Appendix E. SELinux Type Attributes
Table E-1 summarizes the SELinux type attributes appearing in the Fedora Core 2 implementation of SELinux. Other implementations may define different type attributes or assign different meaning to attributes shown in the table.
Table E-1. SELinux type attributes
|
Type attribute |
Description |
|---|---|
admin |
Administrator domain, such as |
auth |
Domain that can read |
auth_chkpwd |
Domain that can authenticate users by running
|
auth_write |
Domain that can write or relabel |
dbus_client_domain |
Domain of |
device_type |
Type assigned to device nodes |
domain |
Type that can be assigned to a process |
etc_writer |
Domain that can write to |
exec_type |
Type assigned to executables that are domain entry points |
file_type |
Type assigned to files in persistent filesystems |
fs_domain |
Domain that can directly access a fixed disk |
fs_type |
Type assigned to filesystems, including nonpersistent filesystems |
gphdomain |
Domain derived from |
home_dir_type |
Type assigned to the parent directory holding user home directories |
home_type |
Type assigned to home directories |
homedirfile |
Type of special file in home directory, used to associate mount points with home directories |
lockfile |
Type assigned to lock files or directories |
logfile |
Type assigned to log files or directories |
login_contexts |
Type assigned to files used to define default contexts for login type |
mail_server_domain ... |
Get SELinux now with the O’Reilly learning platform.
O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.
