Home Linux How to Configure SELinux?

How to Configure SELinux?

How Security-Enhanced Linux Works?

Linux vs. SELinux: What are the Differences?

Linux comes with pre-set SELinux security rules, making it easy to configure. Admins can also create their own rules. There are two main ways to configure SELinux – permanently or just for the current session.

Configure SELinux Permanently

To set SELinux rules that stay even after restarting, edit the /etc/selinux/config file. This file controls the SELinux settings. In this file you can change the SELINUX variable to the below.

  • enforcing (blocks unauthorized access)
  • permissive (logs access attempts but doesn’t block)
  • disabled (turns off SELinux completely)

For example to set the permissive mode follow the below steps :

1. Open the config file in any text editor like vim, nano and gedit etc and then Change the SELINUX=permissive after that Save and exit.

2. Restart your computer and then Use the below command to verify the new setting is applied.

Command :

sudo sesstatus

Output :

Configure SELinux Temporarily

You can also change SELinux settings just for your current session. These changes get reset after the restarting. Use the “setenforce” command to Enable selinux temporarily use the first command to Turn on enforcing mode and use the second command to Turn off enforcing mode.

Command :

setenforce 0
setenforce 1

Output :

What is SELinux?

SELinux is a special security system built into Linux computers. It helps keep your computer safe and secure. With SELinux, different programs and users on the computer have limited permissions. This means each program or user can only access certain files and do certain actions that they are allowed to do. For example, The web browser can connect to the internet but it cannot read your private documents. This prevents viruses and hackers from gaining full control over your system if they get into one program.

SELinux sets rules about what different programs and users are permitted to do. System administrators enable SELinux and set up these security rules based on their needs.

Table of Content

  • What Is SELinux?
  • How Security-Enhanced Linux Works?
    • SELinux Policies
    • SELinux Labels and Type Enforcement
    • SELinux Modes
  • How to Configure SELinux?
    • Configure SELinux Permanently
    • Configure SELinux Temporarily
  • Linux vs. SELinux: What are the Differences?
    • AppArmor vs. SELinux

Similar Reads

What Is SELinux?

SELinux is a special security system built into Linux computers. SELinux was created by the U.S National Security Agency and Red Hat company. The main purpose of the SELinux is to control what different programs and users are allowed to access on the computer. It does this by setting the strict rules. Without SELinux, if a program gets a virus or hacker access, that program could access all files and data on the computer. This is bad. With SELinux, each program and user is limited in what they can see and do. For example, a web browser can connect to websites but cannot read your private documents. This prevents viruses and hackers from causing full damage if they get into one program....

How Security-Enhanced Linux Works?

SELinux works by implementing mandatory access controls (MAC). With MAC, sysadmins define which users and processes have access to specific resources rather than relying on less secure broadly-defined permissions. To accomplish this, SELinux uses security policies....

How to Configure SELinux?

Linux comes with pre-set SELinux security rules, making it easy to configure. Admins can also create their own rules. There are two main ways to configure SELinux – permanently or just for the current session....

Linux vs. SELinux: What are the Differences?

1. The purpose : Linux is the operating system that manages the hardware and the software resources onto a computer. SELinux is a security part that protects the Linux from the bad software and the unauthorized access....

Conclusion

In short The SELinux is a crucial security system that enhances Linux by adding mandatory access controls and granular policies to tightly restrict what users and programs can access on the system....

What is SELinux – FAQs

What is SELinux and why is it important?...

Tags:
#Linux-Unix

How Security-Enhanced Linux Works?

Linux vs. SELinux: What are the Differences?

Contact Us

Categories
Learn the most popular programming languages in the world.