE CREATE DELETE GET_PERMISSIONS_DATA GET_STATUS_DATA LINK_HARD MODIFY_ACCESS_DATA MODIFY_PERMISSIONS_DATA READ READ_WRITE_OPEN READ_OPEN RENAME SEARCH TRUNCATE WRITE WRITE_OPEN LISTEN ACCEPT CONNECT SEND RECEIVE NET_SHUTDOWN IOCTL LOCK MOVETO
17 (VarSpoolMail)	APPEND_OPEN CHANGE_OWNER CHDIR CLOSE CREATE DELETE GET_PERMISSIONS_DATA GET_STATUS_DATA LINK_HARD MODIFY_ACCESS_DATA MODIFY_PERMISSIONS_DATA READ READ_WRITE_OPEN READ_OPEN RENAME SEARCH TRUNCATE WRITE WRITE_OPEN LISTEN ACCEPT CONNECT SEND RECEIVE NET_SHUTDOWN IOCTL LOCK MOVETO

DEV Type Compatibilities of Role 9:

0 (General Device)

APPEND_OPEN CLOSE GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ READ_WRITE_OPEN READ_OPEN WRITE WRITE_OPEN SEND IOCTL

IPC Type Compatibilities of Role 9:

0 (General IPC)

SCD Type Compatibilities of Role 9:

5 (rlimit)	GET_STATUS_DATA MODIFY_SYSTEM_DATA
10 (other)	MAP_EXEC
12 (network)	GET_STATUS_DATA

USER Type Compatibilities of Role 9:

0 (General User)

CHANGE_OWNER GET_STATUS_DATA SEARCH

PROCESS Type Compatibilities of Role 9:

0 (General Process)	CHANGE_GROUP CHANGE_OWNER CLONE CREATE GET_STATUS_DATA MODIFY_SYSTEM_DATA SEND_SIGNAL TERMINATE TRACE CHANGE_DAC_EFF_OWNER CHANGE_DAC_FS_OWNER CHANGE_DAC_EFF_GROUP CHANGE_DAC_FS_GROUP
999999 (Kernel Process)	GET_STATUS_DATA TERMINATE

GROUP Type Compatibilities of Role 9:

0 (General Group)

GET_STATUS_DATA SEARCH

NETDEV Type Compatibilities of Role 9:

0 (General NETDEV)

GET_STATUS_DATA MODIFY_SYSTEM_DATA BIND

NETOBJ Type Compatibilities of Role 9:

0 (General NETOBJ)

CLOSE CREATE GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ WRITE BIND LISTEN ACCEPT CONNECT SEND RECEIVE NET_SHUTDOWN IOCTL

Role 10: NamedRole_I

Default FD Create Type	4294967294 (S: Inherit Parent)
Default User Create Type	0 (General User)
Default Process Create Type	4294967294 (S: Inherit Parent)
Default Process Chown Type	4294967291 (S: Use New Role Def Create)
Default Process Execute Type	4294967294 (S: Inherit Parent)
Default IPC Create Type	0 (General IPC)
Default Group Create Type	0 (General Group)
Default Unixsock Create Type	4294967289 (Unknown)
Boot Role	No
Req Reauth	No

FD Type Compatibilities of Role 10:

0 (General FD)	CHDIR CLOSE GET_PERMISSIONS_DATA GET_STATUS_DATA READ READ_OPEN SEARCH
3 (Executables)	CHDIR CLOSE EXECUTE GET_PERMISSIONS_DATA GET_STATUS_DATA READ READ_OPEN SEARCH MAP_EXEC
4 (Libraries)	CHDIR CLOSE GET_PERMISSIONS_DATA GET_STATUS_DATA READ READ_OPEN SEARCH MAP_EXEC
7 (Configs)	SEARCH
8 (ConfigsUser)	CHDIR CLOSE GET_PERMISSIONS_DATA GET_STATUS_DATA READ READ_OPEN SEARCH
9 (TempDirs)	APPEND_OPEN CHANGE_OWNER CHDIR CLOSE CREATE DELETE GET_PERMISSIONS_DATA GET_STATUS_DATA LINK_HARD MODIFY_ACCESS_DATA MODIFY_PERMISSIONS_DATA READ READ_WRITE_OPEN READ_OPEN RENAME SEARCH TRUNCATE WRITE WRITE_OPEN LISTEN ACCEPT CONNECT SEND RECEIVE NET_SHUTDOWN IOCTL LOCK MOVETO
10 (Home)	CHDIR CLOSE GET_PERMISSIONS_DATA GET_STATUS_DATA READ READ_OPEN SEARCH
11 (HomeAdmin)	CHDIR CLOSE GET_PERMISSIONS_DATA GET_STATUS_DATA READ READ_OPEN SEARCH
12 (HomeUser)	APPEND_OPEN CHANGE_OWNER CHDIR CLOSE CREATE DELETE GET_PERMISSIONS_DATA GET_STATUS_DATA LINK_HARD MODIFY_ACCESS_DATA MODIFY_PERMISSIONS_DATA READ READ_WRITE_OPEN READ_OPEN RENAME SEARCH TRUNCATE WRITE WRITE_OPEN LISTEN ACCEPT CONNECT SEND RECEIVE NET_SHUTDOWN IOCTL LOCK MOVETO
13 (Var)	APPEND_OPEN CHANGE_OWNER CHDIR CLOSE CREATE DELETE GET_PERMISSIONS_DATA GET_STATUS_DATA LINK_HARD MODIFY_ACCESS_DATA MODIFY_PERMISSIONS_DATA READ READ_WRITE_OPEN READ_OPEN RENAME SEARCH TRUNCATE WRITE WRITE_OPEN LISTEN ACCEPT CONNECT SEND RECEIVE NET_SHUTDOWN IOCTL LOCK MOVETO
17 (VarSpoolMail)	APPEND_OPEN CHANGE_OWNER CHDIR CLOSE CREATE DELETE GET_PERMISSIONS_DATA GET_STATUS_DATA LINK_HARD MODIFY_ACCESS_DATA MODIFY_PERMISSIONS_DATA READ READ_WRITE_OPEN READ_OPEN RENAME SEARCH TRUNCATE WRITE WRITE_OPEN LISTEN ACCEPT CONNECT SEND RECEIVE NET_SHUTDOWN IOCTL LOCK MOVETO

DEV Type Compatibilities of Role 10:

0 (General Device)

APPEND_OPEN CLOSE GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ READ_WRITE_OPEN READ_OPEN WRITE WRITE_OPEN SEND IOCTL

IPC Type Compatibilities of Role 10:

0 (General IPC)

SCD Type Compatibilities of Role 10:

5 (rlimit)	GET_STATUS_DATA MODIFY_SYSTEM_DATA
10 (other)	MAP_EXEC
12 (network)	GET_STATUS_DATA

USER Type Compatibilities of Role 10:

0 (General User)

CHANGE_OWNER GET_STATUS_DATA SEARCH

PROCESS Type Compatibilities of Role 10:

0 (General Process)	CHANGE_GROUP CHANGE_OWNER CLONE CREATE GET_STATUS_DATA MODIFY_SYSTEM_DATA SEND_SIGNAL TERMINATE TRACE CHANGE_DAC_EFF_OWNER CHANGE_DAC_FS_OWNER CHANGE_DAC_EFF_GROUP CHANGE_DAC_FS_GROUP
999999 (Kernel Process)	GET_STATUS_DATA TERMINATE

GROUP Type Compatibilities of Role 10:

0 (General Group)

GET_STATUS_DATA SEARCH

NETDEV Type Compatibilities of Role 10:

0 (General NETDEV)

GET_STATUS_DATA MODIFY_SYSTEM_DATA BIND

NETOBJ Type Compatibilities of Role 10:

0 (General NETOBJ)

CLOSE CREATE GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ WRITE BIND LISTEN ACCEPT CONNECT SEND RECEIVE NET_SHUTDOWN IOCTL

Role 11: NamedRole_F

Default FD Create Type	4294967294 (S: Inherit Parent)
Default User Create Type	0 (General User)
Default Process Create Type	4294967294 (S: Inherit Parent)
Default Process Chown Type	4294967291 (S: Use New Role Def Create)
Default Process Execute Type	4294967294 (S: Inherit Parent)
Default IPC Create Type	0 (General IPC)
Default Group Create Type	0 (General Group)
Default Unixsock Create Type	4294967289 (Unknown)
Boot Role	No
Req Reauth	No

FD Type Compatibilities of Role 11:

0 (General FD)	CHDIR CLOSE GET_PERMISSIONS_DATA GET_STATUS_DATA READ READ_OPEN SEARCH
3 (Executables)	CHDIR CLOSE EXECUTE GET_PERMISSIONS_DATA GET_STATUS_DATA READ READ_OPEN SEARCH MAP_EXEC
4 (Libraries)	CHDIR CLOSE GET_PERMISSIONS_DATA GET_STATUS_DATA READ READ_OPEN SEARCH MAP_EXEC
7 (Configs)	SEARCH
8 (ConfigsUser)	CHDIR CLOSE GET_PERMISSIONS_DATA GET_STATUS_DATA READ READ_OPEN SEARCH
9 (TempDirs)	APPEND_OPEN CHANGE_OWNER CHDIR CLOSE CREATE DELETE GET_PERMISSIONS_DATA GET_STATUS_DATA LINK_HARD MODIFY_ACCESS_DATA MODIFY_PERMISSIONS_DATA READ READ_WRITE_OPEN READ_OPEN RENAME SEARCH TRUNCATE WRITE WRITE_OPEN LISTEN ACCEPT CONNECT SEND RECEIVE NET_SHUTDOWN IOCTL LOCK MOVETO
10 (Home)	CHDIR CLOSE GET_PERMISSIONS_DATA GET_STATUS_DATA READ READ_OPEN SEARCH
11 (HomeAdmin)	CHDIR CLOSE GET_PERMISSIONS_DATA GET_STATUS_DATA READ READ_OPEN SEARCH
12 (HomeUser)	APPEND_OPEN CHANGE_OWNER CHDIR CLOSE CREATE DELETE GET_PERMISSIONS_DATA GET_STATUS_DATA LINK_HARD MODIFY_ACCESS_DATA MODIFY_PERMISSIONS_DATA READ READ_WRITE_OPEN READ_OPEN RENAME SEARCH TRUNCATE WRITE WRITE_OPEN LISTEN ACCEPT CONNECT SEND RECEIVE NET_SHUTDOWN IOCTL LOCK MOVETO
13 (Var)	APPEND_OPEN CHANGE_OWNER CHDIR CLOSE CREATE DELETE GET_PERMISSIONS_DATA GET_STATUS_DATA LINK_HARD MODIFY_ACCESS_DATA MODIFY_PERMISSIONS_DATA READ READ_WRITE_OPEN READ_OPEN RENAME SEARCH TRUNCATE WRITE WRITE_OPEN LISTEN ACCEPT CONNECT SEND RECEIVE NET_SHUTDOWN IOCTL LOCK MOVETO
17 (VarSpoolMail)	APPEND_OPEN CHANGE_OWNER CHDIR CLOSE CREATE DELETE GET_PERMISSIONS_DATA GET_STATUS_DATA LINK_HARD MODIFY_ACCESS_DATA MODIFY_PERMISSIONS_DATA READ READ_WRITE_OPEN READ_OPEN RENAME SEARCH TRUNCATE WRITE WRITE_OPEN LISTEN ACCEPT CONNECT SEND RECEIVE NET_SHUTDOWN IOCTL LOCK MOVETO
19 (VarLog)	APPEND_OPEN CHANGE_OWNER CREATE DELETE GET_STATUS_DATA LINK_HARD MODIFY_ACCESS_DATA MODIFY_PERMISSIONS_DATA RENAME TRUNCATE WRITE WRITE_OPEN IOCTL LOCK MOVETO

DEV Type Compatibilities of Role 11:

0 (General Device)

APPEND_OPEN CLOSE GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ READ_WRITE_OPEN READ_OPEN WRITE WRITE_OPEN SEND IOCTL

IPC Type Compatibilities of Role 11:

0 (General IPC)

SCD Type Compatibilities of Role 11:

5 (rlimit)	GET_STATUS_DATA MODIFY_SYSTEM_DATA
10 (other)	MAP_EXEC
12 (network)	GET_STATUS_DATA

USER Type Compatibilities of Role 11:

0 (General User)

CHANGE_OWNER GET_STATUS_DATA SEARCH

PROCESS Type Compatibilities of Role 11:

0 (General Process)	CHANGE_GROUP CHANGE_OWNER CLONE CREATE GET_STATUS_DATA MODIFY_SYSTEM_DATA SEND_SIGNAL TERMINATE TRACE CHANGE_DAC_EFF_OWNER CHANGE_DAC_FS_OWNER CHANGE_DAC_EFF_GROUP CHANGE_DAC_FS_GROUP
999999 (Kernel Process)	GET_STATUS_DATA TERMINATE

GROUP Type Compatibilities of Role 11:

0 (General Group)

GET_STATUS_DATA SEARCH

NETDEV Type Compatibilities of Role 11:

0 (General NETDEV)

GET_STATUS_DATA MODIFY_SYSTEM_DATA BIND

NETOBJ Type Compatibilities of Role 11:

0 (General NETOBJ)

CLOSE CREATE GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ WRITE BIND LISTEN ACCEPT CONNECT SEND RECEIVE NET_SHUTDOWN IOCTL

Role 12: SquidRole_I

Default FD Create Type	4294967294 (S: Inherit Parent)
Default User Create Type	0 (General User)
Default Process Create Type	4294967294 (S: Inherit Parent)
Default Process Chown Type	4294967291 (S: Use New Role Def Create)
Default Process Execute Type	4294967294 (S: Inherit Parent)
Default IPC Create Type	0 (General IPC)
Default Group Create Type	0 (General Group)
Default Unixsock Create Type	4294967289 (Unknown)
Boot Role	No
Req Reauth	No

FD Type Compatibilities of Role 12:

0 (General FD)	CHDIR CLOSE GET_PERMISSIONS_DATA GET_STATUS_DATA READ READ_OPEN SEARCH
3 (Executables)	CHDIR CLOSE EXECUTE GET_PERMISSIONS_DATA GET_STATUS_DATA READ READ_OPEN SEARCH MAP_EXEC
4 (Libraries)	CHDIR CLOSE GET_PERMISSIONS_DATA GET_STATUS_DATA READ READ_OPEN SEARCH MAP_EXEC
7 (Configs)	SEARCH
8 (ConfigsUser)	CHDIR CLOSE GET_PERMISSIONS_DATA GET_STATUS_DATA READ READ_OPEN SEARCH
9 (TempDirs)	APPEND_OPEN CHANGE_OWNER CHDIR CLOSE CREATE DELETE GET_PERMISSIONS_DATA GET_STATUS_DATA LINK_HARD MODIFY_ACCESS_DATA MODIFY_PERMISSIONS_DATA READ READ_WRITE_OPEN READ_OPEN RENAME SEARCH TRUNCATE WRITE WRITE_OPEN LISTEN ACCEPT CONNECT SEND RECEIVE NET_SHUTDOWN IOCTL LOCK MOVETO
10 (Home)	CHDIR CLOSE GET_PERMISSIONS_DATA GET_STATUS_DATA READ READ_OPEN SEARCH
11 (HomeAdmin)	CHDIR CLOSE GET_PERMISSIONS_DATA GET_STATUS_DATA READ READ_OPEN SEARCH
12 (HomeUser)	APPEND_OPEN CHANGE_OWNER CHDIR CLOSE CREATE DELETE GET_PERMISSIONS_DATA GET_STATUS_DATA LINK_HARD MODIFY_ACCESS_DATA MODIFY_PERMISSIONS_DATA READ READ_WRITE_OPEN READ_OPEN RENAME SEARCH TRUNCATE WRITE WRITE_OPEN LISTEN ACCEPT CONNECT SEND RECEIVE NET_SHUTDOWN IOCTL LOCK MOVETO
13 (Var)	APPEND_OPEN CHANGE_OWNER CHDIR CLOSE CREATE DELETE GET_PERMISSIONS_DATA GET_STATUS_DATA LINK_HARD MODIFY_ACCESS_DATA MODIFY_PERMISSIONS_DATA READ READ_WRITE_OPEN READ_OPEN RENAME SEARCH TRUNCATE WRITE WRITE_OPEN LISTEN ACCEPT CONNECT SEND RECEIVE NET_SHUTDOWN IOCTL LOCK MOVETO
17 (VarSpoolMail)	APPEND_OPEN CHANGE_OWNER CHDIR CLOSE CREATE DELETE GET_PERMISSIONS_DATA GET_STATUS_DATA LINK_HARD MODIFY_ACCESS_DATA MODIFY_PERMISSIONS_DATA READ READ_WRITE_OPEN READ_OPEN RENAME SEARCH TRUNCATE WRITE WRITE_OPEN LISTEN ACCEPT CONNECT SEND RECEIVE NET_SHUTDOWN IOCTL LOCK MOVETO

DEV Type Compatibilities of Role 12:

0 (General Device)

APPEND_OPEN CLOSE GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ READ_WRITE_OPEN READ_OPEN WRITE WRITE_OPEN SEND IOCTL

IPC Type Compatibilities of Role 12:

0 (General IPC)

SCD Type Compatibilities of Role 12:

5 (rlimit)	GET_STATUS_DATA MODIFY_SYSTEM_DATA
10 (other)	MAP_EXEC
12 (network)	GET_STATUS_DATA

USER Type Compatibilities of Role 12:

0 (General User)

CHANGE_OWNER GET_STATUS_DATA SEARCH

PROCESS Type Compatibilities of Role 12:

0 (General Process)	CHANGE_GROUP CHANGE_OWNER CLONE CREATE GET_STATUS_DATA MODIFY_SYSTEM_DATA SEND_SIGNAL TERMINATE TRACE CHANGE_DAC_EFF_OWNER CHANGE_DAC_FS_OWNER CHANGE_DAC_EFF_GROUP CHANGE_DAC_FS_GROUP
999999 (Kernel Process)	GET_STATUS_DATA TERMINATE

GROUP Type Compatibilities of Role 12:

0 (General Group)

GET_STATUS_DATA SEARCH

NETDEV Type Compatibilities of Role 12:

0 (General NETDEV)

GET_STATUS_DATA MODIFY_SYSTEM_DATA BIND

NETOBJ Type Compatibilities of Role 12:

0 (General NETOBJ)

CLOSE CREATE GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ WRITE BIND LISTEN ACCEPT CONNECT SEND RECEIVE NET_SHUTDOWN IOCTL

Role 13: SquidRole_F

Default FD Create Type	4294967294 (S: Inherit Parent)
Default User Create Type	0 (General User)
Default Process Create Type	4294967294 (S: Inherit Parent)
Default Process Chown Type	4294967291 (S: Use New Role Def Create)
Default Process Execute Type	4294967294 (S: Inherit Parent)
Default IPC Create Type	0 (General IPC)
Default Group Create Type	0 (General Group)
Default Unixsock Create Type	4294967289 (Unknown)
Boot Role	No
Req Reauth	No

FD Type Compatibilities of Role 13:

0 (General FD)	CHDIR CLOSE GET_PERMISSIONS_DATA GET_STATUS_DATA READ READ_OPEN SEARCH
3 (Executables)	CHDIR CLOSE EXECUTE GET_PERMISSIONS_DATA GET_STATUS_DATA READ READ_OPEN SEARCH MAP_EXEC
4 (Libraries)	CHDIR CLOSE GET_PERMISSIONS_DATA GET_STATUS_DATA READ READ_OPEN SEARCH MAP_EXEC
7 (Configs)	SEARCH
8 (ConfigsUser)	CHDIR CLOSE GET_PERMISSIONS_DATA GET_STATUS_DATA READ READ_OPEN SEARCH
9 (TempDirs)	APPEND_OPEN CHANGE_OWNER CHDIR CLOSE CREATE DELETE GET_PERMISSIONS_DATA GET_STATUS_DATA LINK_HARD MODIFY_ACCESS_DATA MODIFY_PERMISSIONS_DATA READ READ_WRITE_OPEN READ_OPEN RENAME SEARCH TRUNCATE WRITE WRITE_OPEN LISTEN ACCEPT CONNECT SEND RECEIVE NET_SHUTDOWN IOCTL LOCK MOVETO
10 (Home)	CHDIR CLOSE GET_PERMISSIONS_DATA GET_STATUS_DATA READ READ_OPEN SEARCH
11 (HomeAdmin)	CHDIR CLOSE GET_PERMISSIONS_DATA GET_STATUS_DATA READ READ_OPEN SEARCH
12 (HomeUser)	APPEND_OPEN CHANGE_OWNER CHDIR CLOSE CREATE DELETE GET_PERMISSIONS_DATA GET_STATUS_DATA LINK_HARD MODIFY_ACCESS_DATA MODIFY_PERMISSIONS_DATA READ READ_WRITE_OPEN READ_OPEN RENAME SEARCH TRUNCATE WRITE WRITE_OPEN LISTEN ACCEPT CONNECT SEND RECEIVE NET_SHUTDOWN IOCTL LOCK MOVETO
13 (Var)	APPEND_OPEN CHANGE_OWNER CHDIR CLOSE CREATE DELETE GET_PERMISSIONS_DATA GET_STATUS_DATA LINK_HARD MODIFY_ACCESS_DATA MODIFY_PERMISSIONS_DATA READ READ_WRITE_OPEN READ_OPEN RENAME SEARCH TRUNCATE WRITE WRITE_OPEN LISTEN ACCEPT CONNECT SEND RECEIVE NET_SHUTDOWN IOCTL LOCK MOVETO
14 (VarCache)	APPEND_OPEN CHANGE_OWNER CHDIR CLOSE CREATE DELETE GET_PERMISSIONS_DATA GET_STATUS_DATA LINK_HARD MODIFY_ACCESS_DATA MODIFY_PERMISSIONS_DATA READ READ_WRITE_OPEN READ_OPEN RENAME SEARCH TRUNCATE WRITE WRITE_OPEN LISTEN ACCEPT CONNECT SEND RECEIVE NET_SHUTDOWN IOCTL LOCK MOVETO
17 (VarSpoolMail)	APPEND_OPEN CHANGE_OWNER CHDIR CLOSE CREATE DELETE GET_PERMISSIONS_DATA GET_STATUS_DATA LINK_HARD MODIFY_ACCESS_DATA MODIFY_PERMISSIONS_DATA READ READ_WRITE_OPEN READ_OPEN RENAME SEARCH TRUNCATE WRITE WRITE_OPEN LISTEN ACCEPT CONNECT SEND RECEIVE NET_SHUTDOWN IOCTL LOCK MOVETO

DEV Type Compatibilities of Role 13:

0 (General Device)

APPEND_OPEN CLOSE GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ READ_WRITE_OPEN READ_OPEN WRITE WRITE_OPEN SEND IOCTL

IPC Type Compatibilities of Role 13:

0 (General IPC)

SCD Type Compatibilities of Role 13:

5 (rlimit)	GET_STATUS_DATA MODIFY_SYSTEM_DATA
10 (other)	MAP_EXEC
12 (network)	GET_STATUS_DATA

USER Type Compatibilities of Role 13:

0 (General User)

CHANGE_OWNER GET_STATUS_DATA SEARCH

PROCESS Type Compatibilities of Role 13:

0 (General Process)	CHANGE_GROUP CHANGE_OWNER CLONE CREATE GET_STATUS_DATA MODIFY_SYSTEM_DATA SEND_SIGNAL TERMINATE TRACE CHANGE_DAC_EFF_OWNER CHANGE_DAC_FS_OWNER CHANGE_DAC_EFF_GROUP CHANGE_DAC_FS_GROUP
999999 (Kernel Process)	GET_STATUS_DATA TERMINATE

GROUP Type Compatibilities of Role 13:

0 (General Group)

GET_STATUS_DATA SEARCH

NETDEV Type Compatibilities of Role 13:

0 (General NETDEV)

GET_STATUS_DATA MODIFY_SYSTEM_DATA BIND

NETOBJ Type Compatibilities of Role 13:

0 (General NETOBJ)

CLOSE CREATE GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ WRITE BIND LISTEN ACCEPT CONNECT SEND RECEIVE NET_SHUTDOWN IOCTL

Role 14: VnstatdRole_I

Default FD Create Type	4294967294 (S: Inherit Parent)
Default User Create Type	0 (General User)
Default Process Create Type	4294967294 (S: Inherit Parent)
Default Process Chown Type	4294967291 (S: Use New Role Def Create)
Default Process Execute Type	4294967294 (S: Inherit Parent)
Default IPC Create Type	0 (General IPC)
Default Group Create Type	0 (General Group)
Default Unixsock Create Type	4294967289 (Unknown)
Boot Role	No
Req Reauth	No

FD Type Compatibilities of Role 14:

0 (General FD)	CHDIR CLOSE GET_PERMISSIONS_DATA GET_STATUS_DATA READ READ_OPEN SEARCH
3 (Executables)	CHDIR CLOSE EXECUTE GET_PERMISSIONS_DATA GET_STATUS_DATA READ READ_OPEN SEARCH MAP_EXEC
4 (Libraries)	CHDIR CLOSE GET_PERMISSIONS_DATA GET_STATUS_DATA READ READ_OPEN SEARCH MAP_EXEC
7 (Configs)	CHDIR CLOSE GET_PERMISSIONS_DATA GET_STATUS_DATA READ READ_OPEN SEARCH
8 (ConfigsUser)	CHDIR CLOSE GET_PERMISSIONS_DATA GET_STATUS_DATA READ READ_OPEN SEARCH
9 (TempDirs)	APPEND_OPEN CHANGE_OWNER CHDIR CLOSE CREATE DELETE GET_PERMISSIONS_DATA GET_STATUS_DATA LINK_HARD MODIFY_ACCESS_DATA MODIFY_PERMISSIONS_DATA READ READ_WRITE_OPEN READ_OPEN RENAME SEARCH TRUNCATE WRITE WRITE_OPEN LISTEN ACCEPT CONNECT SEND RECEIVE NET_SHUTDOWN IOCTL LOCK MOVETO
10 (Home)	CHDIR CLOSE GET_PERMISSIONS_DATA GET_STATUS_DATA READ READ_OPEN SEARCH
11 (HomeAdmin)	CHDIR CLOSE GET_PERMISSIONS_DATA GET_STATUS_DATA READ READ_OPEN SEARCH
12 (HomeUser)	APPEND_OPEN CHANGE_OWNER CHDIR CLOSE CREATE DELETE GET_PERMISSIONS_DATA GET_STATUS_DATA LINK_HARD MODIFY_ACCESS_DATA MODIFY_PERMISSIONS_DATA READ READ_WRITE_OPEN READ_OPEN RENAME SEARCH TRUNCATE WRITE WRITE_OPEN LISTEN ACCEPT CONNECT SEND RECEIVE NET_SHUTDOWN IOCTL LOCK MOVETO
13 (Var)	APPEND_OPEN CHANGE_OWNER CHDIR CLOSE CREATE DELETE GET_PERMISSIONS_DATA GET_STATUS_DATA LINK_HARD MODIFY_ACCESS_DATA MODIFY_PERMISSIONS_DATA READ READ_WRITE_OPEN READ_OPEN RENAME SEARCH TRUNCATE WRITE WRITE_OPEN LISTEN ACCEPT CONNECT SEND RECEIVE NET_SHUTDOWN IOCTL LOCK MOVETO
15 (VarLib)	APPEND_OPEN CHANGE_OWNER CHDIR CLOSE CREATE DELETE GET_PERMISSIONS_DATA GET_STATUS_DATA LINK_HARD MODIFY_ACCESS_DATA MODIFY_PERMISSIONS_DATA READ READ_WRITE_OPEN READ_OPEN RENAME SEARCH TRUNCATE WRITE WRITE_OPEN LISTEN ACCEPT CONNECT SEND RECEIVE NET_SHUTDOWN IOCTL LOCK MOVETO
17 (VarSpoolMail)	APPEND_OPEN CHANGE_OWNER CHDIR CLOSE CREATE DELETE GET_PERMISSIONS_DATA GET_STATUS_DATA LINK_HARD MODIFY_ACCESS_DATA MODIFY_PERMISSIONS_DATA READ READ_WRITE_OPEN READ_OPEN RENAME SEARCH TRUNCATE WRITE WRITE_OPEN LISTEN ACCEPT CONNECT SEND RECEIVE NET_SHUTDOWN IOCTL LOCK MOVETO

DEV Type Compatibilities of Role 14:

0 (General Device)

APPEND_OPEN CLOSE GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ READ_WRITE_OPEN READ_OPEN WRITE WRITE_OPEN SEND IOCTL

IPC Type Compatibilities of Role 14:

0 (General IPC)

SCD Type Compatibilities of Role 14:

5 (rlimit)	GET_STATUS_DATA MODIFY_SYSTEM_DATA
10 (other)	MAP_EXEC
12 (network)	GET_STATUS_DATA

USER Type Compatibilities of Role 14:

0 (General User)

CHANGE_OWNER GET_STATUS_DATA SEARCH

PROCESS Type Compatibilities of Role 14:

0 (General Process)	CHANGE_GROUP CHANGE_OWNER CLONE CREATE GET_STATUS_DATA MODIFY_SYSTEM_DATA SEND_SIGNAL TERMINATE TRACE CHANGE_DAC_EFF_OWNER CHANGE_DAC_FS_OWNER CHANGE_DAC_EFF_GROUP CHANGE_DAC_FS_GROUP
999999 (Kernel Process)	GET_STATUS_DATA TERMINATE

GROUP Type Compatibilities of Role 14:

0 (General Group)

GET_STATUS_DATA SEARCH

NETDEV Type Compatibilities of Role 14:

0 (General NETDEV)

GET_STATUS_DATA MODIFY_SYSTEM_DATA BIND

NETOBJ Type Compatibilities of Role 14:

0 (General NETOBJ)

CLOSE CREATE GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ WRITE BIND LISTEN ACCEPT CONNECT SEND RECEIVE NET_SHUTDOWN IOCTL

Role 15: VnstatdRole_F

Default FD Create Type	4294967294 (S: Inherit Parent)
Default User Create Type	0 (General User)
Default Process Create Type	4294967294 (S: Inherit Parent)
Default Process Chown Type	4294967291 (S: Use New Role Def Create)
Default Process Execute Type	4294967294 (S: Inherit Parent)
Default IPC Create Type	0 (General IPC)
Default Group Create Type	0 (General Group)
Default Unixsock Create Type	4294967289 (Unknown)
Boot Role	No
Req Reauth	No

FD Type Compatibilities of Role 15:

0 (General FD)	CHDIR CLOSE GET_PERMISSIONS_DATA GET_STATUS_DATA READ READ_OPEN SEARCH
3 (Executables)	CHDIR CLOSE EXECUTE GET_PERMISSIONS_DATA GET_STATUS_DATA READ READ_OPEN SEARCH MAP_EXEC
4 (Libraries)	CHDIR CLOSE GET_PERMISSIONS_DATA GET_STATUS_DATA READ READ_OPEN SEARCH MAP_EXEC
7 (Configs)	SEARCH
8 (ConfigsUser)	CHDIR CLOSE GET_PERMISSIONS_DATA GET_STATUS_DATA READ READ_OPEN SEARCH
9 (TempDirs)	APPEND_OPEN CHANGE_OWNER CHDIR CLOSE CREATE DELETE GET_PERMISSIONS_DATA GET_STATUS_DATA LINK_HARD MODIFY_ACCESS_DATA MODIFY_PERMISSIONS_DATA READ READ_WRITE_OPEN READ_OPEN RENAME SEARCH TRUNCATE WRITE WRITE_OPEN LISTEN ACCEPT CONNECT SEND RECEIVE NET_SHUTDOWN IOCTL LOCK MOVETO
10 (Home)	CHDIR CLOSE GET_PERMISSIONS_DATA GET_STATUS_DATA READ READ_OPEN SEARCH
11 (HomeAdmin)	CHDIR CLOSE GET_PERMISSIONS_DATA GET_STATUS_DATA READ READ_OPEN SEARCH
12 (HomeUser)	APPEND_OPEN CHANGE_OWNER CHDIR CLOSE CREATE DELETE GET_PERMISSIONS_DATA GET_STATUS_DATA LINK_HARD MODIFY_ACCESS_DATA MODIFY_PERMISSIONS_DATA READ READ_WRITE_OPEN READ_OPEN RENAME SEARCH TRUNCATE WRITE WRITE_OPEN LISTEN ACCEPT CONNECT SEND RECEIVE NET_SHUTDOWN IOCTL LOCK MOVETO
13 (Var)	APPEND_OPEN CHANGE_OWNER CHDIR CLOSE CREATE DELETE GET_PERMISSIONS_DATA GET_STATUS_DATA LINK_HARD MODIFY_ACCESS_DATA MODIFY_PERMISSIONS_DATA READ READ_WRITE_OPEN READ_OPEN RENAME SEARCH TRUNCATE WRITE WRITE_OPEN LISTEN ACCEPT CONNECT SEND RECEIVE NET_SHUTDOWN IOCTL LOCK MOVETO
17 (VarSpoolMail)	APPEND_OPEN CHANGE_OWNER CHDIR CLOSE CREATE DELETE GET_PERMISSIONS_DATA GET_STATUS_DATA LINK_HARD MODIFY_ACCESS_DATA MODIFY_PERMISSIONS_DATA READ READ_WRITE_OPEN READ_OPEN RENAME SEARCH TRUNCATE WRITE WRITE_OPEN LISTEN ACCEPT CONNECT SEND RECEIVE NET_SHUTDOWN IOCTL LOCK MOVETO

DEV Type Compatibilities of Role 15:

0 (General Device)

APPEND_OPEN CLOSE GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ READ_WRITE_OPEN READ_OPEN WRITE WRITE_OPEN SEND IOCTL

IPC Type Compatibilities of Role 15:

0 (General IPC)

SCD Type Compatibilities of Role 15:

5 (rlimit)	GET_STATUS_DATA MODIFY_SYSTEM_DATA
10 (other)	MAP_EXEC
12 (network)	GET_STATUS_DATA

USER Type Compatibilities of Role 15:

0 (General User)

CHANGE_OWNER GET_STATUS_DATA SEARCH

PROCESS Type Compatibilities of Role 15:

0 (General Process)	CHANGE_GROUP CHANGE_OWNER CLONE CREATE GET_STATUS_DATA MODIFY_SYSTEM_DATA SEND_SIGNAL TERMINATE TRACE CHANGE_DAC_EFF_OWNER CHANGE_DAC_FS_OWNER CHANGE_DAC_EFF_GROUP CHANGE_DAC_FS_GROUP
999999 (Kernel Process)	GET_STATUS_DATA TERMINATE

GROUP Type Compatibilities of Role 15:

0 (General Group)

GET_STATUS_DATA SEARCH

NETDEV Type Compatibilities of Role 15:

0 (General NETDEV)

GET_STATUS_DATA MODIFY_SYSTEM_DATA BIND

NETOBJ Type Compatibilities of Role 15:

0 (General NETOBJ)

CLOSE CREATE GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ WRITE BIND LISTEN ACCEPT CONNECT SEND RECEIVE NET_SHUTDOWN IOCTL

Role 16: RklogdRole_I

Default FD Create Type	0 (General FD)
Default User Create Type	0 (General User)
Default Process Create Type	0 (General Process)
Default Process Chown Type	0 (General Process)
Default Process Execute Type	0 (General Process)
Default IPC Create Type	0 (General IPC)
Default Group Create Type	0 (General Group)
Default Unixsock Create Type	0 (General NETOBJ)
Boot Role	No
Req Reauth	No

Role 17: RklogdRole_F

Default FD Create Type	0 (General FD)
Default User Create Type	0 (General User)
Default Process Create Type	0 (General Process)
Default Process Chown Type	0 (General Process)
Default Process Execute Type	0 (General Process)
Default IPC Create Type	0 (General IPC)
Default Group Create Type	0 (General Group)
Default Unixsock Create Type	0 (General NETOBJ)
Boot Role	No
Req Reauth	No

FD Type Compatibilities of Role 17:

0 (General FD)	SEARCH
1 (Security FD)	APPEND_OPEN CHANGE_OWNER CREATE DELETE LINK_HARD MODIFY_ACCESS_DATA MODIFY_PERMISSIONS_DATA RENAME TRUNCATE WRITE WRITE_OPEN IOCTL LOCK MOVETO
3 (Executables)	SEARCH
7 (Configs)	CHDIR CLOSE GET_PERMISSIONS_DATA GET_STATUS_DATA READ READ_OPEN SEARCH
8 (ConfigsUser)	CHDIR CLOSE GET_PERMISSIONS_DATA GET_STATUS_DATA READ READ_OPEN SEARCH

SCD Type Compatibilities of Role 17:

9 (rsbac_log)

GET_STATUS_DATA

Role 18: MailRole_I

Default FD Create Type	0 (General FD)
Default User Create Type	0 (General User)
Default Process Create Type	0 (General Process)
Default Process Chown Type	0 (General Process)
Default Process Execute Type	0 (General Process)
Default IPC Create Type	0 (General IPC)
Default Group Create Type	0 (General Group)
Default Unixsock Create Type	0 (General NETOBJ)
Boot Role	No
Req Reauth	No

Role 19: MailRole_F

Default FD Create Type	0 (General FD)
Default User Create Type	0 (General User)
Default Process Create Type	0 (General Process)
Default Process Chown Type	0 (General Process)
Default Process Execute Type	0 (General Process)
Default IPC Create Type	0 (General IPC)
Default Group Create Type	0 (General Group)
Default Unixsock Create Type	0 (General NETOBJ)
Boot Role	No
Req Reauth	No

FD Type Compatibilities of Role 19:

20 (VarSpoolPostfix)

APPEND_OPEN CHANGE_OWNER CHDIR CLOSE CREATE DELETE GET_PERMISSIONS_DATA GET_STATUS_DATA LINK_HARD MODIFY_ACCESS_DATA MODIFY_PERMISSIONS_DATA READ READ_WRITE_OPEN READ_OPEN RENAME SEARCH TRUNCATE WRITE WRITE_OPEN LISTEN ACCEPT CONNECT SEND RECEIVE NET_SHUTDOWN IOCTL LOCK MOVETO

Role 20: NfsRole

Default FD Create Type	0 (General FD)
Default User Create Type	0 (General User)
Default Process Create Type	0 (General Process)
Default Process Chown Type	0 (General Process)
Default Process Execute Type	0 (General Process)
Default IPC Create Type	0 (General IPC)
Default Group Create Type	0 (General Group)
Default Unixsock Create Type	0 (General NETOBJ)
Boot Role	No
Req Reauth	No

Role 21: ClamdRole

Default FD Create Type	4294967294 (S: Inherit Parent)
Default User Create Type	0 (General User)
Default Process Create Type	4294967294 (S: Inherit Parent)
Default Process Chown Type	4294967291 (S: Use New Role Def Create)
Default Process Execute Type	4294967294 (S: Inherit Parent)
Default IPC Create Type	0 (General IPC)
Default Group Create Type	0 (General Group)
Default Unixsock Create Type	4294967289 (Unknown)
Boot Role	No
Req Reauth	No

FD Type Compatibilities of Role 21:

0 (General FD)	CHDIR CLOSE GET_PERMISSIONS_DATA GET_STATUS_DATA READ READ_OPEN SEARCH
1 (Security FD)	CHDIR CLOSE GET_PERMISSIONS_DATA GET_STATUS_DATA READ READ_OPEN SEARCH
3 (Executables)	CHDIR CLOSE EXECUTE GET_PERMISSIONS_DATA GET_STATUS_DATA READ READ_OPEN SEARCH MAP_EXEC
4 (Libraries)	CHDIR CLOSE GET_PERMISSIONS_DATA GET_STATUS_DATA READ READ_OPEN SEARCH MAP_EXEC
7 (Configs)	SEARCH
8 (ConfigsUser)	CHDIR CLOSE GET_PERMISSIONS_DATA GET_STATUS_DATA READ READ_OPEN SEARCH
9 (TempDirs)	APPEND_OPEN CHANGE_OWNER CHDIR CLOSE CREATE DELETE GET_PERMISSIONS_DATA GET_STATUS_DATA LINK_HARD MODIFY_ACCESS_DATA MODIFY_PERMISSIONS_DATA READ READ_WRITE_OPEN READ_OPEN RENAME SEARCH TRUNCATE WRITE WRITE_OPEN LISTEN ACCEPT CONNECT SEND RECEIVE NET_SHUTDOWN IOCTL LOCK MOVETO
10 (Home)	CHDIR CLOSE GET_PERMISSIONS_DATA GET_STATUS_DATA READ READ_OPEN SEARCH
11 (HomeAdmin)	CHDIR CLOSE GET_PERMISSIONS_DATA GET_STATUS_DATA READ READ_OPEN SEARCH
12 (HomeUser)	APPEND_OPEN CHANGE_OWNER CHDIR CLOSE CREATE DELETE GET_PERMISSIONS_DATA GET_STATUS_DATA LINK_HARD MODIFY_ACCESS_DATA MODIFY_PERMISSIONS_DATA READ READ_WRITE_OPEN READ_OPEN RENAME SEARCH TRUNCATE WRITE WRITE_OPEN LISTEN ACCEPT CONNECT SEND RECEIVE NET_SHUTDOWN IOCTL LOCK MOVETO
13 (Var)	APPEND_OPEN CHANGE_OWNER CHDIR CLOSE CREATE DELETE GET_PERMISSIONS_DATA GET_STATUS_DATA LINK_HARD MODIFY_ACCESS_DATA MODIFY_PERMISSIONS_DATA READ READ_WRITE_OPEN READ_OPEN RENAME SEARCH TRUNCATE WRITE WRITE_OPEN LISTEN ACCEPT CONNECT SEND RECEIVE NET_SHUTDOWN IOCTL LOCK MOVETO
15 (VarLib)	CHDIR CLOSE GET_PERMISSIONS_DATA GET_STATUS_DATA READ READ_OPEN SEARCH
17 (VarSpoolMail)	APPEND_OPEN CHANGE_OWNER CHDIR CLOSE CREATE DELETE GET_PERMISSIONS_DATA GET_STATUS_DATA LINK_HARD MODIFY_ACCESS_DATA MODIFY_PERMISSIONS_DATA READ READ_WRITE_OPEN READ_OPEN RENAME SEARCH TRUNCATE WRITE WRITE_OPEN LISTEN ACCEPT CONNECT SEND RECEIVE NET_SHUTDOWN IOCTL LOCK MOVETO
19 (VarLog)	APPEND_OPEN CHANGE_OWNER CREATE DELETE LINK_HARD MODIFY_ACCESS_DATA MODIFY_PERMISSIONS_DATA RENAME TRUNCATE WRITE WRITE_OPEN IOCTL LOCK MOVETO

DEV Type Compatibilities of Role 21:

0 (General Device)

APPEND_OPEN CLOSE GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ READ_WRITE_OPEN READ_OPEN WRITE WRITE_OPEN SEND IOCTL

IPC Type Compatibilities of Role 21:

0 (General IPC)

SCD Type Compatibilities of Role 21:

5 (rlimit)	GET_STATUS_DATA MODIFY_SYSTEM_DATA
10 (other)	MAP_EXEC
12 (network)	GET_STATUS_DATA

USER Type Compatibilities of Role 21:

0 (General User)

CHANGE_OWNER GET_STATUS_DATA SEARCH

PROCESS Type Compatibilities of Role 21:

0 (General Process)	CHANGE_GROUP CHANGE_OWNER CLONE CREATE GET_STATUS_DATA MODIFY_SYSTEM_DATA SEND_SIGNAL TERMINATE TRACE CHANGE_DAC_EFF_OWNER CHANGE_DAC_FS_OWNER CHANGE_DAC_EFF_GROUP CHANGE_DAC_FS_GROUP
999999 (Kernel Process)	GET_STATUS_DATA TERMINATE

GROUP Type Compatibilities of Role 21:

0 (General Group)

GET_STATUS_DATA SEARCH

NETDEV Type Compatibilities of Role 21:

0 (General NETDEV)

GET_STATUS_DATA MODIFY_SYSTEM_DATA BIND

NETOBJ Type Compatibilities of Role 21:

0 (General NETOBJ)

CLOSE CREATE GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ WRITE BIND LISTEN ACCEPT CONNECT SEND RECEIVE NET_SHUTDOWN IOCTL

Role 22: FreshclamRole

Default FD Create Type	0 (General FD)
Default User Create Type	0 (General User)
Default Process Create Type	0 (General Process)
Default Process Chown Type	0 (General Process)
Default Process Execute Type	0 (General Process)
Default IPC Create Type	0 (General IPC)
Default Group Create Type	0 (General Group)
Default Unixsock Create Type	0 (General NETOBJ)
Boot Role	No
Req Reauth	No

Role 999999: System Boot

Default FD Create Type	4294967294 (S: Inherit Parent)
Default User Create Type	0 (General User)
Default Process Create Type	4294967294 (S: Inherit Parent)
Default Process Chown Type	4294967291 (S: Use New Role Def Create)
Default Process Execute Type	4294967294 (S: Inherit Parent)
Default IPC Create Type	0 (General IPC)
Default Group Create Type	0 (General Group)
Default Unixsock Create Type	4294967289 (Unknown)
Boot Role	Yes
Req Reauth	No

FD Type Compatibilities of Role 999999:

0 (General FD)	ADD_TO_KERNEL APPEND_OPEN CHANGE_OWNER CHDIR CLOSE CREATE DELETE EXECUTE GET_PERMISSIONS_DATA GET_STATUS_DATA LINK_HARD MODIFY_ACCESS_DATA MODIFY_PERMISSIONS_DATA MOUNT READ READ_ATTRIBUTE READ_WRITE_OPEN READ_OPEN REMOVE_FROM_KERNEL RENAME SEARCH TRUNCATE UMOUNT WRITE WRITE_OPEN MAP_EXEC LISTEN ACCEPT CONNECT SEND RECEIVE NET_SHUTDOWN IOCTL LOCK MOVETO
2 (System FD)	ADD_TO_KERNEL APPEND_OPEN CHANGE_OWNER CHDIR CLOSE CREATE DELETE EXECUTE GET_PERMISSIONS_DATA GET_STATUS_DATA LINK_HARD MODIFY_ACCESS_DATA MODIFY_PERMISSIONS_DATA MOUNT READ READ_ATTRIBUTE READ_WRITE_OPEN READ_OPEN REMOVE_FROM_KERNEL RENAME SEARCH TRUNCATE UMOUNT WRITE WRITE_OPEN MAP_EXEC LISTEN ACCEPT CONNECT SEND RECEIVE NET_SHUTDOWN IOCTL LOCK MOVETO
3 (Executables)	ADD_TO_KERNEL APPEND_OPEN CHANGE_OWNER CHDIR CLOSE CREATE DELETE EXECUTE GET_PERMISSIONS_DATA GET_STATUS_DATA LINK_HARD MODIFY_ACCESS_DATA MODIFY_PERMISSIONS_DATA MOUNT READ READ_ATTRIBUTE READ_WRITE_OPEN READ_OPEN REMOVE_FROM_KERNEL RENAME SEARCH TRUNCATE UMOUNT WRITE WRITE_OPEN MAP_EXEC LISTEN ACCEPT CONNECT SEND RECEIVE NET_SHUTDOWN IOCTL LOCK MOVETO
5 (SysExecutables)	ADD_TO_KERNEL APPEND_OPEN CHANGE_OWNER CHDIR CLOSE CREATE DELETE EXECUTE GET_PERMISSIONS_DATA GET_STATUS_DATA LINK_HARD MODIFY_ACCESS_DATA MODIFY_PERMISSIONS_DATA MOUNT READ READ_ATTRIBUTE READ_WRITE_OPEN READ_OPEN REMOVE_FROM_KERNEL RENAME SEARCH TRUNCATE UMOUNT WRITE WRITE_OPEN MAP_EXEC LISTEN ACCEPT CONNECT SEND RECEIVE NET_SHUTDOWN IOCTL LOCK MOVETO
6 (InitScripts)	ADD_TO_KERNEL APPEND_OPEN CHANGE_OWNER CHDIR CLOSE CREATE DELETE EXECUTE GET_PERMISSIONS_DATA GET_STATUS_DATA LINK_HARD MODIFY_ACCESS_DATA MODIFY_PERMISSIONS_DATA MOUNT READ READ_ATTRIBUTE READ_WRITE_OPEN READ_OPEN REMOVE_FROM_KERNEL RENAME SEARCH TRUNCATE UMOUNT WRITE WRITE_OPEN MAP_EXEC LISTEN ACCEPT CONNECT SEND RECEIVE NET_SHUTDOWN IOCTL LOCK MOVETO

DEV Type Compatibilities of Role 999999:

0 (General Device)	ADD_TO_KERNEL APPEND_OPEN CLOSE GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA MOUNT READ READ_ATTRIBUTE READ_WRITE_OPEN READ_OPEN REMOVE_FROM_KERNEL UMOUNT WRITE WRITE_OPEN SEND IOCTL
2 (System Device)	ADD_TO_KERNEL APPEND_OPEN CLOSE GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA MOUNT READ READ_ATTRIBUTE READ_WRITE_OPEN READ_OPEN REMOVE_FROM_KERNEL UMOUNT WRITE WRITE_OPEN SEND IOCTL

IPC Type Compatibilities of Role 999999:

0 (General IPC)	ALTER CHANGE_GROUP CHANGE_OWNER CLOSE CREATE DELETE GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ READ_ATTRIBUTE READ_WRITE_OPEN READ_OPEN WRITE WRITE_OPEN BIND LISTEN ACCEPT CONNECT SEND RECEIVE NET_SHUTDOWN IOCTL LOCK
2 (System IPC)	ALTER CHANGE_GROUP CHANGE_OWNER CLOSE CREATE DELETE GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ READ_ATTRIBUTE READ_WRITE_OPEN READ_OPEN WRITE WRITE_OPEN BIND LISTEN ACCEPT CONNECT SEND RECEIVE NET_SHUTDOWN IOCTL LOCK

SCD Type Compatibilities of Role 999999:

0 (time_strucs)	GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ_ATTRIBUTE WRITE
1 (clock)	GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ_ATTRIBUTE WRITE
2 (host_id)	GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ_ATTRIBUTE WRITE
3 (net_id)	GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ_ATTRIBUTE WRITE
4 (ioports)	GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ_ATTRIBUTE WRITE
5 (rlimit)	GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ_ATTRIBUTE WRITE
6 (swap)	GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ_ATTRIBUTE WRITE
7 (syslog)	GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ_ATTRIBUTE WRITE
8 (rsbac)	GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ_ATTRIBUTE WRITE
10 (other)	ADD_TO_KERNEL MODIFY_SYSTEM_DATA MOUNT REMOVE_FROM_KERNEL SHUTDOWN UMOUNT MAP_EXEC
12 (network)	GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ_ATTRIBUTE WRITE
13 (firewall)	GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ_ATTRIBUTE WRITE
14 (priority)	GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ_ATTRIBUTE WRITE
15 (sysfs)	GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ_ATTRIBUTE WRITE
16 (rsbac_remote_lo)	GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ_ATTRIBUTE WRITE
17 (quota)	GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ_ATTRIBUTE WRITE
18 (sysctl)	GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ_ATTRIBUTE WRITE
19 (nfsd)	GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ_ATTRIBUTE WRITE
20 (ksyms)	GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ_ATTRIBUTE WRITE
21 (mlock)	GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ_ATTRIBUTE WRITE
22 (capability)	GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ_ATTRIBUTE WRITE
23 (kexec)	GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ_ATTRIBUTE WRITE
24 (videomem)	GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ_ATTRIBUTE WRITE

USER Type Compatibilities of Role 999999:

0 (General User)	CHANGE_OWNER GET_PERMISSIONS_DATA GET_STATUS_DATA READ READ_ATTRIBUTE SEARCH AUTHENTICATE
1 (Security User)	CHANGE_OWNER SEARCH AUTHENTICATE
2 (System User)	GET_PERMISSIONS_DATA GET_STATUS_DATA READ READ_ATTRIBUTE SEARCH AUTHENTICATE

PROCESS Type Compatibilities of Role 999999:

0 (General Process)	CHANGE_GROUP CHANGE_OWNER CLONE CREATE GET_STATUS_DATA MODIFY_SYSTEM_DATA READ_ATTRIBUTE SEND_SIGNAL TERMINATE TRACE CHANGE_DAC_EFF_OWNER CHANGE_DAC_FS_OWNER CHANGE_DAC_EFF_GROUP CHANGE_DAC_FS_GROUP
2 (System Process)	CHANGE_GROUP CHANGE_OWNER CLONE CREATE GET_STATUS_DATA MODIFY_SYSTEM_DATA READ_ATTRIBUTE SEND_SIGNAL TERMINATE TRACE CHANGE_DAC_EFF_OWNER CHANGE_DAC_FS_OWNER CHANGE_DAC_EFF_GROUP CHANGE_DAC_FS_GROUP
999999 (Kernel Process)	CHANGE_GROUP CHANGE_OWNER CLONE CREATE GET_STATUS_DATA MODIFY_SYSTEM_DATA READ_ATTRIBUTE SEND_SIGNAL TERMINATE TRACE CHANGE_DAC_EFF_OWNER CHANGE_DAC_FS_OWNER CHANGE_DAC_EFF_GROUP CHANGE_DAC_FS_GROUP

NETDEV Type Compatibilities of Role 999999:

0 (General NETDEV)

GET_STATUS_DATA MODIFY_SYSTEM_DATA READ_ATTRIBUTE BIND

NETTEMP Type Compatibilities of Role 999999:

0 (General NETTEMP)

READ

NETOBJ Type Compatibilities of Role 999999:

0 (General NETOBJ)

CLOSE CREATE GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ READ_ATTRIBUTE WRITE BIND LISTEN ACCEPT CONNECT SEND RECEIVE NET_SHUTDOWN IOCTL

Rights to Types

Rights to 22 FD types

FD Type 0 General FD

Role	Name	Rights
0	General User	CHDIR CLOSE GET_PERMISSIONS_DATA GET_STATUS_DATA READ READ_OPEN SEARCH
1	Role Admin	CHDIR CLOSE GET_PERMISSIONS_DATA GET_STATUS_DATA READ READ_OPEN SEARCH ADMIN ASSIGN ACCESS_CONTROL SUPERVISOR MODIFY_AUTH CHANGE_AUTHED_OWNER SELECT
2	System Admin	ADD_TO_KERNEL APPEND_OPEN CHANGE_OWNER CHDIR CLOSE CREATE DELETE EXECUTE GET_PERMISSIONS_DATA GET_STATUS_DATA LINK_HARD MODIFY_ACCESS_DATA MODIFY_PERMISSIONS_DATA MOUNT READ READ_ATTRIBUTE READ_WRITE_OPEN READ_OPEN REMOVE_FROM_KERNEL RENAME SEARCH TRUNCATE UMOUNT WRITE WRITE_OPEN MAP_EXEC LISTEN ACCEPT CONNECT SEND RECEIVE NET_SHUTDOWN IOCTL LOCK MOVETO
3	Auditor	APPEND_OPEN CHANGE_OWNER CHDIR CLOSE CREATE DELETE EXECUTE GET_PERMISSIONS_DATA GET_STATUS_DATA LINK_HARD MODIFY_ACCESS_DATA MODIFY_PERMISSIONS_DATA READ READ_WRITE_OPEN READ_OPEN RENAME SEARCH TRUNCATE WRITE WRITE_OPEN MAP_EXEC LISTEN ACCEPT CONNECT SEND RECEIVE NET_SHUTDOWN IOCTL LOCK MOVETO
4	InitRole	ADD_TO_KERNEL APPEND_OPEN CHANGE_OWNER CHDIR CLOSE CREATE DELETE EXECUTE GET_PERMISSIONS_DATA GET_STATUS_DATA LINK_HARD MODIFY_ACCESS_DATA MODIFY_PERMISSIONS_DATA MOUNT READ READ_ATTRIBUTE READ_WRITE_OPEN READ_OPEN REMOVE_FROM_KERNEL RENAME SEARCH TRUNCATE UMOUNT WRITE WRITE_OPEN MAP_EXEC LISTEN ACCEPT CONNECT SEND RECEIVE NET_SHUTDOWN IOCTL LOCK MOVETO
5	RootRole	CHDIR CLOSE GET_PERMISSIONS_DATA GET_STATUS_DATA READ READ_OPEN SEARCH
6	LoginRole	CHDIR CLOSE GET_PERMISSIONS_DATA GET_STATUS_DATA READ READ_OPEN SEARCH
7	SshdRole	CHDIR CLOSE GET_PERMISSIONS_DATA GET_STATUS_DATA READ READ_OPEN SEARCH
8	SyslogRole	CHDIR CLOSE GET_PERMISSIONS_DATA GET_STATUS_DATA READ READ_OPEN SEARCH
9	CronRole	CHDIR CLOSE GET_PERMISSIONS_DATA GET_STATUS_DATA READ READ_OPEN SEARCH
10	NamedRole_I	CHDIR CLOSE GET_PERMISSIONS_DATA GET_STATUS_DATA READ READ_OPEN SEARCH
11	NamedRole_F	CHDIR CLOSE GET_PERMISSIONS_DATA GET_STATUS_DATA READ READ_OPEN SEARCH
12	SquidRole_I	CHDIR CLOSE GET_PERMISSIONS_DATA GET_STATUS_DATA READ READ_OPEN SEARCH
13	SquidRole_F	CHDIR CLOSE GET_PERMISSIONS_DATA GET_STATUS_DATA READ READ_OPEN SEARCH
14	VnstatdRole_I	CHDIR CLOSE GET_PERMISSIONS_DATA GET_STATUS_DATA READ READ_OPEN SEARCH
15	VnstatdRole_F	CHDIR CLOSE GET_PERMISSIONS_DATA GET_STATUS_DATA READ READ_OPEN SEARCH
17	RklogdRole_F	SEARCH
21	ClamdRole	CHDIR CLOSE GET_PERMISSIONS_DATA GET_STATUS_DATA READ READ_OPEN SEARCH
999999	System Boot	ADD_TO_KERNEL APPEND_OPEN CHANGE_OWNER CHDIR CLOSE CREATE DELETE EXECUTE GET_PERMISSIONS_DATA GET_STATUS_DATA LINK_HARD MODIFY_ACCESS_DATA MODIFY_PERMISSIONS_DATA MOUNT READ READ_ATTRIBUTE READ_WRITE_OPEN READ_OPEN REMOVE_FROM_KERNEL RENAME SEARCH TRUNCATE UMOUNT WRITE WRITE_OPEN MAP_EXEC LISTEN ACCEPT CONNECT SEND RECEIVE NET_SHUTDOWN IOCTL LOCK MOVETO

FD Type 1 Security FD

Role	Name	Rights
1	Role Admin	APPEND_OPEN CHANGE_OWNER CHDIR CLOSE CREATE DELETE EXECUTE GET_PERMISSIONS_DATA GET_STATUS_DATA LINK_HARD MODIFY_ACCESS_DATA MODIFY_ATTRIBUTE MODIFY_PERMISSIONS_DATA READ READ_ATTRIBUTE READ_WRITE_OPEN READ_OPEN RENAME SEARCH TRUNCATE WRITE WRITE_OPEN MAP_EXEC LISTEN ACCEPT CONNECT SEND RECEIVE NET_SHUTDOWN IOCTL LOCK MOVETO ADMIN ASSIGN ACCESS_CONTROL SUPERVISOR MODIFY_AUTH CHANGE_AUTHED_OWNER SELECT
17	RklogdRole_F	APPEND_OPEN CHANGE_OWNER CREATE DELETE LINK_HARD MODIFY_ACCESS_DATA MODIFY_PERMISSIONS_DATA RENAME TRUNCATE WRITE WRITE_OPEN IOCTL LOCK MOVETO
21	ClamdRole	CHDIR CLOSE GET_PERMISSIONS_DATA GET_STATUS_DATA READ READ_OPEN SEARCH

FD Type 2 System FD

Role	Name	Rights
1	Role Admin	CHDIR CLOSE GET_PERMISSIONS_DATA GET_STATUS_DATA READ READ_OPEN SEARCH ADMIN ASSIGN ACCESS_CONTROL SUPERVISOR MODIFY_AUTH CHANGE_AUTHED_OWNER SELECT
2	System Admin	ADD_TO_KERNEL APPEND_OPEN CHANGE_OWNER CHDIR CLOSE CREATE DELETE EXECUTE GET_PERMISSIONS_DATA GET_STATUS_DATA LINK_HARD MODIFY_ACCESS_DATA MODIFY_PERMISSIONS_DATA MOUNT READ READ_ATTRIBUTE READ_WRITE_OPEN READ_OPEN REMOVE_FROM_KERNEL RENAME SEARCH TRUNCATE UMOUNT WRITE WRITE_OPEN MAP_EXEC LISTEN ACCEPT CONNECT SEND RECEIVE NET_SHUTDOWN IOCTL LOCK MOVETO
4	InitRole	ADD_TO_KERNEL APPEND_OPEN CHANGE_OWNER CHDIR CLOSE CREATE DELETE EXECUTE GET_PERMISSIONS_DATA GET_STATUS_DATA LINK_HARD MODIFY_ACCESS_DATA MODIFY_PERMISSIONS_DATA MOUNT READ READ_ATTRIBUTE READ_WRITE_OPEN READ_OPEN REMOVE_FROM_KERNEL RENAME SEARCH TRUNCATE UMOUNT WRITE WRITE_OPEN MAP_EXEC LISTEN ACCEPT CONNECT SEND RECEIVE NET_SHUTDOWN IOCTL LOCK MOVETO
999999	System Boot	ADD_TO_KERNEL APPEND_OPEN CHANGE_OWNER CHDIR CLOSE CREATE DELETE EXECUTE GET_PERMISSIONS_DATA GET_STATUS_DATA LINK_HARD MODIFY_ACCESS_DATA MODIFY_PERMISSIONS_DATA MOUNT READ READ_ATTRIBUTE READ_WRITE_OPEN READ_OPEN REMOVE_FROM_KERNEL RENAME SEARCH TRUNCATE UMOUNT WRITE WRITE_OPEN MAP_EXEC LISTEN ACCEPT CONNECT SEND RECEIVE NET_SHUTDOWN IOCTL LOCK MOVETO

FD Type 3 Executables

Role	Name	Rights
0	General User	CHDIR CLOSE EXECUTE GET_PERMISSIONS_DATA GET_STATUS_DATA READ READ_OPEN SEARCH MAP_EXEC
1	Role Admin	CHDIR CLOSE EXECUTE GET_PERMISSIONS_DATA GET_STATUS_DATA READ READ_OPEN SEARCH MAP_EXEC ADMIN ASSIGN ACCESS_CONTROL SUPERVISOR MODIFY_AUTH CHANGE_AUTHED_OWNER SELECT
2	System Admin	ADD_TO_KERNEL APPEND_OPEN CHANGE_OWNER CHDIR CLOSE CREATE DELETE EXECUTE GET_PERMISSIONS_DATA GET_STATUS_DATA LINK_HARD MODIFY_ACCESS_DATA MODIFY_PERMISSIONS_DATA MOUNT READ READ_ATTRIBUTE READ_WRITE_OPEN READ_OPEN REMOVE_FROM_KERNEL RENAME SEARCH TRUNCATE UMOUNT WRITE WRITE_OPEN MAP_EXEC LISTEN ACCEPT CONNECT SEND RECEIVE NET_SHUTDOWN IOCTL LOCK MOVETO
3	Auditor	APPEND_OPEN CHANGE_OWNER CHDIR CLOSE CREATE DELETE EXECUTE GET_PERMISSIONS_DATA GET_STATUS_DATA LINK_HARD MODIFY_ACCESS_DATA MODIFY_PERMISSIONS_DATA READ READ_WRITE_OPEN READ_OPEN RENAME SEARCH TRUNCATE WRITE WRITE_OPEN MAP_EXEC LISTEN ACCEPT CONNECT SEND RECEIVE NET_SHUTDOWN IOCTL LOCK MOVETO
4	InitRole	ADD_TO_KERNEL APPEND_OPEN CHANGE_OWNER CHDIR CLOSE CREATE DELETE EXECUTE GET_PERMISSIONS_DATA GET_STATUS_DATA LINK_HARD MODIFY_ACCESS_DATA MODIFY_PERMISSIONS_DATA MOUNT READ READ_ATTRIBUTE READ_WRITE_OPEN READ_OPEN REMOVE_FROM_KERNEL RENAME SEARCH TRUNCATE UMOUNT WRITE WRITE_OPEN MAP_EXEC LISTEN ACCEPT CONNECT SEND RECEIVE NET_SHUTDOWN IOCTL LOCK MOVETO
5	RootRole	CHDIR CLOSE EXECUTE GET_PERMISSIONS_DATA GET_STATUS_DATA READ READ_OPEN SEARCH MAP_EXEC
6	LoginRole	CHDIR CLOSE EXECUTE GET_PERMISSIONS_DATA GET_STATUS_DATA READ READ_OPEN SEARCH MAP_EXEC
7	SshdRole	CHDIR CLOSE EXECUTE GET_PERMISSIONS_DATA GET_STATUS_DATA READ READ_OPEN SEARCH MAP_EXEC
8	SyslogRole	CHDIR CLOSE EXECUTE GET_PERMISSIONS_DATA GET_STATUS_DATA READ READ_OPEN SEARCH MAP_EXEC
9	CronRole	CHDIR CLOSE EXECUTE GET_PERMISSIONS_DATA GET_STATUS_DATA READ READ_OPEN SEARCH MAP_EXEC
10	NamedRole_I	CHDIR CLOSE EXECUTE GET_PERMISSIONS_DATA GET_STATUS_DATA READ READ_OPEN SEARCH MAP_EXEC
11	NamedRole_F	CHDIR CLOSE EXECUTE GET_PERMISSIONS_DATA GET_STATUS_DATA READ READ_OPEN SEARCH MAP_EXEC
12	SquidRole_I	CHDIR CLOSE EXECUTE GET_PERMISSIONS_DATA GET_STATUS_DATA READ READ_OPEN SEARCH MAP_EXEC
13	SquidRole_F	CHDIR CLOSE EXECUTE GET_PERMISSIONS_DATA GET_STATUS_DATA READ READ_OPEN SEARCH MAP_EXEC
14	VnstatdRole_I	CHDIR CLOSE EXECUTE GET_PERMISSIONS_DATA GET_STATUS_DATA READ READ_OPEN SEARCH MAP_EXEC
15	VnstatdRole_F	CHDIR CLOSE EXECUTE GET_PERMISSIONS_DATA GET_STATUS_DATA READ READ_OPEN SEARCH MAP_EXEC
17	RklogdRole_F	SEARCH
21	ClamdRole	CHDIR CLOSE EXECUTE GET_PERMISSIONS_DATA GET_STATUS_DATA READ READ_OPEN SEARCH MAP_EXEC
999999	System Boot	ADD_TO_KERNEL APPEND_OPEN CHANGE_OWNER CHDIR CLOSE CREATE DELETE EXECUTE GET_PERMISSIONS_DATA GET_STATUS_DATA LINK_HARD MODIFY_ACCESS_DATA MODIFY_PERMISSIONS_DATA MOUNT READ READ_ATTRIBUTE READ_WRITE_OPEN READ_OPEN REMOVE_FROM_KERNEL RENAME SEARCH TRUNCATE UMOUNT WRITE WRITE_OPEN MAP_EXEC LISTEN ACCEPT CONNECT SEND RECEIVE NET_SHUTDOWN IOCTL LOCK MOVETO

FD Type 4 Libraries

Role	Name	Rights
0	General User	CHDIR CLOSE GET_PERMISSIONS_DATA GET_STATUS_DATA READ READ_OPEN SEARCH MAP_EXEC
1	Role Admin	CHDIR CLOSE GET_PERMISSIONS_DATA GET_STATUS_DATA READ READ_OPEN SEARCH MAP_EXEC
2	System Admin	CHDIR CLOSE GET_PERMISSIONS_DATA GET_STATUS_DATA READ READ_OPEN SEARCH MAP_EXEC
4	InitRole	CHDIR CLOSE GET_PERMISSIONS_DATA GET_STATUS_DATA READ READ_OPEN SEARCH MAP_EXEC
5	RootRole	CHDIR CLOSE GET_PERMISSIONS_DATA GET_STATUS_DATA READ READ_OPEN SEARCH MAP_EXEC
6	LoginRole	CHDIR CLOSE GET_PERMISSIONS_DATA GET_STATUS_DATA READ READ_OPEN SEARCH MAP_EXEC
7	SshdRole	CHDIR CLOSE GET_PERMISSIONS_DATA GET_STATUS_DATA READ READ_OPEN SEARCH MAP_EXEC
8	SyslogRole	CHDIR CLOSE GET_PERMISSIONS_DATA GET_STATUS_DATA READ READ_OPEN SEARCH MAP_EXEC
9	CronRole	CHDIR CLOSE GET_PERMISSIONS_DATA GET_STATUS_DATA READ READ_OPEN SEARCH MAP_EXEC
10	NamedRole_I	CHDIR CLOSE GET_PERMISSIONS_DATA GET_STATUS_DATA READ READ_OPEN SEARCH MAP_EXEC
11	NamedRole_F	CHDIR CLOSE GET_PERMISSIONS_DATA GET_STATUS_DATA READ READ_OPEN SEARCH MAP_EXEC
12	SquidRole_I	CHDIR CLOSE GET_PERMISSIONS_DATA GET_STATUS_DATA READ READ_OPEN SEARCH MAP_EXEC
13	SquidRole_F	CHDIR CLOSE GET_PERMISSIONS_DATA GET_STATUS_DATA READ READ_OPEN SEARCH MAP_EXEC
14	VnstatdRole_I	CHDIR CLOSE GET_PERMISSIONS_DATA GET_STATUS_DATA READ READ_OPEN SEARCH MAP_EXEC
15	VnstatdRole_F	CHDIR CLOSE GET_PERMISSIONS_DATA GET_STATUS_DATA READ READ_OPEN SEARCH MAP_EXEC
21	ClamdRole	CHDIR CLOSE GET_PERMISSIONS_DATA GET_STATUS_DATA READ READ_OPEN SEARCH MAP_EXEC

FD Type 5 SysExecutables

Role	Name	Rights
1	Role Admin	CHDIR CLOSE EXECUTE GET_PERMISSIONS_DATA GET_STATUS_DATA READ READ_OPEN SEARCH MAP_EXEC ADMIN ASSIGN ACCESS_CONTROL SUPERVISOR MODIFY_AUTH CHANGE_AUTHED_OWNER SELECT
2	System Admin	ADD_TO_KERNEL APPEND_OPEN CHANGE_OWNER CHDIR CLOSE CREATE DELETE EXECUTE GET_PERMISSIONS_DATA GET_STATUS_DATA LINK_HARD MODIFY_ACCESS_DATA MODIFY_PERMISSIONS_DATA MOUNT READ READ_ATTRIBUTE READ_WRITE_OPEN READ_OPEN REMOVE_FROM_KERNEL RENAME SEARCH TRUNCATE UMOUNT WRITE WRITE_OPEN MAP_EXEC LISTEN ACCEPT CONNECT SEND RECEIVE NET_SHUTDOWN IOCTL LOCK MOVETO
4	InitRole	ADD_TO_KERNEL APPEND_OPEN CHANGE_OWNER CHDIR CLOSE CREATE DELETE EXECUTE GET_PERMISSIONS_DATA GET_STATUS_DATA LINK_HARD MODIFY_ACCESS_DATA MODIFY_PERMISSIONS_DATA MOUNT READ READ_ATTRIBUTE READ_WRITE_OPEN READ_OPEN REMOVE_FROM_KERNEL RENAME SEARCH TRUNCATE UMOUNT WRITE WRITE_OPEN MAP_EXEC LISTEN ACCEPT CONNECT SEND RECEIVE NET_SHUTDOWN IOCTL LOCK MOVETO
5	RootRole	CHDIR CLOSE EXECUTE GET_PERMISSIONS_DATA GET_STATUS_DATA READ READ_OPEN SEARCH MAP_EXEC
7	SshdRole	CHDIR CLOSE GET_PERMISSIONS_DATA GET_STATUS_DATA READ READ_OPEN SEARCH
999999	System Boot	ADD_TO_KERNEL APPEND_OPEN CHANGE_OWNER CHDIR CLOSE CREATE DELETE EXECUTE GET_PERMISSIONS_DATA GET_STATUS_DATA LINK_HARD MODIFY_ACCESS_DATA MODIFY_PERMISSIONS_DATA MOUNT READ READ_ATTRIBUTE READ_WRITE_OPEN READ_OPEN REMOVE_FROM_KERNEL RENAME SEARCH TRUNCATE UMOUNT WRITE WRITE_OPEN MAP_EXEC LISTEN ACCEPT CONNECT SEND RECEIVE NET_SHUTDOWN IOCTL LOCK MOVETO

FD Type 6 InitScripts

Role	Name	Rights
1	Role Admin	CHDIR CLOSE EXECUTE GET_PERMISSIONS_DATA GET_STATUS_DATA READ READ_OPEN SEARCH MAP_EXEC ADMIN ASSIGN ACCESS_CONTROL SUPERVISOR MODIFY_AUTH CHANGE_AUTHED_OWNER SELECT
2	System Admin	ADD_TO_KERNEL APPEND_OPEN CHANGE_OWNER CHDIR CLOSE CREATE DELETE EXECUTE GET_PERMISSIONS_DATA GET_STATUS_DATA LINK_HARD MODIFY_ACCESS_DATA MODIFY_PERMISSIONS_DATA MOUNT READ READ_ATTRIBUTE READ_WRITE_OPEN READ_OPEN REMOVE_FROM_KERNEL RENAME SEARCH TRUNCATE UMOUNT WRITE WRITE_OPEN MAP_EXEC LISTEN ACCEPT CONNECT SEND RECEIVE NET_SHUTDOWN IOCTL LOCK MOVETO
4	InitRole	ADD_TO_KERNEL APPEND_OPEN CHANGE_OWNER CHDIR CLOSE CREATE DELETE EXECUTE GET_PERMISSIONS_DATA GET_STATUS_DATA LINK_HARD MODIFY_ACCESS_DATA MODIFY_PERMISSIONS_DATA MOUNT READ READ_ATTRIBUTE READ_WRITE_OPEN READ_OPEN REMOVE_FROM_KERNEL RENAME SEARCH TRUNCATE UMOUNT WRITE WRITE_OPEN MAP_EXEC LISTEN ACCEPT CONNECT SEND RECEIVE NET_SHUTDOWN IOCTL LOCK MOVETO
5	RootRole	CHDIR CLOSE EXECUTE GET_PERMISSIONS_DATA GET_STATUS_DATA READ READ_OPEN SEARCH
999999	System Boot	ADD_TO_KERNEL APPEND_OPEN CHANGE_OWNER CHDIR CLOSE CREATE DELETE EXECUTE GET_PERMISSIONS_DATA GET_STATUS_DATA LINK_HARD MODIFY_ACCESS_DATA MODIFY_PERMISSIONS_DATA MOUNT READ READ_ATTRIBUTE READ_WRITE_OPEN READ_OPEN REMOVE_FROM_KERNEL RENAME SEARCH TRUNCATE UMOUNT WRITE WRITE_OPEN MAP_EXEC LISTEN ACCEPT CONNECT SEND RECEIVE NET_SHUTDOWN IOCTL LOCK MOVETO

FD Type 7 Configs

Role	Name	Rights
0	General User	SEARCH
1	Role Admin	CHDIR CLOSE GET_PERMISSIONS_DATA GET_STATUS_DATA READ READ_OPEN SEARCH
2	System Admin	CHDIR CLOSE GET_PERMISSIONS_DATA GET_STATUS_DATA READ READ_OPEN SEARCH
4	InitRole	CHDIR CLOSE GET_PERMISSIONS_DATA GET_STATUS_DATA READ READ_OPEN SEARCH
5	RootRole	CHDIR CLOSE GET_PERMISSIONS_DATA GET_STATUS_DATA READ READ_OPEN SEARCH
6	LoginRole	SEARCH
7	SshdRole	CHDIR CLOSE GET_PERMISSIONS_DATA GET_STATUS_DATA READ READ_OPEN SEARCH
8	SyslogRole	SEARCH
9	CronRole	SEARCH
10	NamedRole_I	SEARCH
11	NamedRole_F	SEARCH
12	SquidRole_I	SEARCH
13	SquidRole_F	SEARCH
14	VnstatdRole_I	CHDIR CLOSE GET_PERMISSIONS_DATA GET_STATUS_DATA READ READ_OPEN SEARCH
15	VnstatdRole_F	SEARCH
17	RklogdRole_F	CHDIR CLOSE GET_PERMISSIONS_DATA GET_STATUS_DATA READ READ_OPEN SEARCH
21	ClamdRole	SEARCH

FD Type 8 ConfigsUser

Role	Name	Rights
0	General User	CHDIR CLOSE GET_PERMISSIONS_DATA GET_STATUS_DATA READ READ_OPEN SEARCH
1	Role Admin	CHDIR CLOSE GET_PERMISSIONS_DATA GET_STATUS_DATA READ READ_OPEN SEARCH
2	System Admin	CHDIR CLOSE GET_PERMISSIONS_DATA GET_STATUS_DATA READ READ_OPEN SEARCH
3	Auditor	CHDIR CLOSE GET_PERMISSIONS_DATA GET_STATUS_DATA READ READ_OPEN SEARCH
4	InitRole	CHDIR CLOSE GET_PERMISSIONS_DATA GET_STATUS_DATA READ READ_OPEN SEARCH
5	RootRole	CHDIR CLOSE GET_PERMISSIONS_DATA GET_STATUS_DATA READ READ_OPEN SEARCH
6	LoginRole	CHDIR CLOSE GET_PERMISSIONS_DATA GET_STATUS_DATA READ READ_OPEN SEARCH
7	SshdRole	CHDIR CLOSE GET_PERMISSIONS_DATA GET_STATUS_DATA READ READ_OPEN SEARCH
8	SyslogRole	CHDIR CLOSE GET_PERMISSIONS_DATA GET_STATUS_DATA READ READ_OPEN SEARCH
9	CronRole	CHDIR CLOSE GET_PERMISSIONS_DATA GET_STATUS_DATA READ READ_OPEN SEARCH
10	NamedRole_I	CHDIR CLOSE GET_PERMISSIONS_DATA GET_STATUS_DATA READ READ_OPEN SEARCH
11	NamedRole_F	CHDIR CLOSE GET_PERMISSIONS_DATA GET_STATUS_DATA READ READ_OPEN SEARCH
12	SquidRole_I	CHDIR CLOSE GET_PERMISSIONS_DATA GET_STATUS_DATA READ READ_OPEN SEARCH
13	SquidRole_F	CHDIR CLOSE GET_PERMISSIONS_DATA GET_STATUS_DATA READ READ_OPEN SEARCH
14	VnstatdRole_I	CHDIR CLOSE GET_PERMISSIONS_DATA GET_STATUS_DATA READ READ_OPEN SEARCH
15	VnstatdRole_F	CHDIR CLOSE GET_PERMISSIONS_DATA GET_STATUS_DATA READ READ_OPEN SEARCH
17	RklogdRole_F	CHDIR CLOSE GET_PERMISSIONS_DATA GET_STATUS_DATA READ READ_OPEN SEARCH
21	ClamdRole	CHDIR CLOSE GET_PERMISSIONS_DATA GET_STATUS_DATA READ READ_OPEN SEARCH

FD Type 9 TempDirs

Role	Name	Rights
0	General User	APPEND_OPEN CHANGE_OWNER CHDIR CLOSE CREATE DELETE GET_PERMISSIONS_DATA GET_STATUS_DATA LINK_HARD MODIFY_ACCESS_DATA MODIFY_PERMISSIONS_DATA READ READ_WRITE_OPEN READ_OPEN RENAME SEARCH TRUNCATE WRITE WRITE_OPEN LISTEN ACCEPT CONNECT SEND RECEIVE NET_SHUTDOWN IOCTL LOCK MOVETO
1	Role Admin	APPEND_OPEN CHANGE_OWNER CHDIR CLOSE CREATE DELETE GET_PERMISSIONS_DATA GET_STATUS_DATA LINK_HARD MODIFY_ACCESS_DATA MODIFY_PERMISSIONS_DATA READ READ_WRITE_OPEN READ_OPEN RENAME SEARCH TRUNCATE WRITE WRITE_OPEN LISTEN ACCEPT CONNECT SEND RECEIVE NET_SHUTDOWN IOCTL LOCK MOVETO
5	RootRole	APPEND_OPEN CHANGE_OWNER CHDIR CLOSE CREATE DELETE GET_PERMISSIONS_DATA GET_STATUS_DATA LINK_HARD MODIFY_ACCESS_DATA MODIFY_PERMISSIONS_DATA READ READ_WRITE_OPEN READ_OPEN RENAME SEARCH TRUNCATE WRITE WRITE_OPEN LISTEN ACCEPT CONNECT SEND RECEIVE NET_SHUTDOWN IOCTL LOCK MOVETO
6	LoginRole	APPEND_OPEN CHANGE_OWNER CHDIR CLOSE CREATE DELETE GET_PERMISSIONS_DATA GET_STATUS_DATA LINK_HARD MODIFY_ACCESS_DATA MODIFY_PERMISSIONS_DATA READ READ_WRITE_OPEN READ_OPEN RENAME SEARCH TRUNCATE WRITE WRITE_OPEN LISTEN ACCEPT CONNECT SEND RECEIVE NET_SHUTDOWN IOCTL LOCK MOVETO
7	SshdRole	APPEND_OPEN CHANGE_OWNER CHDIR CLOSE CREATE DELETE GET_PERMISSIONS_DATA GET_STATUS_DATA LINK_HARD MODIFY_ACCESS_DATA MODIFY_PERMISSIONS_DATA READ READ_WRITE_OPEN READ_OPEN RENAME SEARCH TRUNCATE WRITE WRITE_OPEN LISTEN ACCEPT CONNECT SEND RECEIVE NET_SHUTDOWN IOCTL LOCK MOVETO
8	SyslogRole	APPEND_OPEN CHANGE_OWNER CHDIR CLOSE CREATE DELETE GET_PERMISSIONS_DATA GET_STATUS_DATA LINK_HARD MODIFY_ACCESS_DATA MODIFY_PERMISSIONS_DATA READ READ_WRITE_OPEN READ_OPEN RENAME SEARCH TRUNCATE WRITE WRITE_OPEN LISTEN ACCEPT CONNECT SEND RECEIVE NET_SHUTDOWN IOCTL LOCK MOVETO
9	CronRole	APPEND_OPEN CHANGE_OWNER CHDIR CLOSE CREATE DELETE GET_PERMISSIONS_DATA GET_STATUS_DATA LINK_HARD MODIFY_ACCESS_DATA MODIFY_PERMISSIONS_DATA READ READ_WRITE_OPEN READ_OPEN RENAME SEARCH TRUNCATE WRITE WRITE_OPEN LISTEN ACCEPT CONNECT SEND RECEIVE NET_SHUTDOWN IOCTL LOCK MOVETO
10	NamedRole_I	APPEND_OPEN CHANGE_OWNER CHDIR CLOSE CREATE DELETE GET_PERMISSIONS_DATA GET_STATUS_DATA LINK_HARD MODIFY_ACCESS_DATA MODIFY_PERMISSIONS_DATA READ READ_WRITE_OPEN READ_OPEN RENAME SEARCH TRUNCATE WRITE WRITE_OPEN LISTEN ACCEPT CONNECT SEND RECEIVE NET_SHUTDOWN IOCTL LOCK MOVETO
11	NamedRole_F	APPEND_OPEN CHANGE_OWNER CHDIR CLOSE CREATE DELETE GET_PERMISSIONS_DATA GET_STATUS_DATA LINK_HARD MODIFY_ACCESS_DATA MODIFY_PERMISSIONS_DATA READ READ_WRITE_OPEN READ_OPEN RENAME SEARCH TRUNCATE WRITE WRITE_OPEN LISTEN ACCEPT CONNECT SEND RECEIVE NET_SHUTDOWN IOCTL LOCK MOVETO
12	SquidRole_I	APPEND_OPEN CHANGE_OWNER CHDIR CLOSE CREATE DELETE GET_PERMISSIONS_DATA GET_STATUS_DATA LINK_HARD MODIFY_ACCESS_DATA MODIFY_PERMISSIONS_DATA READ READ_WRITE_OPEN READ_OPEN RENAME SEARCH TRUNCATE WRITE WRITE_OPEN LISTEN ACCEPT CONNECT SEND RECEIVE NET_SHUTDOWN IOCTL LOCK MOVETO
13	SquidRole_F	APPEND_OPEN CHANGE_OWNER CHDIR CLOSE CREATE DELETE GET_PERMISSIONS_DATA GET_STATUS_DATA LINK_HARD MODIFY_ACCESS_DATA MODIFY_PERMISSIONS_DATA READ READ_WRITE_OPEN READ_OPEN RENAME SEARCH TRUNCATE WRITE WRITE_OPEN LISTEN ACCEPT CONNECT SEND RECEIVE NET_SHUTDOWN IOCTL LOCK MOVETO
14	VnstatdRole_I	APPEND_OPEN CHANGE_OWNER CHDIR CLOSE CREATE DELETE GET_PERMISSIONS_DATA GET_STATUS_DATA LINK_HARD MODIFY_ACCESS_DATA MODIFY_PERMISSIONS_DATA READ READ_WRITE_OPEN READ_OPEN RENAME SEARCH TRUNCATE WRITE WRITE_OPEN LISTEN ACCEPT CONNECT SEND RECEIVE NET_SHUTDOWN IOCTL LOCK MOVETO
15	VnstatdRole_F	APPEND_OPEN CHANGE_OWNER CHDIR CLOSE CREATE DELETE GET_PERMISSIONS_DATA GET_STATUS_DATA LINK_HARD MODIFY_ACCESS_DATA MODIFY_PERMISSIONS_DATA READ READ_WRITE_OPEN READ_OPEN RENAME SEARCH TRUNCATE WRITE WRITE_OPEN LISTEN ACCEPT CONNECT SEND RECEIVE NET_SHUTDOWN IOCTL LOCK MOVETO
21	ClamdRole	APPEND_OPEN CHANGE_OWNER CHDIR CLOSE CREATE DELETE GET_PERMISSIONS_DATA GET_STATUS_DATA LINK_HARD MODIFY_ACCESS_DATA MODIFY_PERMISSIONS_DATA READ READ_WRITE_OPEN READ_OPEN RENAME SEARCH TRUNCATE WRITE WRITE_OPEN LISTEN ACCEPT CONNECT SEND RECEIVE NET_SHUTDOWN IOCTL LOCK MOVETO

FD Type 10 Home

Role	Name	Rights
0	General User	CHDIR CLOSE GET_PERMISSIONS_DATA GET_STATUS_DATA READ READ_OPEN SEARCH
1	Role Admin	CHDIR CLOSE GET_PERMISSIONS_DATA GET_STATUS_DATA READ READ_OPEN SEARCH
2	System Admin	CHDIR CLOSE GET_PERMISSIONS_DATA GET_STATUS_DATA READ READ_OPEN SEARCH
5	RootRole	CHDIR CLOSE GET_PERMISSIONS_DATA GET_STATUS_DATA READ READ_OPEN SEARCH
6	LoginRole	CHDIR CLOSE GET_PERMISSIONS_DATA GET_STATUS_DATA READ READ_OPEN SEARCH
7	SshdRole	CHDIR CLOSE GET_PERMISSIONS_DATA GET_STATUS_DATA READ READ_OPEN SEARCH
8	SyslogRole	CHDIR CLOSE GET_PERMISSIONS_DATA GET_STATUS_DATA READ READ_OPEN SEARCH
9	CronRole	CHDIR CLOSE GET_PERMISSIONS_DATA GET_STATUS_DATA READ READ_OPEN SEARCH
10	NamedRole_I	CHDIR CLOSE GET_PERMISSIONS_DATA GET_STATUS_DATA READ READ_OPEN SEARCH
11	NamedRole_F	CHDIR CLOSE GET_PERMISSIONS_DATA GET_STATUS_DATA READ READ_OPEN SEARCH
12	SquidRole_I	CHDIR CLOSE GET_PERMISSIONS_DATA GET_STATUS_DATA READ READ_OPEN SEARCH
13	SquidRole_F	CHDIR CLOSE GET_PERMISSIONS_DATA GET_STATUS_DATA READ READ_OPEN SEARCH
14	VnstatdRole_I	CHDIR CLOSE GET_PERMISSIONS_DATA GET_STATUS_DATA READ READ_OPEN SEARCH
15	VnstatdRole_F	CHDIR CLOSE GET_PERMISSIONS_DATA GET_STATUS_DATA READ READ_OPEN SEARCH
21	ClamdRole	CHDIR CLOSE GET_PERMISSIONS_DATA GET_STATUS_DATA READ READ_OPEN SEARCH

FD Type 11 HomeAdmin

Role	Name	Rights
0	General User	CHDIR CLOSE GET_PERMISSIONS_DATA GET_STATUS_DATA READ READ_OPEN SEARCH
1	Role Admin	APPEND_OPEN CHANGE_OWNER CHDIR CLOSE CREATE DELETE GET_PERMISSIONS_DATA GET_STATUS_DATA LINK_HARD MODIFY_ACCESS_DATA MODIFY_PERMISSIONS_DATA READ READ_WRITE_OPEN READ_OPEN RENAME SEARCH TRUNCATE WRITE WRITE_OPEN LISTEN ACCEPT CONNECT SEND RECEIVE NET_SHUTDOWN IOCTL LOCK MOVETO
5	RootRole	CHDIR CLOSE GET_PERMISSIONS_DATA GET_STATUS_DATA READ READ_OPEN SEARCH
6	LoginRole	CHDIR CLOSE GET_PERMISSIONS_DATA GET_STATUS_DATA READ READ_OPEN SEARCH
7	SshdRole	CHDIR CLOSE GET_PERMISSIONS_DATA GET_STATUS_DATA READ READ_OPEN SEARCH
8	SyslogRole	CHDIR CLOSE GET_PERMISSIONS_DATA GET_STATUS_DATA READ READ_OPEN SEARCH
9	CronRole	CHDIR CLOSE GET_PERMISSIONS_DATA GET_STATUS_DATA READ READ_OPEN SEARCH
10	NamedRole_I	CHDIR CLOSE GET_PERMISSIONS_DATA GET_STATUS_DATA READ READ_OPEN SEARCH
11	NamedRole_F	CHDIR CLOSE GET_PERMISSIONS_DATA GET_STATUS_DATA READ READ_OPEN SEARCH
12	SquidRole_I	CHDIR CLOSE GET_PERMISSIONS_DATA GET_STATUS_DATA READ READ_OPEN SEARCH
13	SquidRole_F	CHDIR CLOSE GET_PERMISSIONS_DATA GET_STATUS_DATA READ READ_OPEN SEARCH
14	VnstatdRole_I	CHDIR CLOSE GET_PERMISSIONS_DATA GET_STATUS_DATA READ READ_OPEN SEARCH
15	VnstatdRole_F	CHDIR CLOSE GET_PERMISSIONS_DATA GET_STATUS_DATA READ READ_OPEN SEARCH
21	ClamdRole	CHDIR CLOSE GET_PERMISSIONS_DATA GET_STATUS_DATA READ READ_OPEN SEARCH

FD Type 12 HomeUser

Role	Name	Rights
0	General User	APPEND_OPEN CHANGE_OWNER CHDIR CLOSE CREATE DELETE GET_PERMISSIONS_DATA GET_STATUS_DATA LINK_HARD MODIFY_ACCESS_DATA MODIFY_PERMISSIONS_DATA READ READ_WRITE_OPEN READ_OPEN RENAME SEARCH TRUNCATE WRITE WRITE_OPEN LISTEN ACCEPT CONNECT SEND RECEIVE NET_SHUTDOWN IOCTL LOCK MOVETO
1	Role Admin	APPEND_OPEN CHANGE_OWNER CHDIR CLOSE CREATE DELETE GET_PERMISSIONS_DATA GET_STATUS_DATA LINK_HARD MODIFY_ACCESS_DATA MODIFY_PERMISSIONS_DATA READ READ_WRITE_OPEN READ_OPEN RENAME SEARCH TRUNCATE WRITE WRITE_OPEN LISTEN ACCEPT CONNECT SEND RECEIVE NET_SHUTDOWN IOCTL LOCK MOVETO
5	RootRole	APPEND_OPEN CHANGE_OWNER CHDIR CLOSE CREATE DELETE GET_PERMISSIONS_DATA GET_STATUS_DATA LINK_HARD MODIFY_ACCESS_DATA MODIFY_PERMISSIONS_DATA READ READ_WRITE_OPEN READ_OPEN RENAME SEARCH TRUNCATE WRITE WRITE_OPEN LISTEN ACCEPT CONNECT SEND RECEIVE NET_SHUTDOWN IOCTL LOCK MOVETO
6	LoginRole	APPEND_OPEN CHANGE_OWNER CHDIR CLOSE CREATE DELETE GET_PERMISSIONS_DATA GET_STATUS_DATA LINK_HARD MODIFY_ACCESS_DATA MODIFY_PERMISSIONS_DATA READ READ_WRITE_OPEN READ_OPEN RENAME SEARCH TRUNCATE WRITE WRITE_OPEN LISTEN ACCEPT CONNECT SEND RECEIVE NET_SHUTDOWN IOCTL LOCK MOVETO
7	SshdRole	APPEND_OPEN CHANGE_OWNER CHDIR CLOSE CREATE DELETE GET_PERMISSIONS_DATA GET_STATUS_DATA LINK_HARD MODIFY_ACCESS_DATA MODIFY_PERMISSIONS_DATA READ READ_WRITE_OPEN READ_OPEN RENAME SEARCH TRUNCATE WRITE WRITE_OPEN LISTEN ACCEPT CONNECT SEND RECEIVE NET_SHUTDOWN IOCTL LOCK MOVETO
8	SyslogRole	APPEND_OPEN CHANGE_OWNER CHDIR CLOSE CREATE DELETE GET_PERMISSIONS_DATA GET_STATUS_DATA LINK_HARD MODIFY_ACCESS_DATA MODIFY_PERMISSIONS_DATA READ READ_WRITE_OPEN READ_OPEN RENAME SEARCH TRUNCATE WRITE WRITE_OPEN LISTEN ACCEPT CONNECT SEND RECEIVE NET_SHUTDOWN IOCTL LOCK MOVETO
9	CronRole	APPEND_OPEN CHANGE_OWNER CHDIR CLOSE CREATE DELETE GET_PERMISSIONS_DATA GET_STATUS_DATA LINK_HARD MODIFY_ACCESS_DATA MODIFY_PERMISSIONS_DATA READ READ_WRITE_OPEN READ_OPEN RENAME SEARCH TRUNCATE WRITE WRITE_OPEN LISTEN ACCEPT CONNECT SEND RECEIVE NET_SHUTDOWN IOCTL LOCK MOVETO
10	NamedRole_I	APPEND_OPEN CHANGE_OWNER CHDIR CLOSE CREATE DELETE GET_PERMISSIONS_DATA GET_STATUS_DATA LINK_HARD MODIFY_ACCESS_DATA MODIFY_PERMISSIONS_DATA READ READ_WRITE_OPEN READ_OPEN RENAME SEARCH TRUNCATE WRITE WRITE_OPEN LISTEN ACCEPT CONNECT SEND RECEIVE NET_SHUTDOWN IOCTL LOCK MOVETO
11	NamedRole_F	APPEND_OPEN CHANGE_OWNER CHDIR CLOSE CREATE DELETE GET_PERMISSIONS_DATA GET_STATUS_DATA LINK_HARD MODIFY_ACCESS_DATA MODIFY_PERMISSIONS_DATA READ READ_WRITE_OPEN READ_OPEN RENAME SEARCH TRUNCATE WRITE WRITE_OPEN LISTEN ACCEPT CONNECT SEND RECEIVE NET_SHUTDOWN IOCTL LOCK MOVETO
12	SquidRole_I	APPEND_OPEN CHANGE_OWNER CHDIR CLOSE CREATE DELETE GET_PERMISSIONS_DATA GET_STATUS_DATA LINK_HARD MODIFY_ACCESS_DATA MODIFY_PERMISSIONS_DATA READ READ_WRITE_OPEN READ_OPEN RENAME SEARCH TRUNCATE WRITE WRITE_OPEN LISTEN ACCEPT CONNECT SEND RECEIVE NET_SHUTDOWN IOCTL LOCK MOVETO
13	SquidRole_F	APPEND_OPEN CHANGE_OWNER CHDIR CLOSE CREATE DELETE GET_PERMISSIONS_DATA GET_STATUS_DATA LINK_HARD MODIFY_ACCESS_DATA MODIFY_PERMISSIONS_DATA READ READ_WRITE_OPEN READ_OPEN RENAME SEARCH TRUNCATE WRITE WRITE_OPEN LISTEN ACCEPT CONNECT SEND RECEIVE NET_SHUTDOWN IOCTL LOCK MOVETO
14	VnstatdRole_I	APPEND_OPEN CHANGE_OWNER CHDIR CLOSE CREATE DELETE GET_PERMISSIONS_DATA GET_STATUS_DATA LINK_HARD MODIFY_ACCESS_DATA MODIFY_PERMISSIONS_DATA READ READ_WRITE_OPEN READ_OPEN RENAME SEARCH TRUNCATE WRITE WRITE_OPEN LISTEN ACCEPT CONNECT SEND RECEIVE NET_SHUTDOWN IOCTL LOCK MOVETO
15	VnstatdRole_F	APPEND_OPEN CHANGE_OWNER CHDIR CLOSE CREATE DELETE GET_PERMISSIONS_DATA GET_STATUS_DATA LINK_HARD MODIFY_ACCESS_DATA MODIFY_PERMISSIONS_DATA READ READ_WRITE_OPEN READ_OPEN RENAME SEARCH TRUNCATE WRITE WRITE_OPEN LISTEN ACCEPT CONNECT SEND RECEIVE NET_SHUTDOWN IOCTL LOCK MOVETO
21	ClamdRole	APPEND_OPEN CHANGE_OWNER CHDIR CLOSE CREATE DELETE GET_PERMISSIONS_DATA GET_STATUS_DATA LINK_HARD MODIFY_ACCESS_DATA MODIFY_PERMISSIONS_DATA READ READ_WRITE_OPEN READ_OPEN RENAME SEARCH TRUNCATE WRITE WRITE_OPEN LISTEN ACCEPT CONNECT SEND RECEIVE NET_SHUTDOWN IOCTL LOCK MOVETO

FD Type 13 Var

Role	Name	Rights
0	General User	APPEND_OPEN CHANGE_OWNER CHDIR CLOSE CREATE DELETE GET_PERMISSIONS_DATA GET_STATUS_DATA LINK_HARD MODIFY_ACCESS_DATA MODIFY_PERMISSIONS_DATA READ READ_WRITE_OPEN READ_OPEN RENAME SEARCH TRUNCATE WRITE WRITE_OPEN LISTEN ACCEPT CONNECT SEND RECEIVE NET_SHUTDOWN IOCTL LOCK MOVETO
1	Role Admin	CHDIR CLOSE GET_PERMISSIONS_DATA GET_STATUS_DATA READ READ_OPEN SEARCH
2	System Admin	CHDIR CLOSE GET_PERMISSIONS_DATA GET_STATUS_DATA READ READ_OPEN SEARCH
4	InitRole	CHDIR CLOSE GET_PERMISSIONS_DATA GET_STATUS_DATA READ READ_OPEN SEARCH
5	RootRole	CHDIR CLOSE GET_PERMISSIONS_DATA GET_STATUS_DATA READ READ_OPEN SEARCH
6	LoginRole	APPEND_OPEN CHANGE_OWNER CHDIR CLOSE CREATE DELETE GET_PERMISSIONS_DATA GET_STATUS_DATA LINK_HARD MODIFY_ACCESS_DATA MODIFY_PERMISSIONS_DATA READ READ_WRITE_OPEN READ_OPEN RENAME SEARCH TRUNCATE WRITE WRITE_OPEN LISTEN ACCEPT CONNECT SEND RECEIVE NET_SHUTDOWN IOCTL LOCK MOVETO
7	SshdRole	APPEND_OPEN CHANGE_OWNER CHDIR CLOSE CREATE DELETE GET_PERMISSIONS_DATA GET_STATUS_DATA LINK_HARD MODIFY_ACCESS_DATA MODIFY_PERMISSIONS_DATA READ READ_WRITE_OPEN READ_OPEN RENAME SEARCH TRUNCATE WRITE WRITE_OPEN LISTEN ACCEPT CONNECT SEND RECEIVE NET_SHUTDOWN IOCTL LOCK MOVETO
8	SyslogRole	APPEND_OPEN CHANGE_OWNER CHDIR CLOSE CREATE DELETE GET_PERMISSIONS_DATA GET_STATUS_DATA LINK_HARD MODIFY_ACCESS_DATA MODIFY_PERMISSIONS_DATA READ READ_WRITE_OPEN READ_OPEN RENAME SEARCH TRUNCATE WRITE WRITE_OPEN LISTEN ACCEPT CONNECT SEND RECEIVE NET_SHUTDOWN IOCTL LOCK MOVETO
9	CronRole	APPEND_OPEN CHANGE_OWNER CHDIR CLOSE CREATE DELETE GET_PERMISSIONS_DATA GET_STATUS_DATA LINK_HARD MODIFY_ACCESS_DATA MODIFY_PERMISSIONS_DATA READ READ_WRITE_OPEN READ_OPEN RENAME SEARCH TRUNCATE WRITE WRITE_OPEN LISTEN ACCEPT CONNECT SEND RECEIVE NET_SHUTDOWN IOCTL LOCK MOVETO
10	NamedRole_I	APPEND_OPEN CHANGE_OWNER CHDIR CLOSE CREATE DELETE GET_PERMISSIONS_DATA GET_STATUS_DATA LINK_HARD MODIFY_ACCESS_DATA MODIFY_PERMISSIONS_DATA READ READ_WRITE_OPEN READ_OPEN RENAME SEARCH TRUNCATE WRITE WRITE_OPEN LISTEN ACCEPT CONNECT SEND RECEIVE NET_SHUTDOWN IOCTL LOCK MOVETO
11	NamedRole_F	APPEND_OPEN CHANGE_OWNER CHDIR CLOSE CREATE DELETE GET_PERMISSIONS_DATA GET_STATUS_DATA LINK_HARD MODIFY_ACCESS_DATA MODIFY_PERMISSIONS_DATA READ READ_WRITE_OPEN READ_OPEN RENAME SEARCH TRUNCATE WRITE WRITE_OPEN LISTEN ACCEPT CONNECT SEND RECEIVE NET_SHUTDOWN IOCTL LOCK MOVETO
12	SquidRole_I	APPEND_OPEN CHANGE_OWNER CHDIR CLOSE CREATE DELETE GET_PERMISSIONS_DATA GET_STATUS_DATA LINK_HARD MODIFY_ACCESS_DATA MODIFY_PERMISSIONS_DATA READ READ_WRITE_OPEN READ_OPEN RENAME SEARCH TRUNCATE WRITE WRITE_OPEN LISTEN ACCEPT CONNECT SEND RECEIVE NET_SHUTDOWN IOCTL LOCK MOVETO
13	SquidRole_F	APPEND_OPEN CHANGE_OWNER CHDIR CLOSE CREATE DELETE GET_PERMISSIONS_DATA GET_STATUS_DATA LINK_HARD MODIFY_ACCESS_DATA MODIFY_PERMISSIONS_DATA READ READ_WRITE_OPEN READ_OPEN RENAME SEARCH TRUNCATE WRITE WRITE_OPEN LISTEN ACCEPT CONNECT SEND RECEIVE NET_SHUTDOWN IOCTL LOCK MOVETO
14	VnstatdRole_I	APPEND_OPEN CHANGE_OWNER CHDIR CLOSE CREATE DELETE GET_PERMISSIONS_DATA GET_STATUS_DATA LINK_HARD MODIFY_ACCESS_DATA MODIFY_PERMISSIONS_DATA READ READ_WRITE_OPEN READ_OPEN RENAME SEARCH TRUNCATE WRITE WRITE_OPEN LISTEN ACCEPT CONNECT SEND RECEIVE NET_SHUTDOWN IOCTL LOCK MOVETO
15	VnstatdRole_F	APPEND_OPEN CHANGE_OWNER CHDIR CLOSE CREATE DELETE GET_PERMISSIONS_DATA GET_STATUS_DATA LINK_HARD MODIFY_ACCESS_DATA MODIFY_PERMISSIONS_DATA READ READ_WRITE_OPEN READ_OPEN RENAME SEARCH TRUNCATE WRITE WRITE_OPEN LISTEN ACCEPT CONNECT SEND RECEIVE NET_SHUTDOWN IOCTL LOCK MOVETO
21	ClamdRole	APPEND_OPEN CHANGE_OWNER CHDIR CLOSE CREATE DELETE GET_PERMISSIONS_DATA GET_STATUS_DATA LINK_HARD MODIFY_ACCESS_DATA MODIFY_PERMISSIONS_DATA READ READ_WRITE_OPEN READ_OPEN RENAME SEARCH TRUNCATE WRITE WRITE_OPEN LISTEN ACCEPT CONNECT SEND RECEIVE NET_SHUTDOWN IOCTL LOCK MOVETO

FD Type 14 VarCache

Role	Name	Rights
13	SquidRole_F	APPEND_OPEN CHANGE_OWNER CHDIR CLOSE CREATE DELETE GET_PERMISSIONS_DATA GET_STATUS_DATA LINK_HARD MODIFY_ACCESS_DATA MODIFY_PERMISSIONS_DATA READ READ_WRITE_OPEN READ_OPEN RENAME SEARCH TRUNCATE WRITE WRITE_OPEN LISTEN ACCEPT CONNECT SEND RECEIVE NET_SHUTDOWN IOCTL LOCK MOVETO

FD Type 15 VarLib

Role	Name	Rights
14	VnstatdRole_I	APPEND_OPEN CHANGE_OWNER CHDIR CLOSE CREATE DELETE GET_PERMISSIONS_DATA GET_STATUS_DATA LINK_HARD MODIFY_ACCESS_DATA MODIFY_PERMISSIONS_DATA READ READ_WRITE_OPEN READ_OPEN RENAME SEARCH TRUNCATE WRITE WRITE_OPEN LISTEN ACCEPT CONNECT SEND RECEIVE NET_SHUTDOWN IOCTL LOCK MOVETO
21	ClamdRole	CHDIR CLOSE GET_PERMISSIONS_DATA GET_STATUS_DATA READ READ_OPEN SEARCH

FD Type 16 VarSpool

Role	Name	Rights

FD Type 17 VarSpoolMail

Role	Name	Rights
0	General User	APPEND_OPEN CHANGE_OWNER CHDIR CLOSE CREATE DELETE GET_PERMISSIONS_DATA GET_STATUS_DATA LINK_HARD MODIFY_ACCESS_DATA MODIFY_PERMISSIONS_DATA READ READ_WRITE_OPEN READ_OPEN RENAME SEARCH TRUNCATE WRITE WRITE_OPEN LISTEN ACCEPT CONNECT SEND RECEIVE NET_SHUTDOWN IOCTL LOCK MOVETO
1	Role Admin	APPEND_OPEN CHANGE_OWNER CHDIR CLOSE CREATE DELETE GET_PERMISSIONS_DATA GET_STATUS_DATA LINK_HARD MODIFY_ACCESS_DATA MODIFY_PERMISSIONS_DATA READ READ_WRITE_OPEN READ_OPEN RENAME SEARCH TRUNCATE WRITE WRITE_OPEN LISTEN ACCEPT CONNECT SEND RECEIVE NET_SHUTDOWN IOCTL LOCK MOVETO
5	RootRole	APPEND_OPEN CHANGE_OWNER CHDIR CLOSE CREATE DELETE GET_PERMISSIONS_DATA GET_STATUS_DATA LINK_HARD MODIFY_ACCESS_DATA MODIFY_PERMISSIONS_DATA READ READ_WRITE_OPEN READ_OPEN RENAME SEARCH TRUNCATE WRITE WRITE_OPEN LISTEN ACCEPT CONNECT SEND RECEIVE NET_SHUTDOWN IOCTL LOCK MOVETO
6	LoginRole	APPEND_OPEN CHANGE_OWNER CHDIR CLOSE CREATE DELETE GET_PERMISSIONS_DATA GET_STATUS_DATA LINK_HARD MODIFY_ACCESS_DATA MODIFY_PERMISSIONS_DATA READ READ_WRITE_OPEN READ_OPEN RENAME SEARCH TRUNCATE WRITE WRITE_OPEN LISTEN ACCEPT CONNECT SEND RECEIVE NET_SHUTDOWN IOCTL LOCK MOVETO
7	SshdRole	APPEND_OPEN CHANGE_OWNER CHDIR CLOSE CREATE DELETE GET_PERMISSIONS_DATA GET_STATUS_DATA LINK_HARD MODIFY_ACCESS_DATA MODIFY_PERMISSIONS_DATA READ READ_WRITE_OPEN READ_OPEN RENAME SEARCH TRUNCATE WRITE WRITE_OPEN LISTEN ACCEPT CONNECT SEND RECEIVE NET_SHUTDOWN IOCTL LOCK MOVETO
8	SyslogRole	APPEND_OPEN CHANGE_OWNER CHDIR CLOSE CREATE DELETE GET_PERMISSIONS_DATA GET_STATUS_DATA LINK_HARD MODIFY_ACCESS_DATA MODIFY_PERMISSIONS_DATA READ READ_WRITE_OPEN READ_OPEN RENAME SEARCH TRUNCATE WRITE WRITE_OPEN LISTEN ACCEPT CONNECT SEND RECEIVE NET_SHUTDOWN IOCTL LOCK MOVETO
9	CronRole	APPEND_OPEN CHANGE_OWNER CHDIR CLOSE CREATE DELETE GET_PERMISSIONS_DATA GET_STATUS_DATA LINK_HARD MODIFY_ACCESS_DATA MODIFY_PERMISSIONS_DATA READ READ_WRITE_OPEN READ_OPEN RENAME SEARCH TRUNCATE WRITE WRITE_OPEN LISTEN ACCEPT CONNECT SEND RECEIVE NET_SHUTDOWN IOCTL LOCK MOVETO
10	NamedRole_I	APPEND_OPEN CHANGE_OWNER CHDIR CLOSE CREATE DELETE GET_PERMISSIONS_DATA GET_STATUS_DATA LINK_HARD MODIFY_ACCESS_DATA MODIFY_PERMISSIONS_DATA READ READ_WRITE_OPEN READ_OPEN RENAME SEARCH TRUNCATE WRITE WRITE_OPEN LISTEN ACCEPT CONNECT SEND RECEIVE NET_SHUTDOWN IOCTL LOCK MOVETO
11	NamedRole_F	APPEND_OPEN CHANGE_OWNER CHDIR CLOSE CREATE DELETE GET_PERMISSIONS_DATA GET_STATUS_DATA LINK_HARD MODIFY_ACCESS_DATA MODIFY_PERMISSIONS_DATA READ READ_WRITE_OPEN READ_OPEN RENAME SEARCH TRUNCATE WRITE WRITE_OPEN LISTEN ACCEPT CONNECT SEND RECEIVE NET_SHUTDOWN IOCTL LOCK MOVETO
12	SquidRole_I	APPEND_OPEN CHANGE_OWNER CHDIR CLOSE CREATE DELETE GET_PERMISSIONS_DATA GET_STATUS_DATA LINK_HARD MODIFY_ACCESS_DATA MODIFY_PERMISSIONS_DATA READ READ_WRITE_OPEN READ_OPEN RENAME SEARCH TRUNCATE WRITE WRITE_OPEN LISTEN ACCEPT CONNECT SEND RECEIVE NET_SHUTDOWN IOCTL LOCK MOVETO
13	SquidRole_F	APPEND_OPEN CHANGE_OWNER CHDIR CLOSE CREATE DELETE GET_PERMISSIONS_DATA GET_STATUS_DATA LINK_HARD MODIFY_ACCESS_DATA MODIFY_PERMISSIONS_DATA READ READ_WRITE_OPEN READ_OPEN RENAME SEARCH TRUNCATE WRITE WRITE_OPEN LISTEN ACCEPT CONNECT SEND RECEIVE NET_SHUTDOWN IOCTL LOCK MOVETO
14	VnstatdRole_I	APPEND_OPEN CHANGE_OWNER CHDIR CLOSE CREATE DELETE GET_PERMISSIONS_DATA GET_STATUS_DATA LINK_HARD MODIFY_ACCESS_DATA MODIFY_PERMISSIONS_DATA READ READ_WRITE_OPEN READ_OPEN RENAME SEARCH TRUNCATE WRITE WRITE_OPEN LISTEN ACCEPT CONNECT SEND RECEIVE NET_SHUTDOWN IOCTL LOCK MOVETO
15	VnstatdRole_F	APPEND_OPEN CHANGE_OWNER CHDIR CLOSE CREATE DELETE GET_PERMISSIONS_DATA GET_STATUS_DATA LINK_HARD MODIFY_ACCESS_DATA MODIFY_PERMISSIONS_DATA READ READ_WRITE_OPEN READ_OPEN RENAME SEARCH TRUNCATE WRITE WRITE_OPEN LISTEN ACCEPT CONNECT SEND RECEIVE NET_SHUTDOWN IOCTL LOCK MOVETO
21	ClamdRole	APPEND_OPEN CHANGE_OWNER CHDIR CLOSE CREATE DELETE GET_PERMISSIONS_DATA GET_STATUS_DATA LINK_HARD MODIFY_ACCESS_DATA MODIFY_PERMISSIONS_DATA READ READ_WRITE_OPEN READ_OPEN RENAME SEARCH TRUNCATE WRITE WRITE_OPEN LISTEN ACCEPT CONNECT SEND RECEIVE NET_SHUTDOWN IOCTL LOCK MOVETO

FD Type 18 VarSpoolCron

Role	Name	Rights
5	RootRole	APPEND_OPEN CHANGE_OWNER CHDIR CLOSE CREATE DELETE GET_PERMISSIONS_DATA GET_STATUS_DATA LINK_HARD MODIFY_ACCESS_DATA MODIFY_PERMISSIONS_DATA READ READ_WRITE_OPEN READ_OPEN RENAME SEARCH TRUNCATE WRITE WRITE_OPEN LISTEN ACCEPT CONNECT SEND RECEIVE NET_SHUTDOWN IOCTL LOCK MOVETO

FD Type 19 VarLog

Role	Name	Rights
2	System Admin	APPEND_OPEN CHANGE_OWNER CREATE DELETE LINK_HARD MODIFY_ACCESS_DATA MODIFY_PERMISSIONS_DATA RENAME TRUNCATE WRITE WRITE_OPEN IOCTL LOCK MOVETO
5	RootRole	CHDIR CLOSE GET_PERMISSIONS_DATA GET_STATUS_DATA READ READ_OPEN SEARCH
7	SshdRole	APPEND_OPEN CHANGE_OWNER CHDIR CLOSE CREATE DELETE GET_PERMISSIONS_DATA GET_STATUS_DATA LINK_HARD MODIFY_ACCESS_DATA MODIFY_PERMISSIONS_DATA READ READ_WRITE_OPEN READ_OPEN RENAME SEARCH TRUNCATE WRITE WRITE_OPEN LISTEN ACCEPT CONNECT SEND RECEIVE NET_SHUTDOWN IOCTL LOCK MOVETO
8	SyslogRole	APPEND_OPEN CHANGE_OWNER CLOSE CREATE DELETE GET_STATUS_DATA LINK_HARD MODIFY_ACCESS_DATA MODIFY_PERMISSIONS_DATA RENAME SEARCH TRUNCATE WRITE WRITE_OPEN IOCTL LOCK MOVETO
11	NamedRole_F	APPEND_OPEN CHANGE_OWNER CREATE DELETE GET_STATUS_DATA LINK_HARD MODIFY_ACCESS_DATA MODIFY_PERMISSIONS_DATA RENAME TRUNCATE WRITE WRITE_OPEN IOCTL LOCK MOVETO
21	ClamdRole	APPEND_OPEN CHANGE_OWNER CREATE DELETE LINK_HARD MODIFY_ACCESS_DATA MODIFY_PERMISSIONS_DATA RENAME TRUNCATE WRITE WRITE_OPEN IOCTL LOCK MOVETO

FD Type 20 VarSpoolPostfix

Role	Name	Rights
19	MailRole_F	APPEND_OPEN CHANGE_OWNER CHDIR CLOSE CREATE DELETE GET_PERMISSIONS_DATA GET_STATUS_DATA LINK_HARD MODIFY_ACCESS_DATA MODIFY_PERMISSIONS_DATA READ READ_WRITE_OPEN READ_OPEN RENAME SEARCH TRUNCATE WRITE WRITE_OPEN LISTEN ACCEPT CONNECT SEND RECEIVE NET_SHUTDOWN IOCTL LOCK MOVETO

FD Type 21 VarRun

Role	Name	Rights
1	Role Admin	CHDIR CLOSE GET_PERMISSIONS_DATA GET_STATUS_DATA READ READ_OPEN SEARCH
7	SshdRole	APPEND_OPEN CHANGE_OWNER CHDIR CLOSE CREATE DELETE GET_PERMISSIONS_DATA GET_STATUS_DATA LINK_HARD MODIFY_ACCESS_DATA MODIFY_PERMISSIONS_DATA READ READ_WRITE_OPEN READ_OPEN RENAME SEARCH TRUNCATE WRITE WRITE_OPEN LISTEN ACCEPT CONNECT SEND RECEIVE NET_SHUTDOWN IOCTL LOCK MOVETO

Rights to 3 DEV types

DEV Type 0 General Device

Role	Name	Rights
0	General User	APPEND_OPEN CLOSE GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ READ_WRITE_OPEN READ_OPEN WRITE WRITE_OPEN SEND IOCTL
1	Role Admin	APPEND_OPEN CLOSE GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_ATTRIBUTE MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ READ_ATTRIBUTE READ_WRITE_OPEN READ_OPEN WRITE WRITE_OPEN SEND IOCTL ADMIN ASSIGN ACCESS_CONTROL SUPERVISOR MODIFY_AUTH CHANGE_AUTHED_OWNER SELECT
2	System Admin	ADD_TO_KERNEL APPEND_OPEN CLOSE GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA MOUNT READ READ_ATTRIBUTE READ_WRITE_OPEN READ_OPEN REMOVE_FROM_KERNEL UMOUNT WRITE WRITE_OPEN SEND IOCTL
3	Auditor	APPEND_OPEN CLOSE GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ READ_WRITE_OPEN READ_OPEN WRITE WRITE_OPEN SEND IOCTL
4	InitRole	ADD_TO_KERNEL APPEND_OPEN CLOSE GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA MOUNT READ READ_ATTRIBUTE READ_WRITE_OPEN READ_OPEN REMOVE_FROM_KERNEL UMOUNT WRITE WRITE_OPEN SEND IOCTL
5	RootRole	APPEND_OPEN CLOSE GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ READ_WRITE_OPEN READ_OPEN WRITE WRITE_OPEN SEND IOCTL
6	LoginRole	APPEND_OPEN CLOSE GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ READ_WRITE_OPEN READ_OPEN WRITE WRITE_OPEN SEND IOCTL
7	SshdRole	APPEND_OPEN CLOSE GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ READ_WRITE_OPEN READ_OPEN WRITE WRITE_OPEN SEND IOCTL
8	SyslogRole	APPEND_OPEN CLOSE GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ READ_WRITE_OPEN READ_OPEN WRITE WRITE_OPEN SEND IOCTL
9	CronRole	APPEND_OPEN CLOSE GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ READ_WRITE_OPEN READ_OPEN WRITE WRITE_OPEN SEND IOCTL
10	NamedRole_I	APPEND_OPEN CLOSE GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ READ_WRITE_OPEN READ_OPEN WRITE WRITE_OPEN SEND IOCTL
11	NamedRole_F	APPEND_OPEN CLOSE GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ READ_WRITE_OPEN READ_OPEN WRITE WRITE_OPEN SEND IOCTL
12	SquidRole_I	APPEND_OPEN CLOSE GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ READ_WRITE_OPEN READ_OPEN WRITE WRITE_OPEN SEND IOCTL
13	SquidRole_F	APPEND_OPEN CLOSE GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ READ_WRITE_OPEN READ_OPEN WRITE WRITE_OPEN SEND IOCTL
14	VnstatdRole_I	APPEND_OPEN CLOSE GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ READ_WRITE_OPEN READ_OPEN WRITE WRITE_OPEN SEND IOCTL
15	VnstatdRole_F	APPEND_OPEN CLOSE GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ READ_WRITE_OPEN READ_OPEN WRITE WRITE_OPEN SEND IOCTL
21	ClamdRole	APPEND_OPEN CLOSE GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ READ_WRITE_OPEN READ_OPEN WRITE WRITE_OPEN SEND IOCTL
999999	System Boot	ADD_TO_KERNEL APPEND_OPEN CLOSE GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA MOUNT READ READ_ATTRIBUTE READ_WRITE_OPEN READ_OPEN REMOVE_FROM_KERNEL UMOUNT WRITE WRITE_OPEN SEND IOCTL

DEV Type 1 Security Device

Role	Name	Rights
1	Role Admin	APPEND_OPEN CLOSE GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_ATTRIBUTE MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ READ_ATTRIBUTE READ_WRITE_OPEN READ_OPEN WRITE WRITE_OPEN SEND IOCTL ADMIN ASSIGN ACCESS_CONTROL SUPERVISOR MODIFY_AUTH CHANGE_AUTHED_OWNER SELECT

DEV Type 2 System Device

Role	Name	Rights
2	System Admin	ADD_TO_KERNEL APPEND_OPEN CLOSE GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA MOUNT READ READ_ATTRIBUTE READ_WRITE_OPEN READ_OPEN REMOVE_FROM_KERNEL UMOUNT WRITE WRITE_OPEN SEND IOCTL
4	InitRole	ADD_TO_KERNEL APPEND_OPEN CLOSE GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA MOUNT READ READ_ATTRIBUTE READ_WRITE_OPEN READ_OPEN REMOVE_FROM_KERNEL UMOUNT WRITE WRITE_OPEN SEND IOCTL
999999	System Boot	ADD_TO_KERNEL APPEND_OPEN CLOSE GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA MOUNT READ READ_ATTRIBUTE READ_WRITE_OPEN READ_OPEN REMOVE_FROM_KERNEL UMOUNT WRITE WRITE_OPEN SEND IOCTL

Rights to 3 IPC types

IPC Type 0 General IPC

Role	Name	Rights
0	General User	ALTER CHANGE_GROUP CHANGE_OWNER CLOSE CREATE DELETE GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ READ_WRITE_OPEN READ_OPEN WRITE WRITE_OPEN BIND LISTEN ACCEPT CONNECT SEND RECEIVE NET_SHUTDOWN IOCTL LOCK
1	Role Admin	ALTER CHANGE_GROUP CHANGE_OWNER CLOSE CREATE DELETE GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_ATTRIBUTE MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ READ_ATTRIBUTE READ_WRITE_OPEN READ_OPEN WRITE WRITE_OPEN BIND LISTEN ACCEPT CONNECT SEND RECEIVE NET_SHUTDOWN IOCTL LOCK ADMIN ASSIGN ACCESS_CONTROL SUPERVISOR MODIFY_AUTH CHANGE_AUTHED_OWNER SELECT
2	System Admin	ALTER CHANGE_GROUP CHANGE_OWNER CLOSE CREATE DELETE GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ READ_ATTRIBUTE READ_WRITE_OPEN READ_OPEN WRITE WRITE_OPEN BIND LISTEN ACCEPT CONNECT SEND RECEIVE NET_SHUTDOWN IOCTL LOCK
3	Auditor	ALTER CHANGE_GROUP CHANGE_OWNER CLOSE CREATE DELETE GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ READ_WRITE_OPEN READ_OPEN WRITE WRITE_OPEN BIND LISTEN ACCEPT CONNECT SEND RECEIVE NET_SHUTDOWN IOCTL LOCK
4	InitRole	ALTER CHANGE_GROUP CHANGE_OWNER CLOSE CREATE DELETE GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ READ_ATTRIBUTE READ_WRITE_OPEN READ_OPEN WRITE WRITE_OPEN BIND LISTEN ACCEPT CONNECT SEND RECEIVE NET_SHUTDOWN IOCTL LOCK
5	RootRole	ALTER CHANGE_GROUP CHANGE_OWNER CLOSE CREATE DELETE GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ READ_WRITE_OPEN READ_OPEN WRITE WRITE_OPEN BIND LISTEN ACCEPT CONNECT SEND RECEIVE NET_SHUTDOWN IOCTL LOCK
6	LoginRole	ALTER CHANGE_GROUP CHANGE_OWNER CLOSE CREATE DELETE GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ READ_WRITE_OPEN READ_OPEN WRITE WRITE_OPEN BIND LISTEN ACCEPT CONNECT SEND RECEIVE NET_SHUTDOWN IOCTL LOCK
7	SshdRole	ALTER CHANGE_GROUP CHANGE_OWNER CLOSE CREATE DELETE GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ READ_WRITE_OPEN READ_OPEN WRITE WRITE_OPEN BIND LISTEN ACCEPT CONNECT SEND RECEIVE NET_SHUTDOWN IOCTL LOCK
8	SyslogRole	ALTER CHANGE_GROUP CHANGE_OWNER CLOSE CREATE DELETE GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ READ_WRITE_OPEN READ_OPEN WRITE WRITE_OPEN BIND LISTEN ACCEPT CONNECT SEND RECEIVE NET_SHUTDOWN IOCTL LOCK
9	CronRole	ALTER CHANGE_GROUP CHANGE_OWNER CLOSE CREATE DELETE GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ READ_WRITE_OPEN READ_OPEN WRITE WRITE_OPEN BIND LISTEN ACCEPT CONNECT SEND RECEIVE NET_SHUTDOWN IOCTL LOCK
10	NamedRole_I	ALTER CHANGE_GROUP CHANGE_OWNER CLOSE CREATE DELETE GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ READ_WRITE_OPEN READ_OPEN WRITE WRITE_OPEN BIND LISTEN ACCEPT CONNECT SEND RECEIVE NET_SHUTDOWN IOCTL LOCK
11	NamedRole_F	ALTER CHANGE_GROUP CHANGE_OWNER CLOSE CREATE DELETE GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ READ_WRITE_OPEN READ_OPEN WRITE WRITE_OPEN BIND LISTEN ACCEPT CONNECT SEND RECEIVE NET_SHUTDOWN IOCTL LOCK
12	SquidRole_I	ALTER CHANGE_GROUP CHANGE_OWNER CLOSE CREATE DELETE GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ READ_WRITE_OPEN READ_OPEN WRITE WRITE_OPEN BIND LISTEN ACCEPT CONNECT SEND RECEIVE NET_SHUTDOWN IOCTL LOCK
13	SquidRole_F	ALTER CHANGE_GROUP CHANGE_OWNER CLOSE CREATE DELETE GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ READ_WRITE_OPEN READ_OPEN WRITE WRITE_OPEN BIND LISTEN ACCEPT CONNECT SEND RECEIVE NET_SHUTDOWN IOCTL LOCK
14	VnstatdRole_I	ALTER CHANGE_GROUP CHANGE_OWNER CLOSE CREATE DELETE GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ READ_WRITE_OPEN READ_OPEN WRITE WRITE_OPEN BIND LISTEN ACCEPT CONNECT SEND RECEIVE NET_SHUTDOWN IOCTL LOCK
15	VnstatdRole_F	ALTER CHANGE_GROUP CHANGE_OWNER CLOSE CREATE DELETE GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ READ_WRITE_OPEN READ_OPEN WRITE WRITE_OPEN BIND LISTEN ACCEPT CONNECT SEND RECEIVE NET_SHUTDOWN IOCTL LOCK
21	ClamdRole	ALTER CHANGE_GROUP CHANGE_OWNER CLOSE CREATE DELETE GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ READ_WRITE_OPEN READ_OPEN WRITE WRITE_OPEN BIND LISTEN ACCEPT CONNECT SEND RECEIVE NET_SHUTDOWN IOCTL LOCK
999999	System Boot	ALTER CHANGE_GROUP CHANGE_OWNER CLOSE CREATE DELETE GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ READ_ATTRIBUTE READ_WRITE_OPEN READ_OPEN WRITE WRITE_OPEN BIND LISTEN ACCEPT CONNECT SEND RECEIVE NET_SHUTDOWN IOCTL LOCK

IPC Type 1 Security IPC

Role	Name	Rights
1	Role Admin	ALTER CHANGE_GROUP CHANGE_OWNER CLOSE CREATE DELETE GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_ATTRIBUTE MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ READ_ATTRIBUTE READ_WRITE_OPEN READ_OPEN WRITE WRITE_OPEN BIND LISTEN ACCEPT CONNECT SEND RECEIVE NET_SHUTDOWN IOCTL LOCK ADMIN ASSIGN ACCESS_CONTROL SUPERVISOR MODIFY_AUTH CHANGE_AUTHED_OWNER SELECT

IPC Type 2 System IPC

Role	Name	Rights
2	System Admin	ALTER CHANGE_GROUP CHANGE_OWNER CLOSE CREATE DELETE GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ READ_ATTRIBUTE READ_WRITE_OPEN READ_OPEN WRITE WRITE_OPEN BIND LISTEN ACCEPT CONNECT SEND RECEIVE NET_SHUTDOWN IOCTL LOCK
4	InitRole	ALTER CHANGE_GROUP CHANGE_OWNER CLOSE CREATE DELETE GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ READ_ATTRIBUTE READ_WRITE_OPEN READ_OPEN WRITE WRITE_OPEN BIND LISTEN ACCEPT CONNECT SEND RECEIVE NET_SHUTDOWN IOCTL LOCK
999999	System Boot	ALTER CHANGE_GROUP CHANGE_OWNER CLOSE CREATE DELETE GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ READ_ATTRIBUTE READ_WRITE_OPEN READ_OPEN WRITE WRITE_OPEN BIND LISTEN ACCEPT CONNECT SEND RECEIVE NET_SHUTDOWN IOCTL LOCK

Rights to 26 SCD types

SCD Type 0 time_strucs

Role	Name	Rights
2	System Admin	GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ_ATTRIBUTE WRITE
4	InitRole	GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ_ATTRIBUTE WRITE
999999	System Boot	GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ_ATTRIBUTE WRITE

SCD Type 1 clock

Role	Name	Rights
2	System Admin	GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ_ATTRIBUTE WRITE
4	InitRole	GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ_ATTRIBUTE WRITE
999999	System Boot	GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ_ATTRIBUTE WRITE

SCD Type 2 host_id

Role	Name	Rights
2	System Admin	GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ_ATTRIBUTE WRITE
4	InitRole	GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ_ATTRIBUTE WRITE
999999	System Boot	GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ_ATTRIBUTE WRITE

SCD Type 3 net_id

Role	Name	Rights
2	System Admin	GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ_ATTRIBUTE WRITE
4	InitRole	GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ_ATTRIBUTE WRITE
999999	System Boot	GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ_ATTRIBUTE WRITE

SCD Type 4 ioports

Role	Name	Rights
2	System Admin	GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ_ATTRIBUTE WRITE
4	InitRole	GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ_ATTRIBUTE WRITE
999999	System Boot	GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ_ATTRIBUTE WRITE

SCD Type 5 rlimit

Role	Name	Rights
0	General User	GET_STATUS_DATA MODIFY_SYSTEM_DATA
1	Role Admin	GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_ATTRIBUTE MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ_ATTRIBUTE WRITE ADMIN ASSIGN ACCESS_CONTROL SUPERVISOR MODIFY_AUTH CHANGE_AUTHED_OWNER SELECT
2	System Admin	GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ_ATTRIBUTE WRITE
3	Auditor	GET_STATUS_DATA MODIFY_SYSTEM_DATA
4	InitRole	GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ_ATTRIBUTE WRITE
5	RootRole	GET_STATUS_DATA MODIFY_SYSTEM_DATA
6	LoginRole	GET_STATUS_DATA MODIFY_SYSTEM_DATA
7	SshdRole	GET_STATUS_DATA MODIFY_SYSTEM_DATA
8	SyslogRole	GET_STATUS_DATA MODIFY_SYSTEM_DATA
9	CronRole	GET_STATUS_DATA MODIFY_SYSTEM_DATA
10	NamedRole_I	GET_STATUS_DATA MODIFY_SYSTEM_DATA
11	NamedRole_F	GET_STATUS_DATA MODIFY_SYSTEM_DATA
12	SquidRole_I	GET_STATUS_DATA MODIFY_SYSTEM_DATA
13	SquidRole_F	GET_STATUS_DATA MODIFY_SYSTEM_DATA
14	VnstatdRole_I	GET_STATUS_DATA MODIFY_SYSTEM_DATA
15	VnstatdRole_F	GET_STATUS_DATA MODIFY_SYSTEM_DATA
21	ClamdRole	GET_STATUS_DATA MODIFY_SYSTEM_DATA
999999	System Boot	GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ_ATTRIBUTE WRITE

SCD Type 6 swap

Role	Name	Rights
2	System Admin	GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ_ATTRIBUTE WRITE
4	InitRole	GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ_ATTRIBUTE WRITE
999999	System Boot	GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ_ATTRIBUTE WRITE

SCD Type 7 syslog

Role	Name	Rights
2	System Admin	GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ_ATTRIBUTE WRITE
4	InitRole	GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ_ATTRIBUTE WRITE
999999	System Boot	GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ_ATTRIBUTE WRITE

SCD Type 8 rsbac

Role	Name	Rights
1	Role Admin	GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_ATTRIBUTE MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ_ATTRIBUTE WRITE ADMIN ASSIGN ACCESS_CONTROL SUPERVISOR MODIFY_AUTH CHANGE_AUTHED_OWNER SELECT
2	System Admin	GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ_ATTRIBUTE WRITE
4	InitRole	GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ_ATTRIBUTE WRITE
999999	System Boot	GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ_ATTRIBUTE WRITE

SCD Type 9 rsbac_log

Role	Name	Rights
1	Role Admin	GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_ATTRIBUTE MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ_ATTRIBUTE WRITE ADMIN ASSIGN ACCESS_CONTROL SUPERVISOR MODIFY_AUTH CHANGE_AUTHED_OWNER SELECT
3	Auditor	GET_STATUS_DATA MODIFY_SYSTEM_DATA
17	RklogdRole_F	GET_STATUS_DATA

SCD Type 10 other

Role	Name	Rights
0	General User	MAP_EXEC
1	Role Admin	MODIFY_PERMISSIONS_DATA SWITCH_LOG SWITCH_MODULE MAP_EXEC ADMIN ASSIGN ACCESS_CONTROL SUPERVISOR MODIFY_AUTH CHANGE_AUTHED_OWNER SELECT
2	System Admin	ADD_TO_KERNEL MODIFY_SYSTEM_DATA MOUNT REMOVE_FROM_KERNEL SHUTDOWN UMOUNT MAP_EXEC
3	Auditor	MAP_EXEC
4	InitRole	ADD_TO_KERNEL MODIFY_SYSTEM_DATA MOUNT REMOVE_FROM_KERNEL SHUTDOWN UMOUNT MAP_EXEC
5	RootRole	MAP_EXEC
6	LoginRole	MAP_EXEC
7	SshdRole	MAP_EXEC
8	SyslogRole	MAP_EXEC
9	CronRole	MAP_EXEC
10	NamedRole_I	MAP_EXEC
11	NamedRole_F	MAP_EXEC
12	SquidRole_I	MAP_EXEC
13	SquidRole_F	MAP_EXEC
14	VnstatdRole_I	MAP_EXEC
15	VnstatdRole_F	MAP_EXEC
21	ClamdRole	MAP_EXEC
999999	System Boot	ADD_TO_KERNEL MODIFY_SYSTEM_DATA MOUNT REMOVE_FROM_KERNEL SHUTDOWN UMOUNT MAP_EXEC

SCD Type 11 kmem

Role	Name	Rights

SCD Type 12 network

Role	Name	Rights
0	General User	GET_STATUS_DATA
1	Role Admin	GET_STATUS_DATA ADMIN ASSIGN ACCESS_CONTROL SUPERVISOR MODIFY_AUTH CHANGE_AUTHED_OWNER SELECT
2	System Admin	GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ_ATTRIBUTE WRITE
3	Auditor	GET_STATUS_DATA
4	InitRole	GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ_ATTRIBUTE WRITE
5	RootRole	GET_STATUS_DATA
6	LoginRole	GET_STATUS_DATA
7	SshdRole	GET_STATUS_DATA
8	SyslogRole	GET_STATUS_DATA
9	CronRole	GET_STATUS_DATA
10	NamedRole_I	GET_STATUS_DATA
11	NamedRole_F	GET_STATUS_DATA
12	SquidRole_I	GET_STATUS_DATA
13	SquidRole_F	GET_STATUS_DATA
14	VnstatdRole_I	GET_STATUS_DATA
15	VnstatdRole_F	GET_STATUS_DATA
21	ClamdRole	GET_STATUS_DATA
999999	System Boot	GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ_ATTRIBUTE WRITE

SCD Type 13 firewall

Role	Name	Rights
1	Role Admin	GET_STATUS_DATA ADMIN ASSIGN ACCESS_CONTROL SUPERVISOR MODIFY_AUTH CHANGE_AUTHED_OWNER SELECT
2	System Admin	GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ_ATTRIBUTE WRITE
4	InitRole	GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ_ATTRIBUTE WRITE
999999	System Boot	GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ_ATTRIBUTE WRITE

SCD Type 14 priority

Role	Name	Rights
2	System Admin	GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ_ATTRIBUTE WRITE
4	InitRole	GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ_ATTRIBUTE WRITE
999999	System Boot	GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ_ATTRIBUTE WRITE

SCD Type 15 sysfs

Role	Name	Rights
1	Role Admin	GET_STATUS_DATA ADMIN ASSIGN ACCESS_CONTROL SUPERVISOR MODIFY_AUTH CHANGE_AUTHED_OWNER SELECT
2	System Admin	GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ_ATTRIBUTE WRITE
4	InitRole	GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ_ATTRIBUTE WRITE
999999	System Boot	GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ_ATTRIBUTE WRITE

SCD Type 16 rsbac_remote_lo

Role	Name	Rights
2	System Admin	GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ_ATTRIBUTE WRITE
4	InitRole	GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ_ATTRIBUTE WRITE
999999	System Boot	GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ_ATTRIBUTE WRITE

SCD Type 17 quota

Role	Name	Rights
2	System Admin	GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ_ATTRIBUTE WRITE
4	InitRole	GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ_ATTRIBUTE WRITE
999999	System Boot	GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ_ATTRIBUTE WRITE

SCD Type 18 sysctl

Role	Name	Rights
2	System Admin	GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ_ATTRIBUTE WRITE
4	InitRole	GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ_ATTRIBUTE WRITE
999999	System Boot	GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ_ATTRIBUTE WRITE

SCD Type 19 nfsd

Role	Name	Rights
2	System Admin	GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ_ATTRIBUTE WRITE
4	InitRole	GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ_ATTRIBUTE WRITE
999999	System Boot	GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ_ATTRIBUTE WRITE

SCD Type 20 ksyms

Role	Name	Rights
2	System Admin	GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ_ATTRIBUTE WRITE
4	InitRole	GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ_ATTRIBUTE WRITE
999999	System Boot	GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ_ATTRIBUTE WRITE

SCD Type 21 mlock

Role	Name	Rights
2	System Admin	GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ_ATTRIBUTE WRITE
4	InitRole	GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ_ATTRIBUTE WRITE
999999	System Boot	GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ_ATTRIBUTE WRITE

SCD Type 22 capability

Role	Name	Rights
2	System Admin	GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ_ATTRIBUTE WRITE
4	InitRole	GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ_ATTRIBUTE WRITE
999999	System Boot	GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ_ATTRIBUTE WRITE

SCD Type 23 kexec

Role	Name	Rights
2	System Admin	GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ_ATTRIBUTE WRITE
4	InitRole	GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ_ATTRIBUTE WRITE
999999	System Boot	GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ_ATTRIBUTE WRITE

SCD Type 24 videomem

Role	Name	Rights
2	System Admin	GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ_ATTRIBUTE WRITE
4	InitRole	GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ_ATTRIBUTE WRITE
999999	System Boot	GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ_ATTRIBUTE WRITE

SCD Type 32 auth_administra

Role	Name	Rights
1	Role Admin	GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_ATTRIBUTE MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ_ATTRIBUTE WRITE ADMIN ASSIGN ACCESS_CONTROL SUPERVISOR MODIFY_AUTH CHANGE_AUTHED_OWNER SELECT

Rights to 3 USER types

USER Type 0 General User

Role	Name	Rights
0	General User	CHANGE_OWNER GET_STATUS_DATA SEARCH
1	Role Admin	CHANGE_GROUP CHANGE_OWNER CREATE DELETE GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_ATTRIBUTE MODIFY_PERMISSIONS_DATA READ READ_ATTRIBUTE RENAME SEARCH WRITE AUTHENTICATE ADMIN ASSIGN ACCESS_CONTROL SUPERVISOR MODIFY_AUTH CHANGE_AUTHED_OWNER SELECT
2	System Admin	CHANGE_OWNER GET_STATUS_DATA SEARCH AUTHENTICATE
3	Auditor	CHANGE_OWNER GET_STATUS_DATA SEARCH
4	InitRole	CHANGE_OWNER GET_PERMISSIONS_DATA GET_STATUS_DATA READ READ_ATTRIBUTE SEARCH AUTHENTICATE
5	RootRole	CHANGE_OWNER GET_STATUS_DATA SEARCH
6	LoginRole	CHANGE_OWNER GET_STATUS_DATA SEARCH
7	SshdRole	CHANGE_OWNER GET_STATUS_DATA SEARCH
8	SyslogRole	CHANGE_OWNER GET_STATUS_DATA SEARCH
9	CronRole	CHANGE_OWNER GET_STATUS_DATA SEARCH
10	NamedRole_I	CHANGE_OWNER GET_STATUS_DATA SEARCH
11	NamedRole_F	CHANGE_OWNER GET_STATUS_DATA SEARCH
12	SquidRole_I	CHANGE_OWNER GET_STATUS_DATA SEARCH
13	SquidRole_F	CHANGE_OWNER GET_STATUS_DATA SEARCH
14	VnstatdRole_I	CHANGE_OWNER GET_STATUS_DATA SEARCH
15	VnstatdRole_F	CHANGE_OWNER GET_STATUS_DATA SEARCH
21	ClamdRole	CHANGE_OWNER GET_STATUS_DATA SEARCH
999999	System Boot	CHANGE_OWNER GET_PERMISSIONS_DATA GET_STATUS_DATA READ READ_ATTRIBUTE SEARCH AUTHENTICATE

USER Type 1 Security User

Role	Name	Rights
1	Role Admin	CHANGE_GROUP CHANGE_OWNER CREATE DELETE GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_ATTRIBUTE MODIFY_PERMISSIONS_DATA READ READ_ATTRIBUTE RENAME SEARCH WRITE AUTHENTICATE ADMIN ASSIGN ACCESS_CONTROL SUPERVISOR MODIFY_AUTH CHANGE_AUTHED_OWNER SELECT
2	System Admin	SEARCH AUTHENTICATE
4	InitRole	CHANGE_OWNER SEARCH AUTHENTICATE
999999	System Boot	CHANGE_OWNER SEARCH AUTHENTICATE

USER Type 2 System User

Role	Name	Rights
1	Role Admin	CHANGE_GROUP CHANGE_OWNER CREATE DELETE GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_ATTRIBUTE MODIFY_PERMISSIONS_DATA READ READ_ATTRIBUTE RENAME SEARCH WRITE AUTHENTICATE ADMIN ASSIGN ACCESS_CONTROL SUPERVISOR MODIFY_AUTH CHANGE_AUTHED_OWNER SELECT
2	System Admin	GET_STATUS_DATA SEARCH AUTHENTICATE
4	InitRole	GET_PERMISSIONS_DATA GET_STATUS_DATA READ READ_ATTRIBUTE SEARCH AUTHENTICATE
999999	System Boot	GET_PERMISSIONS_DATA GET_STATUS_DATA READ READ_ATTRIBUTE SEARCH AUTHENTICATE

Rights to 4 PROCESS types

PROCESS Type 0 General Process

Role	Name	Rights
0	General User	CHANGE_GROUP CHANGE_OWNER CLONE CREATE GET_STATUS_DATA MODIFY_SYSTEM_DATA SEND_SIGNAL TERMINATE TRACE CHANGE_DAC_EFF_OWNER CHANGE_DAC_FS_OWNER CHANGE_DAC_EFF_GROUP CHANGE_DAC_FS_GROUP
1	Role Admin	CHANGE_GROUP CHANGE_OWNER CLONE CREATE GET_STATUS_DATA MODIFY_ATTRIBUTE MODIFY_SYSTEM_DATA READ_ATTRIBUTE SEND_SIGNAL TERMINATE TRACE CHANGE_DAC_EFF_OWNER CHANGE_DAC_FS_OWNER CHANGE_DAC_EFF_GROUP CHANGE_DAC_FS_GROUP ADMIN ASSIGN ACCESS_CONTROL SUPERVISOR MODIFY_AUTH CHANGE_AUTHED_OWNER SELECT
2	System Admin	CHANGE_GROUP CHANGE_OWNER CLONE CREATE GET_STATUS_DATA MODIFY_SYSTEM_DATA READ_ATTRIBUTE SEND_SIGNAL TERMINATE TRACE CHANGE_DAC_EFF_OWNER CHANGE_DAC_FS_OWNER CHANGE_DAC_EFF_GROUP CHANGE_DAC_FS_GROUP
3	Auditor	CHANGE_GROUP CHANGE_OWNER CLONE CREATE GET_STATUS_DATA MODIFY_SYSTEM_DATA SEND_SIGNAL TERMINATE TRACE CHANGE_DAC_EFF_OWNER CHANGE_DAC_FS_OWNER CHANGE_DAC_EFF_GROUP CHANGE_DAC_FS_GROUP
4	InitRole	CHANGE_GROUP CHANGE_OWNER CLONE CREATE GET_STATUS_DATA MODIFY_SYSTEM_DATA READ_ATTRIBUTE SEND_SIGNAL TERMINATE TRACE CHANGE_DAC_EFF_OWNER CHANGE_DAC_FS_OWNER CHANGE_DAC_EFF_GROUP CHANGE_DAC_FS_GROUP
5	RootRole	CHANGE_GROUP CHANGE_OWNER CLONE CREATE GET_STATUS_DATA MODIFY_SYSTEM_DATA SEND_SIGNAL TERMINATE TRACE CHANGE_DAC_EFF_OWNER CHANGE_DAC_FS_OWNER CHANGE_DAC_EFF_GROUP CHANGE_DAC_FS_GROUP
6	LoginRole	CHANGE_GROUP CHANGE_OWNER CLONE CREATE GET_STATUS_DATA MODIFY_SYSTEM_DATA SEND_SIGNAL TERMINATE TRACE CHANGE_DAC_EFF_OWNER CHANGE_DAC_FS_OWNER CHANGE_DAC_EFF_GROUP CHANGE_DAC_FS_GROUP
7	SshdRole	CHANGE_GROUP CHANGE_OWNER CLONE CREATE GET_STATUS_DATA MODIFY_SYSTEM_DATA SEND_SIGNAL TERMINATE TRACE CHANGE_DAC_EFF_OWNER CHANGE_DAC_FS_OWNER CHANGE_DAC_EFF_GROUP CHANGE_DAC_FS_GROUP
8	SyslogRole	CHANGE_GROUP CHANGE_OWNER CLONE CREATE GET_STATUS_DATA MODIFY_SYSTEM_DATA SEND_SIGNAL TERMINATE TRACE CHANGE_DAC_EFF_OWNER CHANGE_DAC_FS_OWNER CHANGE_DAC_EFF_GROUP CHANGE_DAC_FS_GROUP
9	CronRole	CHANGE_GROUP CHANGE_OWNER CLONE CREATE GET_STATUS_DATA MODIFY_SYSTEM_DATA SEND_SIGNAL TERMINATE TRACE CHANGE_DAC_EFF_OWNER CHANGE_DAC_FS_OWNER CHANGE_DAC_EFF_GROUP CHANGE_DAC_FS_GROUP
10	NamedRole_I	CHANGE_GROUP CHANGE_OWNER CLONE CREATE GET_STATUS_DATA MODIFY_SYSTEM_DATA SEND_SIGNAL TERMINATE TRACE CHANGE_DAC_EFF_OWNER CHANGE_DAC_FS_OWNER CHANGE_DAC_EFF_GROUP CHANGE_DAC_FS_GROUP
11	NamedRole_F	CHANGE_GROUP CHANGE_OWNER CLONE CREATE GET_STATUS_DATA MODIFY_SYSTEM_DATA SEND_SIGNAL TERMINATE TRACE CHANGE_DAC_EFF_OWNER CHANGE_DAC_FS_OWNER CHANGE_DAC_EFF_GROUP CHANGE_DAC_FS_GROUP
12	SquidRole_I	CHANGE_GROUP CHANGE_OWNER CLONE CREATE GET_STATUS_DATA MODIFY_SYSTEM_DATA SEND_SIGNAL TERMINATE TRACE CHANGE_DAC_EFF_OWNER CHANGE_DAC_FS_OWNER CHANGE_DAC_EFF_GROUP CHANGE_DAC_FS_GROUP
13	SquidRole_F	CHANGE_GROUP CHANGE_OWNER CLONE CREATE GET_STATUS_DATA MODIFY_SYSTEM_DATA SEND_SIGNAL TERMINATE TRACE CHANGE_DAC_EFF_OWNER CHANGE_DAC_FS_OWNER CHANGE_DAC_EFF_GROUP CHANGE_DAC_FS_GROUP
14	VnstatdRole_I	CHANGE_GROUP CHANGE_OWNER CLONE CREATE GET_STATUS_DATA MODIFY_SYSTEM_DATA SEND_SIGNAL TERMINATE TRACE CHANGE_DAC_EFF_OWNER CHANGE_DAC_FS_OWNER CHANGE_DAC_EFF_GROUP CHANGE_DAC_FS_GROUP
15	VnstatdRole_F	CHANGE_GROUP CHANGE_OWNER CLONE CREATE GET_STATUS_DATA MODIFY_SYSTEM_DATA SEND_SIGNAL TERMINATE TRACE CHANGE_DAC_EFF_OWNER CHANGE_DAC_FS_OWNER CHANGE_DAC_EFF_GROUP CHANGE_DAC_FS_GROUP
21	ClamdRole	CHANGE_GROUP CHANGE_OWNER CLONE CREATE GET_STATUS_DATA MODIFY_SYSTEM_DATA SEND_SIGNAL TERMINATE TRACE CHANGE_DAC_EFF_OWNER CHANGE_DAC_FS_OWNER CHANGE_DAC_EFF_GROUP CHANGE_DAC_FS_GROUP
999999	System Boot	CHANGE_GROUP CHANGE_OWNER CLONE CREATE GET_STATUS_DATA MODIFY_SYSTEM_DATA READ_ATTRIBUTE SEND_SIGNAL TERMINATE TRACE CHANGE_DAC_EFF_OWNER CHANGE_DAC_FS_OWNER CHANGE_DAC_EFF_GROUP CHANGE_DAC_FS_GROUP

PROCESS Type 1 Security Proc

Role	Name	Rights
1	Role Admin	CHANGE_GROUP CHANGE_OWNER CLONE CREATE GET_STATUS_DATA MODIFY_ATTRIBUTE MODIFY_SYSTEM_DATA READ_ATTRIBUTE SEND_SIGNAL TERMINATE TRACE CHANGE_DAC_EFF_OWNER CHANGE_DAC_FS_OWNER CHANGE_DAC_EFF_GROUP CHANGE_DAC_FS_GROUP ADMIN ASSIGN ACCESS_CONTROL SUPERVISOR MODIFY_AUTH CHANGE_AUTHED_OWNER SELECT

PROCESS Type 2 System Process

Role	Name	Rights
2	System Admin	CHANGE_GROUP CHANGE_OWNER CLONE CREATE GET_STATUS_DATA MODIFY_SYSTEM_DATA READ_ATTRIBUTE SEND_SIGNAL TERMINATE TRACE CHANGE_DAC_EFF_OWNER CHANGE_DAC_FS_OWNER CHANGE_DAC_EFF_GROUP CHANGE_DAC_FS_GROUP
4	InitRole	CHANGE_GROUP CHANGE_OWNER CLONE CREATE GET_STATUS_DATA MODIFY_SYSTEM_DATA READ_ATTRIBUTE SEND_SIGNAL TERMINATE TRACE CHANGE_DAC_EFF_OWNER CHANGE_DAC_FS_OWNER CHANGE_DAC_EFF_GROUP CHANGE_DAC_FS_GROUP
999999	System Boot	CHANGE_GROUP CHANGE_OWNER CLONE CREATE GET_STATUS_DATA MODIFY_SYSTEM_DATA READ_ATTRIBUTE SEND_SIGNAL TERMINATE TRACE CHANGE_DAC_EFF_OWNER CHANGE_DAC_FS_OWNER CHANGE_DAC_EFF_GROUP CHANGE_DAC_FS_GROUP

PROCESS Type 999999 Kernel Process

Role	Name	Rights
0	General User	GET_STATUS_DATA TERMINATE
1	Role Admin	CHANGE_GROUP CHANGE_OWNER CLONE CREATE GET_STATUS_DATA MODIFY_ATTRIBUTE MODIFY_SYSTEM_DATA READ_ATTRIBUTE SEND_SIGNAL TERMINATE TRACE CHANGE_DAC_EFF_OWNER CHANGE_DAC_FS_OWNER CHANGE_DAC_EFF_GROUP CHANGE_DAC_FS_GROUP ADMIN ASSIGN ACCESS_CONTROL SUPERVISOR MODIFY_AUTH CHANGE_AUTHED_OWNER SELECT
2	System Admin	CHANGE_GROUP CHANGE_OWNER CLONE CREATE GET_STATUS_DATA MODIFY_SYSTEM_DATA READ_ATTRIBUTE SEND_SIGNAL TERMINATE TRACE CHANGE_DAC_EFF_OWNER CHANGE_DAC_FS_OWNER CHANGE_DAC_EFF_GROUP CHANGE_DAC_FS_GROUP
3	Auditor	CHANGE_GROUP CHANGE_OWNER CLONE CREATE GET_STATUS_DATA MODIFY_SYSTEM_DATA SEND_SIGNAL TERMINATE TRACE CHANGE_DAC_EFF_OWNER CHANGE_DAC_FS_OWNER CHANGE_DAC_EFF_GROUP CHANGE_DAC_FS_GROUP
4	InitRole	CHANGE_GROUP CHANGE_OWNER CLONE CREATE GET_STATUS_DATA MODIFY_SYSTEM_DATA READ_ATTRIBUTE SEND_SIGNAL TERMINATE TRACE CHANGE_DAC_EFF_OWNER CHANGE_DAC_FS_OWNER CHANGE_DAC_EFF_GROUP CHANGE_DAC_FS_GROUP
5	RootRole	GET_STATUS_DATA TERMINATE
6	LoginRole	GET_STATUS_DATA TERMINATE
7	SshdRole	GET_STATUS_DATA TERMINATE
8	SyslogRole	GET_STATUS_DATA TERMINATE
9	CronRole	GET_STATUS_DATA TERMINATE
10	NamedRole_I	GET_STATUS_DATA TERMINATE
11	NamedRole_F	GET_STATUS_DATA TERMINATE
12	SquidRole_I	GET_STATUS_DATA TERMINATE
13	SquidRole_F	GET_STATUS_DATA TERMINATE
14	VnstatdRole_I	GET_STATUS_DATA TERMINATE
15	VnstatdRole_F	GET_STATUS_DATA TERMINATE
21	ClamdRole	GET_STATUS_DATA TERMINATE
999999	System Boot	CHANGE_GROUP CHANGE_OWNER CLONE CREATE GET_STATUS_DATA MODIFY_SYSTEM_DATA READ_ATTRIBUTE SEND_SIGNAL TERMINATE TRACE CHANGE_DAC_EFF_OWNER CHANGE_DAC_FS_OWNER CHANGE_DAC_EFF_GROUP CHANGE_DAC_FS_GROUP

Rights to 1 GROUP types

GROUP Type 0 General Group

Role	Name	Rights
0	General User	GET_STATUS_DATA SEARCH
1	Role Admin	CREATE DELETE GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_ATTRIBUTE MODIFY_PERMISSIONS_DATA READ READ_ATTRIBUTE RENAME SEARCH WRITE ADMIN ASSIGN ACCESS_CONTROL SUPERVISOR MODIFY_AUTH CHANGE_AUTHED_OWNER SELECT
2	System Admin	GET_STATUS_DATA READ SEARCH
3	Auditor	GET_STATUS_DATA SEARCH
5	RootRole	GET_STATUS_DATA SEARCH
6	LoginRole	GET_STATUS_DATA SEARCH
7	SshdRole	GET_STATUS_DATA SEARCH
8	SyslogRole	GET_STATUS_DATA SEARCH
9	CronRole	GET_STATUS_DATA SEARCH
10	NamedRole_I	GET_STATUS_DATA SEARCH
11	NamedRole_F	GET_STATUS_DATA SEARCH
12	SquidRole_I	GET_STATUS_DATA SEARCH
13	SquidRole_F	GET_STATUS_DATA SEARCH
14	VnstatdRole_I	GET_STATUS_DATA SEARCH
15	VnstatdRole_F	GET_STATUS_DATA SEARCH
21	ClamdRole	GET_STATUS_DATA SEARCH

Rights to 3 NETDEV types

NETDEV Type 0 General NETDEV

Role	Name	Rights
0	General User	GET_STATUS_DATA MODIFY_SYSTEM_DATA BIND
1	Role Admin	GET_STATUS_DATA MODIFY_ATTRIBUTE READ_ATTRIBUTE ADMIN ASSIGN ACCESS_CONTROL SUPERVISOR MODIFY_AUTH CHANGE_AUTHED_OWNER SELECT
2	System Admin	GET_STATUS_DATA MODIFY_SYSTEM_DATA READ_ATTRIBUTE BIND
3	Auditor	GET_STATUS_DATA MODIFY_SYSTEM_DATA BIND
4	InitRole	GET_STATUS_DATA MODIFY_SYSTEM_DATA READ_ATTRIBUTE BIND
5	RootRole	GET_STATUS_DATA MODIFY_SYSTEM_DATA BIND
6	LoginRole	GET_STATUS_DATA MODIFY_SYSTEM_DATA BIND
7	SshdRole	GET_STATUS_DATA MODIFY_SYSTEM_DATA BIND
8	SyslogRole	GET_STATUS_DATA MODIFY_SYSTEM_DATA BIND
9	CronRole	GET_STATUS_DATA MODIFY_SYSTEM_DATA BIND
10	NamedRole_I	GET_STATUS_DATA MODIFY_SYSTEM_DATA BIND
11	NamedRole_F	GET_STATUS_DATA MODIFY_SYSTEM_DATA BIND
12	SquidRole_I	GET_STATUS_DATA MODIFY_SYSTEM_DATA BIND
13	SquidRole_F	GET_STATUS_DATA MODIFY_SYSTEM_DATA BIND
14	VnstatdRole_I	GET_STATUS_DATA MODIFY_SYSTEM_DATA BIND
15	VnstatdRole_F	GET_STATUS_DATA MODIFY_SYSTEM_DATA BIND
21	ClamdRole	GET_STATUS_DATA MODIFY_SYSTEM_DATA BIND
999999	System Boot	GET_STATUS_DATA MODIFY_SYSTEM_DATA READ_ATTRIBUTE BIND

NETDEV Type 1 Security NETDEV

Role	Name	Rights
1	Role Admin	GET_STATUS_DATA MODIFY_ATTRIBUTE READ_ATTRIBUTE ADMIN ASSIGN ACCESS_CONTROL SUPERVISOR MODIFY_AUTH CHANGE_AUTHED_OWNER SELECT

NETDEV Type 2 System NETDEV

Role	Name	Rights
1	Role Admin	GET_STATUS_DATA MODIFY_ATTRIBUTE READ_ATTRIBUTE ADMIN ASSIGN ACCESS_CONTROL SUPERVISOR MODIFY_AUTH CHANGE_AUTHED_OWNER SELECT

Rights to 3 NETTEMP types

NETTEMP Type 0 General NETTEMP

Role	Name	Rights
1	Role Admin	CREATE DELETE MODIFY_ATTRIBUTE READ READ_ATTRIBUTE WRITE ADMIN ASSIGN ACCESS_CONTROL SUPERVISOR MODIFY_AUTH CHANGE_AUTHED_OWNER SELECT
2	System Admin	READ
4	InitRole	READ
999999	System Boot	READ

NETTEMP Type 1 Securit NETTEMP

Role	Name	Rights
1	Role Admin	CREATE DELETE MODIFY_ATTRIBUTE READ READ_ATTRIBUTE WRITE ADMIN ASSIGN ACCESS_CONTROL SUPERVISOR MODIFY_AUTH CHANGE_AUTHED_OWNER SELECT

NETTEMP Type 2 System NETTEMP

Role	Name	Rights

Rights to 3 NETOBJ types

NETOBJ Type 0 General NETOBJ

Role	Name	Rights
0	General User	CLOSE CREATE GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ WRITE BIND LISTEN ACCEPT CONNECT SEND RECEIVE NET_SHUTDOWN IOCTL
1	Role Admin	CLOSE CREATE GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_ATTRIBUTE MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ READ_ATTRIBUTE WRITE BIND LISTEN ACCEPT CONNECT SEND RECEIVE NET_SHUTDOWN IOCTL ADMIN ASSIGN ACCESS_CONTROL SUPERVISOR MODIFY_AUTH CHANGE_AUTHED_OWNER SELECT
2	System Admin	CLOSE CREATE GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ READ_ATTRIBUTE WRITE BIND LISTEN ACCEPT CONNECT SEND RECEIVE NET_SHUTDOWN IOCTL
3	Auditor	CLOSE CREATE GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ WRITE BIND LISTEN ACCEPT CONNECT SEND RECEIVE NET_SHUTDOWN IOCTL
4	InitRole	CLOSE CREATE GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ READ_ATTRIBUTE WRITE BIND LISTEN ACCEPT CONNECT SEND RECEIVE NET_SHUTDOWN IOCTL
5	RootRole	CLOSE CREATE GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ WRITE BIND LISTEN ACCEPT CONNECT SEND RECEIVE NET_SHUTDOWN IOCTL
6	LoginRole	CLOSE CREATE GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ WRITE BIND LISTEN ACCEPT CONNECT SEND RECEIVE NET_SHUTDOWN IOCTL
7	SshdRole	CLOSE CREATE GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ WRITE BIND LISTEN ACCEPT CONNECT SEND RECEIVE NET_SHUTDOWN IOCTL
8	SyslogRole	CLOSE CREATE GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ WRITE BIND LISTEN ACCEPT CONNECT SEND RECEIVE NET_SHUTDOWN IOCTL
9	CronRole	CLOSE CREATE GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ WRITE BIND LISTEN ACCEPT CONNECT SEND RECEIVE NET_SHUTDOWN IOCTL
10	NamedRole_I	CLOSE CREATE GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ WRITE BIND LISTEN ACCEPT CONNECT SEND RECEIVE NET_SHUTDOWN IOCTL
11	NamedRole_F	CLOSE CREATE GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ WRITE BIND LISTEN ACCEPT CONNECT SEND RECEIVE NET_SHUTDOWN IOCTL
12	SquidRole_I	CLOSE CREATE GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ WRITE BIND LISTEN ACCEPT CONNECT SEND RECEIVE NET_SHUTDOWN IOCTL
13	SquidRole_F	CLOSE CREATE GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ WRITE BIND LISTEN ACCEPT CONNECT SEND RECEIVE NET_SHUTDOWN IOCTL
14	VnstatdRole_I	CLOSE CREATE GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ WRITE BIND LISTEN ACCEPT CONNECT SEND RECEIVE NET_SHUTDOWN IOCTL
15	VnstatdRole_F	CLOSE CREATE GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ WRITE BIND LISTEN ACCEPT CONNECT SEND RECEIVE NET_SHUTDOWN IOCTL
21	ClamdRole	CLOSE CREATE GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ WRITE BIND LISTEN ACCEPT CONNECT SEND RECEIVE NET_SHUTDOWN IOCTL
999999	System Boot	CLOSE CREATE GET_PERMISSIONS_DATA GET_STATUS_DATA MODIFY_PERMISSIONS_DATA MODIFY_SYSTEM_DATA READ READ_ATTRIBUTE WRITE BIND LISTEN ACCEPT CONNECT SEND RECEIVE NET_SHUTDOWN IOCTL

NETOBJ Type 1 Security NETOBJ

Role	Name	Rights

NETOBJ Type 2 System NETOBJ

Role	Name	Rights

RSBAC 1.4.7 RC Configuration - Jump to top