Differences
This shows you the differences between two versions of the page.
| Both sides previous revision Previous revision Next revision | Previous revision | ||
| selinux [2019/03/15 10:34] – [Creation of selinux module] dani | selinux [2024/11/30 11:28] (current) – [Creation of selinux module] admin | ||
|---|---|---|---|
| Line 1: | Line 1: | ||
| ====== SELinux ====== | ====== SELinux ====== | ||
| + | This document applies to Fedora 29. But, all should work on CentOS/REL 7. | ||
| ===== General ===== | ===== General ===== | ||
| Before you can work with all the selinux tools, you must install the following packages first: | Before you can work with all the selinux tools, you must install the following packages first: | ||
| Line 420: | Line 420: | ||
| cp local_$p.pp / | cp local_$p.pp / | ||
| </ | </ | ||
| + | |||
| + | <WRAP center round important 60%> | ||
| + | It's a good idea to use a prefix for the module name (in my case: '' | ||
| + | </ | ||
| + | |||
| <WRAP center round tip 60%> | <WRAP center round tip 60%> | ||
| If you want to create a module for more than one binary (because they are part of an application), | If you want to create a module for more than one binary (because they are part of an application), | ||
| </ | </ | ||
| + | ===== States of selinux ===== | ||
| + | * State of '' | ||
| + | sestatus | ||
| + | SELinux status: | ||
| + | SELinuxfs mount: | ||
| + | SELinux root directory: | ||
| + | Loaded policy name: | ||
| + | Current mode: | ||
| + | Mode from config file: permissive | ||
| + | Policy MLS status: | ||
| + | Policy deny_unknown status: | ||
| + | Memory protection checking: | ||
| + | Max kernel policy version: | ||
| + | </ | ||
| + | * List all loaded '' | ||
| + | semodule -l | ||
| + | </ | ||