SELinux: differenze tra le versioni
Jump to navigation
Jump to search
(→RHEL) |
|||
Riga 28: | Riga 28: | ||
==systemd== |
==systemd== |
||
Systemd consente di modificare il contesto in cui gira un processo. |
Systemd consente di modificare il contesto in cui gira un processo. |
||
https://access.redhat.com/documentation/en-us/red_hat_enterprise_linux/7/html/selinux_users_and_administrators_guide/chap-security-enhanced_linux-systemd_access_control |
|||
[[Categoria:Unix]] |
[[Categoria:Unix]] |
Versione delle 19:05, 10 nov 2022
RHEL
semanage fcontext --list
grep nginx /etc/selinux/targeted/contexts/files/file_contexts
ls -laZ /etc/nginx/html/
https://www.cloudinsidr.com/content/tip-of-the-day-how-to-find-the-correct-selinux-security-contexts-and-adjust-selinux-labels-on-your-linux-system/
https://www.systutorials.com/docs/linux/man/8-systemd_selinux/
Porcata:
Easy but bad solution, allow init_t to run in permissive mode. At least you don't have to run the whole system in permissive mode...
Enable: # semanage permissive -a init_t
Disable: # semanage permissive -d init_t
systemd
Systemd consente di modificare il contesto in cui gira un processo.
https://access.redhat.com/documentation/en-us/red_hat_enterprise_linux/7/html/selinux_users_and_administrators_guide/chap-security-enhanced_linux-systemd_access_control