Chapter 4. Object Classes and Permissions

In this chapter

• 4.1 Purpose of Object Classes in SELinux

• 4.2 Defining Object Classes in SELinux Policy

• 4.3 Available Object Classes

• 4.4 Object Class Permission Examples

• 4.5 Exploring Object Classes with Apol

• 4.6 Summary

• Exercises

This chapter covers object classes and permissions defined in SELinux. We discuss the policy language statements that define object classes and permissions the kernel supports and provide an overview of the kernel object classes standard in a SELinux system. Appendix C, “Object Classes and Permissions,” includes a detailed listing of each standard SELinux object class and its associated permissions.

4.1 Purpose of Object Classes in SELinux

Object classes and their ...

Get SELinux by Example: Using Security Enhanced Linux now with O’Reilly online learning.

O’Reilly members experience live online training, plus books, videos, and digital content from 200+ publishers.