acc_vector(4)
NAME
acc_vector − description of access vectors
DESCRIPTION
The acc_vector file contains for each user or group the following information:
numerical user ID
This is the user’s ID in the system and it must be unique.
numerical group ID
This is the number of the group that the user belongs to.
bit vectorThis is the bit vector in hexadecimal format for the user or group.
The acc_vector is normally changed by using the setvec(1) program. Either user ID or group ID must be present. If both are present, then the user ID will be used by utilities which implement access vectors.
Here is a sample /etc/acc_vector file:
4807::0cd7
:100:02615
4827:900:01000
:200:03ef8
4909::03fe7
:9:02005
The acc_vector file resides in the /etc directory.
VECTOR DEFINITIONS
The following table describes the currently defined access vectors. Note that some of these are only valid for CX/SX. In almost all cases, having an access vector allows the calling of a system service with parameters which would otherwise be restricted to only the super user.
| Symbol | Bit | Meaning |
| ACC_SET_VEC | 0 | (CX/SX only) Allow users to set program sticky bit |
| ACC_MAC_EXP | 1 | (CX/SX only) Exempt from all MAC checks |
| ACC_DAC_EXP | 2 | Exempt from DAC checks |
| ACC_FBS | 3 | (CX/SX only) Frequency Based Scheduler and PM |
| ACC_SHMBIND | 4 | Allow use of the shmbind service |
| ACC_NAMEPID | 5 | (CX/SX only) Allow use of the namepid service |
| ACC_USERMAP | 6 | Allow use of the usermap RT service for DR |
| ACC_SETPRI | 7 | Allow unlimited use of nice and setpriority |
| ACC_AUDIT | 8 | (CX/SX only) start, stop, modify SAT (not used) |
| ACC_PLOCK | 9 | Lock pages into memory |
| ACC_KILL | 10 | Send signal to any process regardless of owner |
| ACC_MPADVISE | 11 | Allow unlimited use of mpadvise service |
| ACC_IPCCTL | 12 | Allow unlimited modification of IPC structs |
| ACC_REBOOT | 13 | Allow use of reboot service |
| ACC_HIRESTMODE | 14 | Allow use of hirestmode service for _M88K |
| ACC_ALLOWTOGGLE | 15 | Allow an SX user to toggle effective vector |
| ACC_USERINT | 16 | Allow use of user level interrupt routines |
| ACC_PTATTACH | 17 | Allow to ptrace attach to a running process |
| ACC_RAWETH | 18 | Allow use of raw link-level ethernet controllers |
| ACC_CONNECT | 19 | (CX/SX only) Allow socket bind/connect to port > 1024 |
NOTES
Access to this file should be read-only.
FILES
/etc/acc_vector /usr/include/sys/acc_vec.h
SEE ALSO
setaccvec(2)
CX/UX Programmer’s Reference Manual.
CX/UX Programmer’s Reference Manual