Chapter 5. Type Enforcement
In this chapter
• 5.2 Types, Attributes, and Aliases
• 5.5 Exploring Type Enforcement Rules with Apol
The majority of a SELinux policy is made up of several rules that together we call the type enforcement rules. These rules control allowed access, many aspects of default transition labeling, auditing, and invariant assertion checking. In this chapter, we examine the type enforcement rules in detail along with the statements to define and declare the types used by these rules.
5.1 Type Enforcement
The majority of a SELinux policy is a set of statements and rules that collectively define the type enforcement (TE) policy. A well-defined, ...
Get SELinux by Example: Using Security Enhanced Linux now with the O’Reilly learning platform.
O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.
