prm2scomp
Syntax:
prm2scomp -pprmpath-sscomppath[-i]
The prm2scomp command generates a minimal configuration for the
Table 29 describes the available options.
Table 29 prm2scomp options/parameters
Option/parameter | Description |
| Uses the PRM configuration file specified by prmpath to generate the Security |
| Containment configuration. prm2scomp adds SCOMP records to this file to |
| assign the generated compartments to the PRM groups from which they were |
| generated. |
| prmpath cannot specify the currently running configuration. |
Saves the generated Security Containment configuration to the file given by | |
| scmpath. |
| This file must not already exist and cannot be in a directory that is owned by |
| a user other than root or is writable by a user other than owner. |
Run prm2scomp interactively and assign network interfaces to the secure | |
| compartments. (Network interfaces are defined in the file |
| /etc/rc.config.d/netconf.) |
| For information on the prompts that prm2scomp generates in interactive mode, |
| see the prm2scomp(1) manpage. |
scomp2prm
Syntax:
scomp2prm [-m] -pprmpath
The scomp2prm command generates a minimal PRM configuration from a running Security Containment system.
Table 30 describes the available options.
Table 30 scomp2prm options/parameters
Options/parameters | Description |
Include memory records for each PRM group in the generated PRM configuration | |
| file. Each group’s memory allocation is set to the same value. |
Save the generated PRM configuration to the file given by prmpath. |
srpgen
Syntax:
srpgen [-m] -fbasepath
The
srpgen generates minimal configuration files for both Security Containment and PRM based on user input. For each SRP name entered, a secure compartment and a PRM group is added to the configuration files.
Table 31describes the available options.
114 Command reference
