Setting up RSBAC Decision Modules

Basically, all RSBAC decision modules are independent from each other. However, some exceptions exist and are explicitely mentioned in the module descriptions. E.g., AUTH settings can also be controlled by all other modules, depending on their kernel configuration.

All modules have attributes at various targets, some have additional tools to setup extra configuration items like roles or groups.

Authenticated User (AUTH)

Role Compatibility (RC)

Jail (JAIL)

Linux Capabilities (CAP)

Page Exec (PAX)

File Flags (FF)

Resource Control (RES)

Access Control Lists (ACL)

Mandatory Access Contol (MAC)

Privacy Model (PM)

Dazuko Interface (DAZ)



Table of Contents: RSBAC Handbook
Previous: Breaking Requirements into Designs
Next: AUTH
Alternative: Administration Examples