Red Hat SummitCe contenu n'est pas disponible dans la langue sélectionnée.
22.3. Booleans
SELinux is based on the least level of access required for a service to run. Services can be run in a variety of ways; therefore, you need to specify how you run your services. Use the following Booleans to set up SELinux:
rsync_anon_write- Having this Boolean enabled allows
rsyncin thersync_tdomain to manage files, links and directories that have a type ofpublic_content_rw_t. Often these are public files used for public file transfer services. Files and directories must be labeled this type. rsync_client- Having this Boolean enabled allows
rsyncto initiate connections to ports defined asrsync_port_t, as well as allowing the daemon to manage files, links, and directories that have a type ofrsync_data_t. Note thatrsyncmust be in thersync_tdomain in order for SELinux to enact its control over it. The configuration example in this chapter demonstratesrsyncrunning in thersync_tdomain. rsync_export_all_ro- Having this Boolean enabled allows
rsyncin thersync_tdomain to export NFS and CIFS volumes with read-only access to clients.
Note
Due to the continuous development of the SELinux policy, the list above might not contain all Booleans related to the service at all times. To list them, enter the following command:
Copy to Clipboard
Copied!
Toggle word wrap
Toggle overflow
Enter the following command to view description of a particular Boolean:
Copy to Clipboard
Copied!
Toggle word wrap
Toggle overflow
Note that the additional policycoreutils-devel package providing the
getsebool -a | grep service_name
~]$ getsebool -a | grep service_namesepolicy booleans -b boolean_name
~]$ sepolicy booleans -b boolean_namesepolicy utility is required for this command to work.
'%20d='M201.5%20305.5c-13.8%200-24.9-11.1-24.9-24.6%200-13.8%2011.1-24.9%2024.9-24.9%2013.6%200%2024.6%2011.1%2024.6%2024.9%200%2013.6-11.1%2024.6-24.6%2024.6zM504%20256c0%20137-111%20248-248%20248S8%20393%208%20256%20119%208%20256%208s248%20111%20248%20248zm-132.3-41.2c-9.4%200-17.7%203.9-23.8%2010-22.4-15.5-52.6-25.5-86.1-26.6l17.4-78.3%2055.4%2012.5c0%2013.6%2011.1%2024.6%2024.6%2024.6%2013.8%200%2024.9-11.3%2024.9-24.9s-11.1-24.9-24.9-24.9c-9.7%200-18%205.8-22.1%2013.8l-61.2-13.6c-3-.8-6.1%201.4-6.9%204.4l-19.1%2086.4c-33.2%201.4-63.1%2011.3-85.5%2026.8-6.1-6.4-14.7-10.2-24.1-10.2-34.9%200-46.3%2046.9-14.4%2062.8-1.1%205-1.7%2010.2-1.7%2015.5%200%2052.6%2059.2%2095.2%20132%2095.2%2073.1%200%20132.3-42.6%20132.3-95.2%200-5.3-.6-10.8-1.9-15.8%2031.3-16%2019.8-62.5-14.9-62.5zM302.8%20331c-18.2%2018.2-76.1%2017.9-93.6%200-2.2-2.2-6.1-2.2-8.3%200-2.5%202.5-2.5%206.4%200%208.6%2022.8%2022.8%2087.3%2022.8%20110.2%200%202.5-2.2%202.5-6.1%200-8.6-2.2-2.2-6.1-2.2-8.3%200zm7.7-75c-13.6%200-24.6%2011.1-24.6%2024.9%200%2013.6%2011.1%2024.6%2024.6%2024.6%2013.8%200%2024.9-11.1%2024.9-24.6%200-13.8-11-24.9-24.9-24.9z'/%3e%3c/svg%3e){kind=small}