selinux
Differences
This shows you the differences between two versions of the page.
| Both sides previous revisionPrevious revisionNext revision | Previous revision | ||
| selinux [2015/09/21 07:34] – luke7858 | selinux [2024/05/23 07:26] (current) – external edit 127.0.0.1 | ||
|---|---|---|---|
| Line 35: | Line 35: | ||
| \\ | \\ | ||
| <sxh bash> | <sxh bash> | ||
| - | /.autolabel | + | /.autorelabel |
| </ | </ | ||
| When the system reboots then this file will cause the relabel to happen early in the boot process. | When the system reboots then this file will cause the relabel to happen early in the boot process. | ||
| Line 41: | Line 41: | ||
| \\ | \\ | ||
| \\ | \\ | ||
| - | SE Policies | + | **__SE Policie Control__** |
| \\ | \\ | ||
| - | <sxh bash> | + | <sxh bash> |
| \\ | \\ | ||
| E.g. | E.g. | ||
| Line 49: | Line 49: | ||
| You are able to target the following daemons: dhcpd, httpd (apache.te), | You are able to target the following daemons: dhcpd, httpd (apache.te), | ||
| <sxh bash> | <sxh bash> | ||
| + | \\ | ||
| + | You are able to control policy enforcement for daemons using boolean values: | ||
| + | \\ | ||
| + | Value 1 - disabled SELinux protection for a daemon. | ||
| + | \\ | ||
| + | \\ | ||
| + | \\ | ||
| + | **__List SELinux Booleans__** | ||
| + | ^ SEBool Value^Meaning | | ||
| + | | 0 | Enabled | ||
| + | | 1 | Disabled | | ||
| + | \\ | ||
| + | The following command lists all SELinux booleans | ||
| + | <sxh bash> | ||
| + | getsebool -a | ||
| + | </ | ||
| + | The following command is slightly better, you can view default preferences. EG. will is start on boot | ||
| + | <sxh bash> | ||
| + | semanage boolean -l | grep httpd | ||
| + | </ | ||
| + | The following command | ||
selinux.1442820897.txt.gz · Last modified: 2024/05/23 07:26 (external edit)