Red Hat ENTERPRISE LINUX 4 - SELINUX GUIDE Manual Manual pdf 85 page image
Manuals database logo
manualsdatabase
Your AI-powered manual search engine

Red Hat ENTERPRISE LINUX 4 - SELINUX GUIDE Manual

Also see for ENTERPRISE LINUX 4 - DEVELOPER TOOLS GUIDE: Installation guideInstallation guideTuning guideInstallation guideManual

Page 1 previewPage 2 previewPage 3 previewPage 4 previewPage 5 previewPage 6 previewPage 7 previewPage 8 previewPage 9 previewPage 10 previewPage 11 previewPage 12 previewPage 13 previewPage 14 previewPage 15 previewPage 16 previewPage 17 previewPage 18 previewPage 19 previewPage 20 previewPage 21 previewPage 22 previewPage 23 previewPage 24 previewPage 25 previewPage 26 previewPage 27 previewPage 28 previewPage 29 previewPage 30 previewPage 31 previewPage 32 previewPage 33 previewPage 34 previewPage 35 previewPage 36 previewPage 37 previewPage 38 previewPage 39 previewPage 40 previewPage 41 previewPage 42 previewPage 43 previewPage 44 previewPage 45 previewPage 46 previewPage 47 previewPage 48 previewPage 49 previewPage 50 previewPage 51 previewPage 52 previewPage 53 previewPage 54 previewPage 55 previewPage 56 previewPage 57 previewPage 58 previewPage 59 previewPage 60 previewPage 61 previewPage 62 previewPage 63 previewPage 64 previewPage 65 previewPage 66 previewPage 67 previewPage 68 previewPage 69 previewPage 70 previewPage 71 previewPage 72 previewPage 73 previewPage 74 previewPage 75 previewPage 76 previewPage 77 previewPage 78 previewPage 79 previewPage 80 previewPage 81 previewPage 82 previewPage 83 previewPage 84 previewPage 85 previewPage 86 previewPage 87 previewPage 88 previewPage 89 previewPage 90 previewPage 91 previewPage 92 previewPage 93 previewPage 94 previewPage 95 previewPage 96 previewPage 97 previewPage 98 previewPage 99 previewPage 100 previewPage 101 previewPage 102 previewPage 103 previewPage 104 previewPage 105 previewPage 106 previewPage 107 previewPage 108 previewPage 109 previewPage 110 previewPage 111 previewPage 112 previewPage 113 previewPage 114 previewPage 115 previewPage 116 previewPage 117 previewPage 118 previewPage 119 previewPage 120 previewPage 121 previewPage 122 previewPage 123 previewPage 124 previewPage 125 previewPage 126 previewPage 127 previewPage 128 previewPage 129 previewPage 130 preview
Contents
  1. Table Of Contents
  2. Table Of Contents
  3. SELinux Architectural Overview
  4. SELinux, an Implementation of Flask
  5. SELinux Policy Overview
  6. Where is the Policy
  7. Policy Role in Boot
  8. File System Security Contexts
  9. Object Classes and Permissions
  10. TE Rules - Attributes
  11. TE Rules - Types
  12. TE Rules - Access Vectors
  13. Policy Macros
  14. SELinux Users and Roles
  15. TE Rules - Constraints
  16. Special Interfaces and File Systems
  17. Targeted Policy Overview
  18. Files and Directories of the Targeted Policy
  19. Understanding the File Contexts Files
  20. Common Macros in the Targeted Policy
  21. II. Working With SELinux
  22. Controlling and Maintaining SELinux
  23. Administrator Control of SELinux
  24. Analyst Control of SELinux
  25. Policy Writer Control of SELinux
  26. Tools for Manipulating and Analyzing SELinux
  27. Using seaudit for Audit Log Analysis
  28. Using apol for Policy Analysis
  29. Performance Tuning
  30. Compiling SELinux Policy
  31. What Happens During Policy Build
  32. General Policy Troubleshooting Guidelines
  33. Writing New Policy for a Daemon
  34. Deploying Customized Binary Policy
  35. References
  36. III. Appendix
  37. A. Brief Background and History of SELinux
  38. Index
  39. Colophon
Red Hat ENTERPRISE LINUX 4 - SELINUX GUIDE Manual Manual pdf 85 page image
Chapter 5. Controlling and Maintaining SELinux 715.3.2. Dump or View PolicyWhile there is no formal way to dump the policy in memory, there are several tools which make iteasier to view and analyze policy. Here are three ways of viewing the policy. The binary policy directory at $SELINUX_POLICY/ contains information on Booleans and filecontexts. You can analyze the binary policy with the setools such as apol and seinfo, which arediscussed in Chapter 6 Tools for Manipulating and Analyzing SELinux.You can read more about where the policy files are located starting in Section 2.2 Where is thePolicy?. For a more thorough analysis, nothing equals the policy source, located in $SELINUX_SRC/ anddiscussed extensively in Chapter 2 SELinux Policy Overview and Chapter 3 Targeted PolicyOverview.Standard command line text processing tools and the setools are two essential methods for view-ing and understanding the policy source. Currently, the best method for analyzing SELinux policy is to use the setools. One GUI toolin particular is apol, which provides fairly complex analysis capabilities. This is discussed morethoroughly in Section 6.3 Using apol for Policy Analysis.5.3.3. Dump and View LogsThe SELinux implementation in Red Hat Enterprise Linux 4 routes AVC audit messages to/var/log/messages. You can seek just the audit messages using grep and searching for avc oraudit.As discussed in Section 6.2 Using seaudit for Audit Log Analysis, seaudit is a GUI tool for organiz-ing and analyzing just policy messages. The tool seaudit-report generates text or HTML reportsof audit messages.5.3.4. Viewing AVC StatisticsThe best way to view formatted statistics about the access vector cache is to use avcstat. This isexplained in Section 6.1 Information Gathering Tools.5.4. Policy Writer Control of SELinuxWriting SELinux policy is not a trivial undertaking. The topic cannot easily be covered in a few,simple how-to steps. If you are interested in this topic, read Chapter 7 Compiling SELinux Policy andChapter 8 Customizing and Writing Policy. Those chapters contain information on writing, testing,loading, and validating a policy.
/ 130
Related manuals for Red Hat ENTERPRISE LINUX 4 - DEVELOPER TOOLS GUIDE
Red Hat ENTERPRISE LINUX 4 - SECURITY GUIDE Manual first page preview
Red Hat ENTERPRISE LINUX 4 - SECURITY GUIDE Manual
Red Hat ENTERPRISE LINUX 4 - STEP BY STEP GUIDE Manual first page preview
Red Hat ENTERPRISE LINUX 4 - STEP BY STEP GUIDE Manual
Red Hat ENTERPRISE LINUX 4 Manual first page preview
Red Hat ENTERPRISE LINUX 4 Manual
Red Hat ENTERPRISE LINUX 4 Manual first page preview
Red Hat ENTERPRISE LINUX 4 Manual
Red Hat ENTERPRISE LINUX 3 - SECURITY GUIDE Manual first page preview
Red Hat ENTERPRISE LINUX 3 - SECURITY GUIDE Manual
Red Hat ENTERPRISE LINUX 3 - STEP BY STEP GUIDE Manual first page preview
Red Hat ENTERPRISE LINUX 3 - STEP BY STEP GUIDE Manual
Red Hat ENTERPRISE LINUX 4 - DEVELOPER TOOLS GUIDE Manual first page preview
Red Hat ENTERPRISE LINUX 4 - DEVELOPER TOOLS GUIDE Manual
Red Hat ENTERPRISE LINUX 5.5 - ONLINE STORAGE GUIDE Manual first page preview
Red Hat ENTERPRISE LINUX 5.5 - ONLINE STORAGE GUIDE Manual
Red Hat ENTERPRISE LINUX 4 - USING AS Using Manual first page preview
Red Hat ENTERPRISE LINUX 4 - USING AS Using Manual
Red Hat ENTERPRISE LINUX 4 - USING ID Using Manual first page preview
Red Hat ENTERPRISE LINUX 4 - USING ID Using Manual
This manual is suitable for:
ENTERPRISE LINUX 4 - DEVELOPER TOOLS GUIDE
Manuals database logo
manualsdatabase
Your AI-powered manual search engine