Daemon Sandboxing and Secpolicytools in ESXi
ESXi uses daemon sandboxing as a means of access control between Userworlds(hostd, vpxa, etc.) and Objects(Files, directories, network sockets, etc.) Secpolicytools helps you list and tweak the security policies that are defiend under each domain(daemon sandbox) [root@esx01:~] secpolicytools -h Usage: secpolicytools <options> -r|--reset Reset all policy rules. -p|--load-policy[policy dir] Load a predefined policy. A default dir of /etc/vmware/secpolicy will be used. -d|--display-policy Display the current policy. -D|--lookup-domain <label> Lookup the value of a domain label....