Categories

JavaScriptPHPHTMLCssPythonWordPressWeb developmentLinuxMySQLAndroidWindowsJavaC++ / C#LayoutReactUbuntuYiiDjangoProgramming1C-BitrixLaravelSystem administrationTelegramJSONDebianPostgreSQLIOSGoogleHtaccessWindows ServerGitMacOSGoogle ChromeCMSWooСommerceBootstrapNginxSQLUnityAPI
Make a leaderReport
A
A
avp2018-03-28 11:37:23
linux
avp, 2018-03-28 11:37:23

Am I editing the selinux policy correctly?

sealert after parsing the audit.log suggests actions via audit2allow or setsebool. I have read that it is not safe to use audit2allow. Is it so?

Reply
Answer the question

Answer the question

In order to leave comments, you need to log in

1 answer(s)
Report
A
alexander, 2018-03-28
@beza2000

I think setsebool is safe.
audit2allow is dangerous. You just need to understand what you allow. Usually all requests to something are allowed, which is dangerous and in some cases tantamount to disabling selinux.
But usually - you have no other choice: either all you need is to allow, or rebuild / reconfigure your subsystem in a different way, so as not to use audit2allow, or whether to develop your own policy for yourself (requires a deeper understanding of selinux).

Similar questions
H
hloya_ram2019-11-17 12:04:54
How does Reading Mode work in Safari and Firefox browsers? 2Reply
E
Eugene Lerner2021-02-04 13:07:22
Is it possible to run metatrader on vps linux? 2Reply
L
ldmitriy2017-01-25 13:49:35
Xubuntu and other distributions, problems with fonts on sites cannot be fixed? 1Reply
D
Dmitry Krymtsev2017-01-25 14:52:01
How to get acquainted with software under Linux? 6Reply
K
Konstantin Vasilyevich2021-02-05 07:06:40
How to set up authorization in astra linux, under a domain user? 0Reply

Didn't find what you were looking for?

Ask your question

Ask a Question

731 491 924 answers to any question