Introduction to SELinux
27.08.2015 Views
Share Embed Flag

Introduction to SELinux

Introduction to SELinux

Introduction to SELinux

SHOW MORE
SHOW LESS
ePAPER READ
DOWNLOAD ePAPER
itmanage.info

Create successful ePaper yourself

Turn your PDF publications into a flip-book with our unique Google optimized e-Paper software.

START NOW

<strong>SELinux</strong> in the filesystem<br />

• main configuration: /etc/selinux/config<br />

• enabled | disabled (kernel param selinux=0|1 overrides)<br />

• permissive | enforcing mode (kernel param enforcing overrides)<br />

• policy selection – default is targeted<br />

• binary policy<br />

• /etc/selinux//policy/policy. (current version is 18)<br />

• policy sources<br />

• POLICY_SRC=/etc/selinux//src/policy/<br />

• Makefile = used for policy (re)compilation<br />

• file_contexts = type assignment rules<br />

• domains = program policy types & access vec<strong>to</strong>rs<br />

• users = user & role declarations<br />

• flask/security_classes and flask/access_vec<strong>to</strong>rs contain valid classes & ops<br />

• types contains general type & attribute declarations and rules<br />

• macros contains m4 macros used <strong>to</strong> simplify policy writing

logo

products

Resources

Company

Terms of service
Privacy policy
Cookie policy
Cookie settings
Imprint
Change language
Made with love in Switzerland
© 2024 Yumpu.com all rights reserved

Hooray! Your file is uploaded and ready to be published.

Saved successfully!

Ooh no, something went wrong!