SELinux Contexts for Processes
Use the ps -eZ command to view the SELinux context for processes. For example:
1.Open a terminal, such as Applications → System Tools → Terminal.
2.Run the /usr/bin/passwd command. Do not enter a new password.
3.Open a new tab, or another terminal, and run the ps -eZ | grep passwd command. The output is similar to the following:
unconfined_u:unconfined_r:passwd_t:s0-s0:c0.c1023 13212 pts/1 00:00:00 passwd
SELinux Contexts for Users
Use the id -Z command to view the SELinux context associated with your Linux user:
unconfined_u:unconfined_r:unconfined_t:s0-s0:c0.c1023
Targeted Policy
When using targeted policy, processes that are targeted run in a confined domain, and processes that are not targeted run in an unconfined domain.
No comments:
Post a Comment