SElinux integrety check

Posted by Alex on Stack Overflow See other posts from Stack Overflow or by Alex
Published on 2010-03-26T12:08:31Z Indexed on 2010/03/26 12:13 UTC
Read the original article Hit count: 118

Filed under:

selinux

How can i check (with SELinux) access to the file by process name?

For examle: we have 2 process: * /usr/bin/foo1 * /usr/bin/foo2

They are run under account with username userA and try to open for modify file:

/home/userA/test.txt

I want that if foo1 try to open file - it's ok. But if foo2 try to open this file - i have message about this in /var/log

Problem is that both processes have the same user ID. And i cant use RBAC by username.

Related posts about selinux

AD GIT SELinux RHEL 6 : Can not get SELinux to allow connetion to git

as seen on Server Fault - Search for 'Server Fault'
I have a problem with SELinux! I have installed git on Red Hat Enterprise 6 with AD group control and SSL Cert . Everything works fine if I do setenforce 0 ( set SELinux in detection only mode ) or if I do semanage permissive -a httpd_t (Set httpd_t in detection only mode) I do not want to use… >>> More
How do I enable SELinux when booting a ramdisk from a CD/DVD?

as seen on Server Fault - Search for 'Server Fault'
I have a bootable DVD which boots the same Kernel as the Hard Drive (which uses SELinux). I have copied /etc/selinux and all kernel modules to my ramdisk, and have tried various combinations of selinux=1 and selinux 1 with enforcing 1 and enforcing 0. as Kernel boot parameters. All files contained… >>> More
How do I enable SELinux when booting from a CD/DVD?

as seen on Server Fault - Search for 'Server Fault'
I have a bootable DVD which boots the same Kernel as the Hard Drive (which uses SELinux). I have copied /etc/selinux and all the kernel modules to my ramdisk, and have tried both selinux=1 and selinux 1 as Kernel boot parameters. After the system boots, I check dmesg: % dmesg | grep -i selinux Kernel… >>> More
How does SELinux affect the /home directory?

as seen on Server Fault - Search for 'Server Fault'
Hi everyone. I'm migrating a CentOS 5.3 system from MySQL to PostgreSQL. The way our machine is set up is that the biggest disk partition is mounted to /home. This is out of my control and is managed by the hosting provider. Anyway, we obviously want the database files to be on /home for this… >>> More
Question regarding the SELinux type enforcement file

as seen on Server Fault - Search for 'Server Fault'
In my SElinux te file, I define two new types called voice_t and data_t which certain directories will be classified in the fc file (/data/ will be of type data_t and /voice/ will be of type voice_t). I would like the one SELinux policy to be used for all servers in my network, but, some servers… >>> More

Developer IT

SElinux integrety check - Developer IT

SElinux integrety check

selinux

Related posts about selinux

AD GIT SELinux RHEL 6 : Can not get SELinux to allow connetion to git

How do I enable SELinux when booting a ramdisk from a CD/DVD?

How do I enable SELinux when booting from a CD/DVD?

How does SELinux affect the /home directory?

Question regarding the SELinux type enforcement file

Categories cloud