Difference between revisions of "Selinux"

From KeegansWiki
Jump to navigation Jump to search
Line 1: Line 1:
 
=Create Custom Modules=
 
=Create Custom Modules=
  audit2allow -m test < /var/log/audit/audit.log > /tmp/test.txt
+
Requires package ''''selinux-policy-devel'''
 +
  grep http /var/log/audit/audit.log | audit2allow -m newrelicsock > /tmp/newrelic.te
 +
make -f /usr/share/selinux/devel/Makefile
 +
semodule -i newrelic
 +
 
 
=Show why selinux is being an asshole=
 
=Show why selinux is being an asshole=
 
  sealert -a /var/log/audit/audit.log
 
  sealert -a /var/log/audit/audit.log
 
* sealert is provided by the package ''setroubleshoot''
 
* sealert is provided by the package ''setroubleshoot''

Revision as of 11:44, 28 October 2011

Create Custom Modules

Requires package 'selinux-policy-devel 

grep http /var/log/audit/audit.log | audit2allow -m newrelicsock > /tmp/newrelic.te
make -f /usr/share/selinux/devel/Makefile
semodule -i newrelic

Show why selinux is being an asshole

sealert -a /var/log/audit/audit.log
  • sealert is provided by the package setroubleshoot
Retrieved from "http://wiki.keeganm.com/index.php?title=Selinux&oldid=202"