Current File : //etc/security/device_policy

#
# Device policy configuration file.   When devices are opened the
# additional access controls in this file are enforced.
#
# The format of this file is subject to change without notice.
#
# Default open privileges, must be first entry in the file.
#

*		read_priv_set=none		write_priv_set=none
md:admin					write_priv_set=sys_config
biosdrv:*	write_priv_set=all
bridge:*	read_priv_set=net_rawaccess	write_priv_set=net_rawaccess
cmdk:*	tpd_member=true
fp:*	tpd_member=true
fssnap:ctl	read_priv_set=sys_config	write_priv_set=sys_config
icmp:*	read_priv_set=net_icmpaccess	write_priv_set=net_icmpaccess
icmp6:*	read_priv_set=net_icmpaccess	write_priv_set=net_icmpaccess
ip:*	read_priv_set=net_rawaccess	write_priv_set=net_rawaccess
ip6:*	read_priv_set=net_rawaccess	write_priv_set=net_rawaccess
ipf:*	read_priv_set=sys_ip_config	write_priv_set=sys_ip_config
ipnet:*	read_priv_set=net_observability	write_priv_set=net_observability
ipsecah:*	read_priv_set=sys_ip_config	write_priv_set=sys_ip_config
ipsecesp:*	read_priv_set=sys_ip_config	write_priv_set=sys_ip_config
keysock:*	read_priv_set=sys_ip_config	write_priv_set=sys_ip_config
mm:allkmem	read_priv_set=all	write_priv_set=all
mm:kmem	read_priv_set=none	write_priv_set=all
mm:mem	read_priv_set=none	write_priv_set=all
openeepr:*	write_priv_set=all
physmem:*	write_priv_set=all
random:*	write_priv_set=sys_devices
scsi_vhci:devctl	write_priv_set=sys_devices
sd:*	tpd_member=true
sgen:*	tpd_member=true
spdsock:*	read_priv_set=sys_ip_config	write_priv_set=sys_ip_config
uefi_rt:uefi_rt	read_priv_set=all	write_priv_set=all
md:*	tpd_member=true
xsvc:*	read_priv_set=all	write_priv_set=all	tpd_member=false