NAME SECURITY_LABEL - define or change a security label applied to an object SYNOPSIS SECURITY ... argtype [ , ... ] ] ORDER BY [ argmode ] [ argname ] argtype [ , ... ] DESCRIPTIO…RETURNS NULL ON NULL INPUT | STRICT } | { [ EXTERNAL ] SECURITY INVOKER | [ EXTERNAL ] SECURITY DEFINER } | PARALLEL { UNSAFE | RESTRICTED ... executes queries against views create…WITH [ CASCADED | LOCAL ] CHECK OPTION (see below). security_barrier (boolean) This should be used ... view is intended to provide row-level security. See Section 39.5 for full det…hosts, this option enables receiving of the security context of the peer socket ... ancillary message of type SCM_SECURITY retrieved using recvmsg (2). This option is supported onl…should not rely on this feature for security. When creating a new socket, the owner ... PASSSEC Enables receiving of the SELinux security label of the peer socket in an ancillaryCREATE_POLICY - define a new row-level security policy for a table SYNOPSIS CREATE POLICY ... POLICY command defines a new row-level security policy for a table. Note thatvarious kernel components to retain or cache security data, authentication keys, encryption keys, and other ... owning group ID, and a security label. Each key also has a set of pe…functionality to a filesystem—for example, additional security features such as Access Control Lists (ACLs ... namespace may differ to another. Currently, the security , system , t…children. Because Landlock is a stackable Linux Security Module (LSM), it makes it possible ... create safe security sandboxes as new security layers in addition to the existing sy…RULE rewrite_rule_name DISABLE ROW LEVEL SECURITY ENABLE ROW LEVEL SECURITY FORCE ROW LEVEL ... SECURITY NO FORCE ROW LEVEL SECURITY CLUSTER ON index_name SET WITHOUT CLUSTER SET W…state changes. Implemented for the Smack Linux Security Module (LSM). CAP_MAC_OVERRIDE (since Linux ... resource limit; • perform operations on trusted and security extended attrib…STRICT IMMUTABLE | STABLE | VOLATILE [ NOT ] LEAKPROOF [ EXTERNAL ] SECURITY INVOKER | [ EXTERNAL ] SECURITY DEFINER PARALLEL { UNSAFE | RESTRICTED ... Note that if the function is…name where action is one of: [ EXTERNAL ] SECURITY INVOKER | [ EXTERNAL ] SECURITY DEFINER SET configuration_parameter ... Note that if the procedure is marked SECURITY DEFINER, it…name | TRANSFORM { FOR TYPE type_name } [, ... ] | [ EXTERNAL ] SECURITY INVOKER | [ EXTERNAL ] SECURITY DEFINER | SET configuration_parameter ... this depends on the implementatio…NAME DROP_POLICY - remove a row-level security policy from a table SYNOPSIS DROP POLICY ... table still has row-level security enabled via ALTER TABLE , then the default-deny polic…pseudo-random number. From a security point of view, this helper uses its own pseudo ... execute given programs in conditional blocks. For security reasons, there is an upper limitnamespaces, see namespaces (7). User namespaces isolate security-related identifiers and attributes, in particular, user ... since Linux 5.12. It eliminates an earlier security bug…change the definition of a row-level security policy SYNOPSIS ALTER POLICY name ON table ... definition of an existing row-level security policy. Note that ALTER POLICY only allowspossible because of the many security risks of having a password written down ... Efforts to aid this convergence are encouraged. Security A URI does not in itself poseAUTHORS .\" .Sh CAVEATS .\" .Sh BUGS .\" .Sh SECURITY CONSIDERATIONS .\" Not used in OpenBSD. The sections ... arounds should be described in this section. SECURITY CONSIDERATIONS …