RSBAC: Extending Linux Security Beyond the Limits documentation:rsbac_handbook:appendixes:rsbac

RSBAC: Extending Linux Security Beyond the Limits documentation:rsbac_handbook:appendixes:rsbac_reference https://www.rsbac.org/ 2026-04-12T14:08:29+00:00 RSBAC: Extending Linux Security Beyond the Limits https://www.rsbac.org/ https://www.rsbac.org/lib/tpl/rsbac/images/favicon.ico text/html 2009-01-12T16:10:23+00:00 Anonymous (anonymous@undisclosed.example.com) documentation:rsbac_handbook:appendixes:rsbac_reference:error_codes https://www.rsbac.org/documentation/rsbac_handbook/appendixes/rsbac_reference/error_codes?rev=1231776623&do=diff Error Codes RSBAC returns specific error codes on internal functions as well as RSBAC system calls. The following errors are defined: Code Reason EPERM Same as Linux EPERM: Permission denied. EACCESS RSBAC dir access failed internally EREADFAILED text/html 2009-11-12T13:22:56+00:00 Anonymous (anonymous@undisclosed.example.com) documentation:rsbac_handbook:appendixes:rsbac_reference:kernel_parameters https://www.rsbac.org/documentation/rsbac_handbook/appendixes/rsbac_reference/kernel_parameters?rev=1258032176&do=diff Kernel Boot Parameters The RSBAC kernel accepts the following boot parameters: General * rsbac_no_defaults: suppress creation of default settings, useful for restore from existing backup. Warning: An unconfigured system will only come up in softmode or maint mode, and softmode will produce loads of logging (see rsbac_nosyslog option text/html 2010-10-05T10:48:46+00:00 Anonymous (anonymous@undisclosed.example.com) documentation:rsbac_handbook:appendixes:rsbac_reference:proc_interface https://www.rsbac.org/documentation/rsbac_handbook/appendixes/rsbac_reference/proc_interface?rev=1286275726&do=diff proc Interface If enabled in the kernel configuration, RSBAC adds one directory to the main proc dir: /proc/rsbac-info. Since proc is treated as a normal read-only fs, rsbac could not be used. All successful write accesses are logged via syslog at KERN_INFO level. The rsbac-info dir contains the following entries: text/html 2009-01-13T12:35:05+00:00 Anonymous (anonymous@undisclosed.example.com) documentation:rsbac_handbook:appendixes:rsbac_reference:targets_and_requests https://www.rsbac.org/documentation/rsbac_handbook/appendixes/rsbac_reference/targets_and_requests?rev=1231850105&do=diff Targets and Requests RSBAC restricts access by subjects to objects. The subjects are always processes, acting on the behalf of a user with certain attributes, like system_role etc. Targets Objects in RSBAC are called (Access) Targets. They are grouped in Target Types. The following types are defined: