VMS Help Sys Parameters, SECURITY_POLICY  *Conan The Librarian (sorry for the slow response - running on an old VAX)

    SECURITY_POLICY allows a system to run in a C2 or B1
    configuration and to subset out particular pieces of
    functionality-to exclude functionality that is outside the
    evaluated configuration or to preserve compatibility with
    previous versions of the operating system. See the OpenVMS Guide
    to System Security for further information about the C2 and B1
    evaluated configurations.

    The following bits are defined:

    Bit   Description

    0     Allows DECwindows to display PostScript extensions

    1     Allows multiple user names to connect to DECW$SERVER

    2     Allows unevaluated DECwindows transports (such as TCP/IP)

    3     Allows $SIGPRC and $PRCTERM to span job trees

    4     Allows security profile changes to protected objects on
          a local node when the object server is absent and cannot
          update the cluster database VMS$OBJECTS.DAT

    5     Allows creation of protected objects on a local node when
          the object server is absent and cannot update the cluster
          database VMS$OBJECTS.DAT

    6     Allows SPAWN or LIB$SPAWN commands in CAPTIVE accounts

    7     Allows intrusions on a clusterwide or local basis (If the
          bit is cleared, intrusions are clusterwide.)

    The default value of 7 preserves compatibility with existing
    DECwindows Motif behavior. A value of 0 disables all unevaluated
    configurations.