User Resources

From SELinux Wiki

(Difference between revisions)
Jump to: navigation, search
Revision as of 16:57, 15 July 2009 (edit)
DominickGrift (Talk | contribs)

← Previous diff
Current revision (19:06, 9 July 2013) (edit) (undo)
StephenSmalley (Talk | contribs)
(FAQs and Documentation)
 
(8 intermediate revisions not shown.)
Line 1: Line 1:
== Guides == == Guides ==
-[[Guide|SELinux Guide]]+* [https://docs.fedoraproject.org/en-US/Fedora/19/html/Security_Guide/ch09.html SELinux]
 +* [https://docs.fedoraproject.org/en-US/Fedora/19/html/Security_Guide/ch10.html Managing Confined Services]
== FAQs and Documentation == == FAQs and Documentation ==
Line 10: Line 11:
[http://userspace.selinuxproject.org/trac/wiki/SelinuxTools SELinux Tools] (canonical list with explanations) [http://userspace.selinuxproject.org/trac/wiki/SelinuxTools SELinux Tools] (canonical list with explanations)
- 
-[http://docs.fedoraproject.org/selinux-user-guide/f11/en-US/ Fedora 11 SELinux User Guide] 
- 
-[http://sradvan.fedorapeople.org/SELinux_Managing_Confined_Services/en-US/html-single/ Managing SELinux confined services] (draft) 
[http://www.nsa.gov/research/selinux/faqs.shtml NSA SELinux FAQ] [http://www.nsa.gov/research/selinux/faqs.shtml NSA SELinux FAQ]
Line 85: Line 82:
[http://www.nsa.gov/research/_files/selinux/papers/policy2/t1.shtml Configuring the SELinux Policy] [http://www.nsa.gov/research/_files/selinux/papers/policy2/t1.shtml Configuring the SELinux Policy]
-== Mailing lists ==+[[ObjectClassesPerms | Object Classes and Permissions descriptions]]
-[http://www.nsa.gov/research/selinux/list.shtml NSA SELinux mailing list] [http://marc.info/?l=selinux (Unofficial searchable list archive)]+== Mailing lists and IRC ==
-[http://www.redhat.com/mailman/listinfo/fedora-selinux-list Fedora SELinux mailing list] [http://www.redhat.com/archives/fedora-selinux-list/ (Fedora SELinux list archive)]+[[User_Help | Mailing lists and IRC channels]]
-[http://lists.alioth.debian.org/mailman/listinfo/selinux-announce Debian SELinux announcement mailing list] [http://lists.alioth.debian.org/pipermail/selinux-announce/ (Debian SELinux announcement list archive)]+== Blogs ==
-[http://lists.alioth.debian.org/mailman/listinfo/selinux-devel Debian SELinux devel mailing list] [http://lists.alioth.debian.org/pipermail/selinux-devel (Debian SELinux devel list archive)]+* [http://selinuxnews.org SELinux Community News]
- +* [http://selinuxnews.org/planet Planet SELinux] - Aggregates all of the blogs below (plus some more)
-[http://lists.alioth.debian.org/mailman/listinfo/selinux-user Debian SELinux user mailing list] [http://lists.alioth.debian.org/pipermail/selinux-user (Debian SELinux user list archive)]+** [http://danwalsh.livejournal.com/ Dan Walsh]
- +** [http://selinux-mac.blogspot.com/ Dominick Grift]
-[http://www.gentoo.org/main/en/lists.xml Gentoo Hardened mailing list] [http://archives.gentoo.org/gentoo-hardened/ (Gentoo Hardened list archive)] +** [http://eparis.livejournal.com/ Eric Paris]
- +** [http://blog.namei.org/ James Morris]
-[http://lists.ubuntu.com/mailman/listinfo/ubuntu-hardened Ubuntu Hardened mailing list] [http://lists.ubuntu.com/archives/ubuntu-hardened/ (Ubuntu Hardened list archive)]+** [http://securityblog.org/brindle/ Joshua Brindle]
- +** [http://paulmoore.livejournal.com/ Paul Moore]
-[http://mail.opensolaris.org/mailman/listinfo/fmac-discuss OpenSolaris FMAC mailing list] [http://mail.opensolaris.org/pipermail/fmac-discuss/ (OpenSolaris FMAC list archive)]+
- +
-[http://oss.tresys.com/mailman/listinfo/refpolicy Tresys SELinux Reference Policy development mailing list] [http://oss.tresys.com/pipermail/refpolicy/ (Tresys SELinux Reference Policy development list archive)]+
- +
-== IRC ==+
- +
-[irc://irc.freenode.org/selinux irc.freenode.org channel #selinux]+
- +
-[irc://irc.freenode.org/fedora-selinux irc.freenode.org channel #fedora-selinux]+
== Websites == == Websites ==
[http://wiki.russianfedora.ru/index.php/SELinux Russian Fedora SELinux Wiki] [http://wiki.russianfedora.ru/index.php/SELinux Russian Fedora SELinux Wiki]
- 
-[http://selinuxnews.org SELinux Community News] 
- 
-[http://selinuxnews.org/planet Planet SELinux] 
[http://www.nsa.gov/research/selinux/index.shtml NSA SELinux website] [http://www.nsa.gov/research/selinux/index.shtml NSA SELinux website]

Current revision

Contents

[edit] Guides

[edit] FAQs and Documentation

SELinux for Everyday Users (Slides by Paul Wayper)

SELinux for SysAdmins (Slides by Paul Wayper)

SELinux Tools (canonical list with explanations)

NSA SELinux FAQ

Fedora SELinux FAQ

Reference policy documentation

NSA SELinux documentation

Tresys SELinux resources

Understanding SELinux memory protection controls

Explanation of text relocations and a description of how to find the reason and how to fix them

Portuguese Documentation Hardening Linux Usando Controle de Acesso Mandatório

SELinux Booleans Documentation at the Centos Wiki

Writing policy for confined SELinux users Red Hat Magazine article by Dan Walsh.

Fedora 9 and summit preview: Confining the user with SELinux Red Hat Magazine article by Dan Walsh.

What's new in SELinux for Red Hat Enterprise Linux 5 Red Hat Magazine article by Dan Walsh.

A step by step guide to building a new SELinux policy module Red Hat Magazine article by Dan Walsh.

What is Security-Enhanced Linux? Red Hat Magazine article by Russell Coker.

Secure Linux containers cookbook by Serge Hallyn of IBM.

Role-based access control in SELinux: Learn your way around this admin-friendly security administration layer by Serge Hallyn of IBM.

SELinux from scratch: Build an SELinux-ready Gentoo system by Serge Hallyn from IBM.

Polyinstantiation of directories in an SELinux system by Russell Coker.

Taking advantage of SELinux in Red Hat Enterprise Linux Red Hat Magazine article by Faye Coker and Russell Coker.

Red Hat Enterprise Linux 4 SELinux user guide

Summary of SELinux articles on Red Hat knowledge base

Interview with Daniel Walsh, the principal developer of SELinux in Fedora from Red Hat, where he tells us more about what SELinux does and how it's improved in Fedora 8

Fedora SELinux Policy Module Packaging (draft)

SEPostgreSQL introduction

SELinux object classes and permissions reference

SELinux reference policy interface reference

SELinux plus introduction

SELinux by example

Hacks From Pax: SELinux And Access Decisions by Pax Dickinson.

Hacks From Pax: Security Enhanced Linux and Mandatory Access Control by Pax Dickinson.

Hacks From Pax: SELinux Policy Development by Pax Dickinson.

Paranoid Penguin - Introduction to SELinux, Part II by Mick Bauer.

Paranoid Penguin - Introduction to SELinux by Mick Bauer.

Multi-Category Security in SELinux in Fedora Core 5 by Russell Coker.

Configuring the SELinux Policy

Object Classes and Permissions descriptions

[edit] Mailing lists and IRC

Mailing lists and IRC channels

[edit] Blogs

[edit] Websites

Russian Fedora SELinux Wiki

NSA SELinux website

SELinux Symposium 2005-2007

Tresys Open Source Server

Fedora SELinux project wiki

Hardened Gentoo's SELinux project page

Debian SELinux wiki

Engarde SELinux page

Ubuntu SELinux wiki

OpenSolaris Flexible MAC project

Japanese SELinux Users Group

Russell Coker's SELinux Site

Dan Walsh's SELinux site

Public forum for the NSA Security-Enhanced Linux project

[edit] Tools

setsebool(8)

audit2allow(1)

semanage(8)

restorecon(8)

chcon(1)

matchpathcon(3)

chcat(8)

getsebool(8)

semodule(8)

sestatus(8)

togglesebool(8)

selinuxenabled(8)

setfiles(8)

audit2why(8)

fixfiles(8)

getenforce(8)

setenforce(8)

newrole(1)

run_init(8)

runcon(1)

restorecond(8)

system-config-selinux

SETroubleshoot

SELinux Policy IDE (SLIDE)

SETools Policy Analysis Suite

Cross Domain Solution Framework

SELinux Policy Editor

[edit] Manual pages

selinux(8)

booleans(8)

ftpd_selinux(8)

named_selinux(8)

rsync_selinux(8)

httpd_selinux(8)

nfs_selinux(8)

samba_selinux(8)

kerberos_selinux(8)

nis_selinux(8)

ypbind_selinux(8)

[edit] Topics

SELinux security models and concepts

Personal tools