Categories

JavaScriptPHPHTMLCssPythonWordPressWeb developmentLinuxMySQLAndroidWindowsJavaC++ / C#LayoutReactUbuntuYiiDjangoProgramming1C-BitrixLaravelSystem administrationTelegramJSONDebianPostgreSQLIOSGoogleHtaccessWindows ServerGitMacOSGoogle ChromeCMSWooСommerceBootstrapNginxSQLUnityAPI
Make a leaderReport
A
A
avp2018-03-28 11:37:23
linux
avp, 2018-03-28 11:37:23

Am I editing the selinux policy correctly?

sealert after parsing the audit.log suggests actions via audit2allow or setsebool. I have read that it is not safe to use audit2allow. Is it so?

Reply
Answer the question

Answer the question

In order to leave comments, you need to log in

1 answer(s)
Report
A
alexander, 2018-03-28
@beza2000

I think setsebool is safe.
audit2allow is dangerous. You just need to understand what you allow. Usually all requests to something are allowed, which is dangerous and in some cases tantamount to disabling selinux.
But usually - you have no other choice: either all you need is to allow, or rebuild / reconfigure your subsystem in a different way, so as not to use audit2allow, or whether to develop your own policy for yourself (requires a deeper understanding of selinux).

Similar questions
N
Nikita Reshetnyak2019-10-07 07:26:25
Why can't you hear the interlocutor in the absence of a tunnel between offices? 2Reply
F
fenix4542014-12-21 22:18:32
Why is scrolling not working in Ubuntu 14.04? 1Reply
I
Igor S2016-12-19 11:55:16
How to get files from one of the brick glusterfs? 1Reply
D
DEUS92016-12-19 12:38:44
Linux book. Which of the two? 5Reply
B
bigdate42014-12-22 11:43:54
How to move window control buttons to the right on Ubuntu 14.04 LTS? 3Reply

Didn't find what you were looking for?

Ask your question

Ask a Question

731 491 924 answers to any question