Selinux

From TheBeard Science Project Wiki
Jump to: navigation, search 
packages:
	policycoreutils-gui - selinux gui tool
	system-config-selinux
	system-config-firewall
	
configs:
	/selinux
	/etc/selinux/config
	/etc/selinux/targeted - targeted rules

commands:
	getenforce - show current mode
	getsebool -a - show boolean list (grep it)
	sestatus -v - show general selinux info
	setenforce <mode> - set mode (enforcing, permissive, disabled)
	setsebool <boolean_value> <on/off> - change boolean value
		-P - set permanent/boot. default is only temporary

config args:
	SELINUX = <enforcing|permissive|disabled>
	SELINUXTYPE = <targeted|strict>
		targeted - only targeted network daemons
		strict - all daemons
Retrieved from "https://beardedmaker.com/wiki/index.php?title=Selinux&oldid=160"