Published on

Linux SELinux

Authors
  • Name
    Jackson Chen

audit2allow

# generate SELinux policy allow/dontaudit rules from logs of denied operations
audit2allow

# translates SELinux audit messages into a description of why the access was denied (audit2allow -w)
audit2allow -w
audit2why

selinux-port

semanage-port - SELinux Policy Management port mapping tool

selinux-port  -a  -t

Usefult commands

semanage boolean -l | grep
semanage fcontext -l
semanage port -l | grep 53
semanage permissive -l

How to fix / update system and then enable selinux

1. ssh to the system
2. vi /etc/selinux/config       # disabling selinux
3. reboot
4. update machine
5. enable selinux
6. reboot           # It will reconfigure/enable  all partitions, take few minutes
Discuss on TwitterView on GitHub