User contributions
From SELinux Wiki
(newest | oldest) View (newer 500 | older 500) (20 | 50 | 100 | 250 | 500)
- 13:50, 6 September 2012 (diff | hist) . . (-1) . . NB MAC
- 13:46, 6 September 2012 (diff | hist) . . (+5,667) . . NB Overview
- 15:19, 5 September 2012 (diff | hist) . . (+10,294) . . PolicyLanguage
- 13:41, 5 September 2012 (diff | hist) . . (+1,310) . . LibselinuxAPISummary (→API Summary for libselinux)
- 14:41, 27 June 2011 (diff | hist) . . (+1) . . NB SQL 9.0 (→SE-PostgreSQL Walk-through) (current)
- 14:39, 27 June 2011 (diff | hist) . . (+2) . . NB SQL 9.0 (→Internal Tables)
- 16:39, 15 January 2011 (diff | hist) . . (-7) . . NB SQL (→SE-PostgreSQL Overview) (current)
- 16:39, 15 January 2011 (diff | hist) . . (-8) . . NB SQL (→SE-PostgreSQL Overview)
- 16:33, 15 January 2011 (diff | hist) . . (+29,268) . . N NB SQL 9.0 (New page: = SELinux PostgreSQL Support (9.0) = This section gives an overview of the SE-PostgreSQL version 9.0.1 extensions to support SELinux in F-14 and how the database context information is man...)
- 16:25, 15 January 2011 (diff | hist) . . (+20) . . NewUsers (→Notebook Sections)
- 15:13, 15 January 2011 (diff | hist) . . (+66) . . NewUsers (→Notebook Sections)
- 13:48, 15 August 2010 (diff | hist) . . (+772) . . LibselinuxAPISummary
- 15:25, 21 May 2010 (diff | hist) . . (-19) . . NB Objects (→Labeling Subjects)
- 15:21, 21 May 2010 (diff | hist) . . (-1) . . NB TE (→Constraints)
- 14:51, 21 May 2010 (diff | hist) . . (-915) . . NB RefPolicy
- 14:46, 21 May 2010 (diff | hist) . . (+1) . . NB RefPolicy (→template Macro)
- 14:46, 21 May 2010 (diff | hist) . . (0) . . NB RefPolicy (→Source Layout)
- 14:43, 21 May 2010 (diff | hist) . . (0) . . NB RefPolicy (→gen_sens Macro)
- 14:42, 21 May 2010 (diff | hist) . . (+6) . . NB RefPolicy (→gen_bool Macro)
- 14:37, 21 May 2010 (diff | hist) . . (+6) . . NB RefPolicy (→optional_policy Macro)
- 14:34, 21 May 2010 (diff | hist) . . (+1) . . NB RefPolicy (→tunable_policy Macro)
- 14:34, 21 May 2010 (diff | hist) . . (+2) . . NB RefPolicy (→gen_tunable Macro)
- 14:33, 21 May 2010 (diff | hist) . . (-1) . . NB RefPolicy (→optional_policy Macro)
- 14:22, 21 May 2010 (diff | hist) . . (+916) . . NB RefPolicy (→policy_module Macro)
- 14:19, 21 May 2010 (diff | hist) . . (-11) . . NB RefPolicy (→Checking the Build)
- 14:16, 21 May 2010 (diff | hist) . . (+6) . . NB RefPolicy (→Building the targeted Policy Type)
- 14:10, 21 May 2010 (diff | hist) . . (+52) . . NB RefPolicy (→Reference Policy Build Options - policy/modules.conf)
- 14:05, 21 May 2010 (diff | hist) . . (+68) . . NB RefPolicy (→Reference Policy Build Options - build.conf)
- 13:58, 21 May 2010 (diff | hist) . . (+1) . . NB RefPolicy (→Reference Policy Files and Directories)
- 13:55, 21 May 2010 (diff | hist) . . (+10) . . NB RefPolicy (→Source Layout)
- 13:50, 21 May 2010 (diff | hist) . . (+15) . . NB RefPolicy (→Reference Policy Documentation)
- 13:48, 21 May 2010 (diff | hist) . . (-1) . . NB RefPolicy (→Reference Policy Module Files)
- 13:44, 21 May 2010 (diff | hist) . . (+99,807) . . N NB RefPolicy (New page: = The Reference Policy = == Introduction == The Reference Policy is now the standard policy source used to build SELinux policies. This provides a single source tree with supporting docume...)
- 13:43, 21 May 2010 (diff | hist) . . (+22) . . NewUsers (→Notebook Sections)
- 15:51, 18 May 2010 (diff | hist) . . (+4,520) . . N NB Apache (New page: = Apache SELinux Support = Apache web servers are generally managed under SELinux by using the Apache policy modules from the Reference Policy, however an SELinux-aware shared library is a...)
- 15:48, 18 May 2010 (diff | hist) . . (-9) . . NB SQL (→SE-PostgreSQL Extensions)
- 15:40, 18 May 2010 (diff | hist) . . (+7) . . NB SQL (→SE-PostgreSQL Walk-through)
- 15:31, 18 May 2010 (diff | hist) . . (+1) . . NB SQL (→Introduction)
- 15:29, 18 May 2010 (diff | hist) . . (0) . . NB SQL (→Logging Security Events)
- 15:24, 18 May 2010 (diff | hist) . . (+1) . . NB SQL (→Internal Tables)
- 15:18, 18 May 2010 (diff | hist) . . (-6) . . NB SQL (→Additional SQL Functions)
- 15:08, 18 May 2010 (diff | hist) . . (+155) . . NB SQL
- 14:57, 18 May 2010 (diff | hist) . . (+34,520) . . N NB SQL (New page: = SELinux PostgreSQL Support = This section gives an overview of the SE-PostgreSQL (version 8.4) extensions to support SELinux in F-12 and how the database context information is managed. ...)
- 14:55, 18 May 2010 (diff | hist) . . (0) . . NB XWIN
- 14:46, 18 May 2010 (diff | hist) . . (-59) . . NB XWIN (→SELinux X-Windows Support)
- 14:38, 18 May 2010 (diff | hist) . . (+14,025) . . N NB XWIN (New page: = SELinux X-Windows Support = The SELinux X-Windows (XSELinux) implementation provides fine grained access control over the majority of the X-server objects (known as resources). The Refer...)
- 14:35, 18 May 2010 (diff | hist) . . (0) . . NB VM (→Readonly Image Mode)
- 14:32, 18 May 2010 (diff | hist) . . (0) . . NB VM (→Shared Image Mode)
- 14:30, 18 May 2010 (diff | hist) . . (+20,911) . . N NB VM (New page: = SELinux Virtual Machine Support = SELinux support is available in the KVM/QEMU and Xen virtual machine (VM) technologies<ref name="ftn29">KVM (Kernel-based Virtual Machine) and Xen are c...)
- 14:22, 18 May 2010 (diff | hist) . . (-22) . . NB Networking
- 14:19, 18 May 2010 (diff | hist) . . (+13,089) . . N NB Networking (New page: = SELinux Networking Support = SELinux supports the following types of network labeling: '''Internal labeling''' - This is where network objects are labeled and managed internally within ...)
- 15:57, 17 May 2010 (diff | hist) . . (-2) . . NB LSM (→SELinux Filesystem)
- 15:55, 17 May 2010 (diff | hist) . . (-4) . . NB LSM (→Process Transition Walk-thorough)
- 15:54, 17 May 2010 (diff | hist) . . (0) . . NB LSM (→Process Transition Walk-thorough)
- 15:50, 17 May 2010 (diff | hist) . . (+139) . . NB LSM (→Process Transition Walk-thorough)
- 15:38, 17 May 2010 (diff | hist) . . (-1) . . NB LSM (→Fork System Call Walk-thorough)
- 15:34, 17 May 2010 (diff | hist) . . (+29,861) . . N NB LSM (New page: = Linux Security Module and SELinux = This section gives a high level overview of the LSM and SELinux internal structure and workings. A more detailed view can be found in the "[http://www...)
- 15:26, 17 May 2010 (diff | hist) . . (+5,625) . . N NB PAM (New page: = PAM Login Process = Applications used to provide login services (such as <tt>gdm</tt> and <tt>ssh</tt>) in F-12 use the PAM (Pluggable Authentication Modules) infrastructure to provide t...)
- 15:16, 17 May 2010 (diff | hist) . . (+8,581) . . N NB Poly (New page: = Polyinstantiation = GNU / Linux supports the polyinstantiation of directories that can be utilised by SELinux via the Pluggable Authentication Module (PAM) that is explained in the next ...)
- 15:13, 16 May 2010 (diff | hist) . . (+9) . . NB AL (→AVC Audit Events)
- 15:06, 16 May 2010 (diff | hist) . . (+2) . . NB AL (→SELinux-aware Application Events)
- 15:04, 16 May 2010 (diff | hist) . . (+13,162) . . N NB AL (New page: = Audit Logs = For SELinux there are two main types of audit event: # SELinux-aware Application Events - These are generated by the SELinux kernel services and SELinux-aware applications ...)
- 14:59, 16 May 2010 (diff | hist) . . (+1,577) . . N NB PandE (New page: = SELinux Permissive and Enforcing Modes = SELinux has three major modes of operation: : '''Enforcing''' - SELinux is enforcing the loaded policy. : '''Permissive''' - SELinux has loade...)
- 14:57, 16 May 2010 (diff | hist) . . (+12,058) . . N NB PolicyType (New page: = Types of SELinux Policy = This section describes the different type of policy descriptions and versions that can be found within SELinux. The types of SELinux policy can described in a ...)
- 14:46, 16 May 2010 (diff | hist) . . (-11) . . NewUsers (→The SELinux Notebook)
- 14:36, 16 May 2010 (diff | hist) . . (-8) . . NB MLS (→Managing Security Levels via Dominance Rules)
- 14:34, 16 May 2010 (diff | hist) . . (-159) . . NB MLS (→Security Levels)
- 14:24, 16 May 2010 (diff | hist) . . (-2) . . NB MLS (→Multi-Level Security and Multi-Category Security)
- 14:23, 16 May 2010 (diff | hist) . . (+12,158) . . N NB MLS (New page: = Multi-Level Security and Multi-Category Security = As stated in the Mandatory Access Control (MAC) section as well as supporting Type Enforcement (TE), SELinux also support...)
- 14:21, 16 May 2010 (diff | hist) . . (-68) . . NewUsers (→Notebook Sections)
- 14:19, 16 May 2010 (diff | hist) . . (-1) . . NB Objects (→Labeling Objects)
- 14:18, 16 May 2010 (diff | hist) . . (-1) . . NB Objects (→Allowing a Process Access to Resources)
- 14:17, 16 May 2010 (diff | hist) . . (+14) . . NB Objects (→Allowing a Process Access to Resources)
- 14:15, 16 May 2010 (diff | hist) . . (+4) . . NB Objects (→Object Transition)
- 14:12, 16 May 2010 (diff | hist) . . (+24,517) . . N NB Objects (New page: = Objects = Within SELinux an object is a resource such as files, sockets, pipes or network interfaces that are accessed via processes (also known as subjects). These objects are classifie...)
- 14:02, 16 May 2010 (diff | hist) . . (+1,896) . . N NB Subjects (New page: = Subjects = A subject is an active entity generally in the form of a person, process, or device that causes information to flow among objects or changes the system state. Within SELinux...)
- 14:01, 16 May 2010 (diff | hist) . . (+4,755) . . N NB SC (New page: = Security Context = SELinux requires a security context to be associated with every process (or subject) and object that are used by the security server to decide whether access is allowe...)
- 13:56, 16 May 2010 (diff | hist) . . (+1,516) . . N NB RBAC (New page: = Role-Based Access Control (RBAC) = To further control access to TE domains SELinux makes use of role-based access control (RBAC). This feature allows SELinux users to be associated to on...)
- 13:54, 16 May 2010 (diff | hist) . . (+3,914) . . N NB TE (New page: = Type Enforcement (TE) = SELinux makes use of a specific style of type enforcement<ref name="ftn5"><sup>There are various "type enforcement" technologies. </sup></ref> (TE) to enforce man...)
- 13:52, 16 May 2010 (diff | hist) . . (+2,174) . . N NB MAC (New page: = Mandatory Access Control (MAC) = Mandatory Access Control (MAC) is a type of access control in which the operating system is used to constrain a user or process (the subject) from access...)
- 13:49, 16 May 2010 (diff | hist) . . (+6,564) . . N NB Overview (New page: = SELinux Overview = == Introduction == SELinux is the primary Mandatory Access Control (MAC) mechanism built into a number of GNU / Linux distributions. SELinux originally started as the ...)
- 13:30, 16 May 2010 (diff | hist) . . (+3,487) . . NewUsers
- 12:54, 13 May 2010 (diff | hist) . . (-3) . . PolicyConfigurationFiles (→contexts/initrc_context File)
- 12:53, 13 May 2010 (diff | hist) . . (-2) . . PolicyConfigurationFiles (→contexts/default_contexts File)
- 12:17, 13 May 2010 (diff | hist) . . (+3,993) . . PolicyConfigurationFiles (→setrans.conf File)
- 14:41, 12 May 2010 (diff | hist) . . (+153) . . PolicyConfigurationFiles (→contexts/x_contexts File)
- 14:31, 12 May 2010 (diff | hist) . . (+14) . . PolicyConfigurationFiles (→contexts/x_contexts File)
- 14:30, 12 May 2010 (diff | hist) . . (+2,166) . . PolicyConfigurationFiles (→contexts/x_contexts File)
- 14:20, 12 May 2010 (diff | hist) . . (+1,205) . . PolicyConfigurationFiles
- 14:08, 12 May 2010 (diff | hist) . . (+1,144) . . GlobalConfigurationFiles (→/etc/selinux/semanage.conf File)
- 13:58, 12 May 2010 (diff | hist) . . (+100) . . ConfigurationFiles (→SELinux Configuration Files)
- 13:47, 12 May 2010 (diff | hist) . . (+120) . . TypeRules
- 13:38, 12 May 2010 (diff | hist) . . (+2,008) . . TypeRules
- 13:16, 12 May 2010 (diff | hist) . . (+199) . . PolicyLanguage (→General Statement Information)
- 13:10, 12 May 2010 (diff | hist) . . (0) . . PolicyLanguage (→Introduction)
- 16:33, 16 March 2010 (diff | hist) . . (+33) . . ConfigurationFiles
- 15:38, 15 March 2010 (diff | hist) . . (+50) . . Building the XSELinux Function Test Application (current)
- 15:12, 15 March 2010 (diff | hist) . . (+4) . . Experimenters Corner (current)
- 15:10, 15 March 2010 (diff | hist) . . (+16) . . Experimenting With X-Windows (current)
- 17:14, 14 March 2010 (diff | hist) . . (+624) . . Experimenters Corner
- 17:04, 14 March 2010 (diff | hist) . . (-20) . . Building a Basic Policy (current)
- 17:00, 14 March 2010 (diff | hist) . . (0) . . Building a Basic Policy (→Overall Objectives)
- 16:58, 14 March 2010 (diff | hist) . . (0) . . Building the XSELinux Function Test Application
- 16:47, 14 March 2010 (diff | hist) . . (+36,243) . . N Experimenting With X-Windows (New page: = Experimenting with X-Windows = == Section Overview == The main objectives of this section are to: * Demonstrate the use of '<tt>selections</tt>' using polyinstantiation and non- polyins...)
- 16:17, 14 March 2010 (diff | hist) . . (+3,153) . . N Building the XSELinux Function Test Application (New page: = Building the XSELinux Function Test Application = The <tt>X-setest</tt> application allows a user to execute all of the SELinuxGet/Set.. functions that are integrated with the X-Windows ...)
- 16:11, 14 March 2010 (diff | hist) . . (+85) . . Building a Basic Policy (→Overall Objectives)
- 16:08, 14 March 2010 (diff | hist) . . (+16,113) . . N Building a Basic Policy (New page: = Building a Basic Policy = == Introduction == The objective of this section is to show how policy files are constructed, compiled and loaded using the SELinux command line tools and edito...)
- 15:38, 14 March 2010 (diff | hist) . . (+876) . . N Experimenters Corner (New page: = Experimenters Corner = This section contains example source code and policy modules that may be useful for experimenting with. There is an experiment that uses different x_contexts fil...)
- 15:20, 14 March 2010 (diff | hist) . . (+26) . . Main Page
- 13:10, 17 February 2010 (diff | hist) . . (-96) . . PolicyLanguage
- 13:08, 17 February 2010 (diff | hist) . . (0) . . LibselinuxAPISummary
- 13:07, 17 February 2010 (diff | hist) . . (-238) . . LibselinuxAPISummary (→API Summary for libselinux)
- 13:04, 17 February 2010 (diff | hist) . . (+31,426) . . N LibselinuxAPISummary (New page: = API Summary for libselinux = These functions have been taken from the following header files from the ``libselinux 2.0.87'' release and sorted in alphabetical order: /usr/include/selinu...)
- 12:52, 17 February 2010 (diff | hist) . . (+51) . . AdvancedUsers (current)
- 07:43, 23 January 2010 (diff | hist) . . (+213) . . PolicyStoreConfigurationFiles
- 07:40, 23 January 2010 (diff | hist) . . (-206) . . PolicyStoreConfigurationFiles (→file_contexts.template File)
- 16:55, 22 January 2010 (diff | hist) . . (+24) . . PolicyStoreConfigurationFiles (→file_contexts.template File)
- 16:40, 22 January 2010 (diff | hist) . . (-4) . . PolicyStoreConfigurationFiles (→file_contexts.template File)
- 14:57, 2 December 2009 (diff | hist) . . (+23,614) . . N PolicyConfigurationFiles (New page: = Policy Configuration Files = Each file discussed in this section is relative to the policy name as follows: <nowiki>/etc/selinux/<policy_name></nowiki> The majority of files are instal...)
- 14:30, 2 December 2009 (diff | hist) . . (+26,695) . . N PolicyStoreConfigurationFiles (New page: = Policy Store Configuration Files = Each file discussed in this section is relative to the policy name as follows: <pre> <nowiki>/etc/selinux/<policy_name></nowiki> </pre> The Policy Sto...)
- 13:55, 2 December 2009 (diff | hist) . . (+9,782) . . N GlobalConfigurationFiles (New page: = Global Configuration Files = Listed in the sections that follow are the common configuration files used by SELinux and are therefore not policy specific. == /etc/selinux/config File == ...)
- 13:39, 2 December 2009 (diff | hist) . . (+1) . . ConfigurationFiles (→Policy Configuration Files)
- 13:37, 2 December 2009 (diff | hist) . . (+35) . . ConfigurationFiles
- 13:36, 2 December 2009 (diff | hist) . . (+4,933) . . N ConfigurationFiles (New page: = SELinux Configuration Files = == Introduction == This section explains each SELinux configuration file with its format, example content and where applicable, any supporting SELinux comma...)
- 13:17, 2 December 2009 (diff | hist) . . (+54) . . AdminDocs (current)
- 14:52, 30 November 2009 (diff | hist) . . (+3,067) . . N SIDStatements (New page: = Security ID (SID) Statement = There are two SID statements, the first one declares the actual SID identifier and is defined at the start of a policy source file. The second statement is ...)
- 14:38, 30 November 2009 (diff | hist) . . (+4,831) . . N ObjectClassStatements (New page: = Object Class and Permission Statements = For those who write or manager SELinux policy, there is no need to define new objects and their associated permissions as these would be done by ...)
- 14:24, 30 November 2009 (diff | hist) . . (+10,009) . . N PolicyStatements (New page: = Policy Support Statements = This section contains language statements used to support policy. == module Statement == This statement is mandatory for loadable modules (non-base) and must...)
- 13:54, 30 November 2009 (diff | hist) . . (-61) . . ConstraintStatements
- 13:47, 30 November 2009 (diff | hist) . . (+107) . . MLSStatements
- 13:03, 30 November 2009 (diff | hist) . . (-18) . . MLSStatements
- 12:48, 30 November 2009 (diff | hist) . . (+17,836) . . N MLSStatements (New page: = MLS Statements = The optional MLS policy extension adds an additional security context component that consists of the following highlighted entries: <pre> user:role:type:sensitivity[:ca...)
- 12:05, 30 November 2009 (diff | hist) . . (+9,245) . . N NetworkStatements (New page: = Network Labeling Statements = The network labeling statements are used to label the following objects: '''Network interfaces''' - This covers those interfaces managed by the ifconfig(8)...)
- 11:36, 30 November 2009 (diff | hist) . . (+9,172) . . N FileStatements (New page: = File System Labeling Statements = There are four types of file labeling statements: fs_use_xattr, fs_use_task, fs_use_trans and genfscon that are explained below. The filesystem identi...)
- 17:44, 29 November 2009 (diff | hist) . . (+20) . . ConstraintStatements
- 17:28, 29 November 2009 (diff | hist) . . (-165) . . ConstraintStatements
- 16:40, 29 November 2009 (diff | hist) . . (+8,115) . . N ConstraintStatements (New page: = Constraint Statements = == constrain Statement == The constrain statement allows further restriction on permissions for the specified object classes by using boolean expressions covering...)
- 16:09, 29 November 2009 (diff | hist) . . (+6,429) . . N ConditionalStatements (New page: = Conditional Policy Statements = Conditional policies consist of a bool statement that defines a condition as true or false, with a supporting if / else construct that specifies what rule...)
- 15:43, 29 November 2009 (diff | hist) . . (+6,249) . . N RoleRules (New page: = Role Rules = == Role allow Rule == The role allow rule checks whether a request to change roles is allowed, if it is, then there may be a further request for a role_transition so that th...) (current)
- 15:31, 29 November 2009 (diff | hist) . . (+2,114) . . N RoleStatements (New page: = Role Statement = == role Statement == The role statement associates a role identifier to one or more types (i.e. authorise the role to access the domain or domains). Where there are mult...)
- 15:23, 29 November 2009 (diff | hist) . . (+3,986) . . N UserStatements (New page: = User Statement = == user Statement == The user statement is used to declare an SELinux user identifier within the policy and associate that to one or more roles. The statement also allow...)
- 15:09, 29 November 2009 (diff | hist) . . (+7,353) . . N AVCRules (New page: = Access Vector Rules = The AV rules define what access control privileges are allowed for processes. There are four types of AV rule: allow, dontaudit, auditallow, and neverallow as expla...)
- 14:50, 29 November 2009 (diff | hist) . . (+5,755) . . N TypeRules (New page: = Type Enforcement Rules = The TE rules define what access control privileges are allowed for processes. There are three types of enforcement rule: type_transition, type_change, and type_m...)
- 14:31, 29 November 2009 (diff | hist) . . (+8,753) . . N TypeStatements (New page: = Type Enforcement and Attribute Statements = These statements share the same namespace, therefore the general convention is to use '_' as the final two characters of a type identifier to ...)
- 13:55, 29 November 2009 (diff | hist) . . (+778) . . PolicyLanguage
- 16:57, 28 November 2009 (diff | hist) . . (+17,455) . . PolicyLanguage
- 11:29, 28 November 2009 (diff | hist) . . (+52) . . N PolicyLanguage (New page: In progress to build pages from the SELinux Notebook)
- 11:19, 28 November 2009 (diff | hist) . . (+38) . . AdvancedUsers
- 11:11, 28 November 2009 (diff | hist) . . (-36) . . MyNewPage (Removing all content from page) (current)
- 11:08, 28 November 2009 (diff | hist) . . (+36) . . N MyNewPage (Policy language statements and rules)
(newest | oldest) View (newer 500 | older 500) (20 | 50 | 100 | 250 | 500)