21.2. Files Related to SELinux
The following sections describe SELinux configuration files and related file systems.
21.2.1. The /selinux/
Pseudo-File System
The
/selinux/
pseudo-file system contains commands that are most commonly used by the kernel subsystem. This type of file system is similar to the /proc/
pseudo-file system.
In most cases, administrators and users do not need to manipulate this component compared to other SELinux files and directories.
The following example shows sample contents of the
/selinux/
directory:
-rw-rw-rw- 1 root root 0 Sep 22 13:14 access dr-xr-xr-x 1 root root 0 Sep 22 13:14 booleans --w------- 1 root root 0 Sep 22 13:14 commit_pending_bools -rw-rw-rw- 1 root root 0 Sep 22 13:14 context -rw-rw-rw- 1 root root 0 Sep 22 13:14 create --w------- 1 root root 0 Sep 22 13:14 disable -rw-r--r-- 1 root root 0 Sep 22 13:14 enforce -rw------- 1 root root 0 Sep 22 13:14 load -r--r--r-- 1 root root 0 Sep 22 13:14 mls -r--r--r-- 1 root root 0 Sep 22 13:14 policyvers -rw-rw-rw- 1 root root 0 Sep 22 13:14 relabel -rw-rw-rw- 1 root root 0 Sep 22 13:14 user
For example, running the
cat
command on the enforce
file reveals either a 1
for enforcing mode or 0
for permissive mode.