The topic of this article is the SELinux configuration on Rhel 5. Rhel also provides http://www.aliyun.com/zixun/aggregation/18378.html "> graphical user interface (GUI) and command line two ways to configure SELinux. To demonstrate SELinux simplicity, this article uses the Rhel GUI to enable SELinux.
To enable SELinux from the Rhel GUI, click System > Management (Administration) > Security levels and Firewalls (level and Firewall). Enter the SELinux tab, set the SELinux to allow mode (permissive mode), and restart the server.
Starting SELinux in allowed mode is a good practice (learning to configure the use of SELinux). In this mode, you can feel and touch selinux in close proximity, but it does not affect anything in the server and the application/database. During the test, you must carefully review the log information and check all warnings and any rejection errors generated by the program and the database during the operation.
After setting SELinux to allow mode and restart my Rhel, I did not find any difference. I log into the system with the root account and then use the Sestatus command to view the health of the SELinux environment.
Now that the SELinux is up and running in allowed mode, it is time to manage the selinux. Rhel provides a GUI for SELinux policy Management, and the root user can initialize the GUI using the System-config-selinux command. This command opens the GUI's main interface, and you can see the following windows in Rhel or Fedora Linux:
Above, you can find the main options for SELinux management in the left box. The second option "Boolean" contains the Boolean conditions for most of the default services and processes in SELinux administration. The same conditions can also be listed using the Getsebool command.
The content source of this page is from Internet, which doesn't represent Alibaba Cloud's opinion;
products and services mentioned on that page don't have any relationship with Alibaba Cloud. If the
content of the page makes you feel confusing, please write us an email, we will handle the problem
within 5 days after receiving your email.
If you find any instances of plagiarism from the community, please send an email to:
info-contact@alibabacloud.com
and provide relevant evidence. A staff member will contact you within 5 working days.