Security Profiles (continued)


Security parameters for the High security profile on UnixWare continued

   Audit (if configured)
      Action if audit write error	shutdown
      Action if audit log is full	switch
      Events audited		id_auth priv process device cov_chan audit 
                			file_access io_cntl printer sched

   Other
      root login on console only			yes
      Console <Ctrl><Alt><Del> allowed	no
      su(1) use logged				yes
      Default umask				077
      UIDs reusable				Deleted UIDs are reserved for 12 months
      Users can schedule jobs			deny
      Home directory permissions		700
      Restricted chown(1)				users cannot change file ownership.
      Remote printing access allowed		no