New pages

From SELinux Wiki

Jump to: navigation, search

Showing below up to 50 results starting with #1.

View (previous 50) (next 50) (20 | 50 | 100 | 250 | 500).

  1. 15:28, 11 December 2014 ‎Bounds Rules (hist) ‎[2,755 bytes] ‎RichardHaines (Talk | contribs) (New page: = Bounds Rules = Bounds handling was added in version 24 of the policy and consisted of adding <tt>userbounds</tt>, <tt>rolebounds</tt> and <tt>typebounds</tt> information to the policy. H...)
  2. 12:54, 11 December 2014 ‎Policy Configuration Statements (hist) ‎[1,770 bytes] ‎RichardHaines (Talk | contribs) (New page: = Policy Configuration Statements = == policycap == Policy version 22 introduced the policycap statement to allow new capabilities to be enabled or disabled in the kernel via policy in a ...)
  3. 12:43, 8 December 2014 ‎NB SQL 9.3 (hist) ‎[11,556 bytes] ‎RichardHaines (Talk | contribs) (New page: = SE-PostgreSQL = This section gives an overview of PostgreSQL version 9.3 with the <tt>sepgsql</tt> extension to support SELinux labeling. It assumes some basic knowledge of PostgreSQL th...)
  4. 10:20, 8 December 2014 ‎NB SandBox (hist) ‎[4,830 bytes] ‎RichardHaines (Talk | contribs) (New page: = Sandbox Services = Fedora has support for the following three types of sandbox services in F-20: * Non-GUI sandboxing (<tt>sandbox</tt> - see [http://danwalsh.livejournal.com/28545.html ...)
  5. 13:49, 7 December 2014 ‎NB Userspace Libraries (hist) ‎[5,203 bytes] ‎RichardHaines (Talk | contribs) (New page: = libselinux Library = <tt>libselinux</tt> contains all the SELinux functions necessary to build userspace SELinux-aware applications and object managers using 'C', Python, Ruby and PHP la...)
  6. 15:49, 5 December 2014 ‎NB ObjectClassesPermissions (hist) ‎[61,644 bytes] ‎RichardHaines (Talk | contribs) (New page: = Object Classes and Permissions = == Introduction == This section contains a list of object classes and their associated permissions that have been taken from the Fedora F-20 policy sourc...)
  7. 13:33, 5 December 2014 ‎NB Domain and Object Transitions (hist) ‎[11,536 bytes] ‎RichardHaines (Talk | contribs) (New page: = Domain and Object Transitions = This section discusses the type_transition statement that is used to: # Transition a process from one domain to another (a domain transition). # Transiti...)
  8. 13:31, 5 December 2014 ‎NB ComputingAccessDecisions (hist) ‎[2,641 bytes] ‎RichardHaines (Talk | contribs) (New page: = Computing Access Decisions = There are a number of ways to compute access decisions within userspace SELinux-aware applications or object managers: # Use functions that do not cache acc...)
  9. 13:14, 5 December 2014 ‎NB ComputingSecurityContexts (hist) ‎[23,998 bytes] ‎RichardHaines (Talk | contribs) (New page: = Computing Security Contexts = SELinux uses a number of policy language statements and <tt>libselinux</tt> functions to compute a security context via the kernel security server. When se...)
  10. 13:01, 5 December 2014 ‎NB USERS (hist) ‎[1,327 bytes] ‎RichardHaines (Talk | contribs) (New page: = SELinux Users = Users in GNU / Linux are generally associated to human users (such as Alice and Bob) or operator/system functions (such as admin), while this can be implemented in SELinu...)
  11. 17:04, 4 December 2014 ‎NB CoreComponents (hist) ‎[8,133 bytes] ‎RichardHaines (Talk | contribs) (New page: = Core SELinux Components = The [http://taiga.selinuxproject.org/~rhaines/NB4-diagrams/1-core.png High Level Core SELinux Components] diagram shows a high level view of the core SELinux co...)
  12. 15:48, 15 April 2013 ‎NB SEforAndroid 2 (hist) ‎[61,953 bytes] ‎RichardHaines (Talk | contribs) (New page: = Policy File Configuration Details = This section details the specific SE for Android policy configuration files (i.e. those not used by 'standard' Linux based SELinux) as they were in A...)
  13. 14:42, 15 April 2013 ‎NB SEforAndroid 1 (hist) ‎[57,725 bytes] ‎RichardHaines (Talk | contribs) (New page: = SE for Android = == Introduction == This section gives an overview of the enhancements made to Android to produce Security Enhancements for Android&trade; (SE for Android) as it stood in...)
  14. 13:43, 19 November 2012 ‎XENStatements (hist) ‎[4,367 bytes] ‎RichardHaines (Talk | contribs) (New page: = Xen Statements = Xen policy supports additional policy language statements: <tt>iomemcon</tt>, <tt>ioportcon</tt>, <tt>pcidevicecon</tt> and <tt>pirqcon</tt> that are discussed in the se...)
  15. 14:44, 18 November 2012 ‎DefaultRules (hist) ‎[7,120 bytes] ‎RichardHaines (Talk | contribs) (New page: = Default Rules = These rules allow a default user, role, type and/or range to be used when computing a context for a new object. These require policy version 27 or 28 with kernels 3.5 or ...)
  16. 19:38, 5 January 2012 ‎SEAndroid (hist) ‎[109 bytes] ‎StephenSmalley (Talk | contribs) (New page: == What is SE Android? == Security Enhanced (SE) Android is a project to identify and address critical gaps in the security of Android. Initially, the SE Android project is enabling the ...)
  17. 16:33, 15 January 2011 ‎NB SQL 9.0 (hist) ‎[29,271 bytes] ‎RichardHaines (Talk | contribs) (New page: = SELinux PostgreSQL Support (9.0) = This section gives an overview of the SE-PostgreSQL version 9.0.1 extensions to support SELinux in F-14 and how the database context information is man...)
  18. 20:22, 31 August 2010 ‎COTS (hist) ‎[246 bytes] ‎Jaxelson (Talk | contribs) (created page)
  19. 13:44, 21 May 2010 ‎NB RefPolicy (hist) ‎[99,986 bytes] ‎RichardHaines (Talk | contribs) (New page: = The Reference Policy = == Introduction == The Reference Policy is now the standard policy source used to build SELinux policies. This provides a single source tree with supporting docume...)
  20. 15:51, 18 May 2010 ‎NB Apache (hist) ‎[6,743 bytes] ‎RichardHaines (Talk | contribs) (New page: = Apache SELinux Support = Apache web servers are generally managed under SELinux by using the Apache policy modules from the Reference Policy, however an SELinux-aware shared library is a...)
  21. 14:57, 18 May 2010 ‎NB SQL (hist) ‎[34,677 bytes] ‎RichardHaines (Talk | contribs) (New page: = SELinux PostgreSQL Support = This section gives an overview of the SE-PostgreSQL (version 8.4) extensions to support SELinux in F-12 and how the database context information is managed. ...)
  22. 14:38, 18 May 2010 ‎NB XWIN (hist) ‎[15,332 bytes] ‎RichardHaines (Talk | contribs) (New page: = SELinux X-Windows Support = The SELinux X-Windows (XSELinux) implementation provides fine grained access control over the majority of the X-server objects (known as resources). The Refer...)
  23. 14:30, 18 May 2010 ‎NB VM (hist) ‎[17,608 bytes] ‎RichardHaines (Talk | contribs) (New page: = SELinux Virtual Machine Support = SELinux support is available in the KVM/QEMU and Xen virtual machine (VM) technologies<ref name="ftn29">KVM (Kernel-based Virtual Machine) and Xen are c...)
  24. 14:19, 18 May 2010 ‎NB Networking (hist) ‎[18,516 bytes] ‎RichardHaines (Talk | contribs) (New page: = SELinux Networking Support = SELinux supports the following types of network labeling: '''Internal labeling''' - This is where network objects are labeled and managed internally within ...)
  25. 15:34, 17 May 2010 ‎NB LSM (hist) ‎[32,454 bytes] ‎RichardHaines (Talk | contribs) (New page: = Linux Security Module and SELinux = This section gives a high level overview of the LSM and SELinux internal structure and workings. A more detailed view can be found in the "[http://www...)
  26. 15:26, 17 May 2010 ‎NB PAM (hist) ‎[5,569 bytes] ‎RichardHaines (Talk | contribs) (New page: = PAM Login Process = Applications used to provide login services (such as <tt>gdm</tt> and <tt>ssh</tt>) in F-12 use the PAM (Pluggable Authentication Modules) infrastructure to provide t...)
  27. 15:16, 17 May 2010 ‎NB Poly (hist) ‎[8,457 bytes] ‎RichardHaines (Talk | contribs) (New page: = Polyinstantiation = GNU / Linux supports the polyinstantiation of directories that can be utilised by SELinux via the Pluggable Authentication Module (PAM) that is explained in the next ...)
  28. 15:04, 16 May 2010 ‎NB AL (hist) ‎[14,788 bytes] ‎RichardHaines (Talk | contribs) (New page: = Audit Logs = For SELinux there are two main types of audit event: # SELinux-aware Application Events - These are generated by the SELinux kernel services and SELinux-aware applications ...)
  29. 14:59, 16 May 2010 ‎NB PandE (hist) ‎[2,002 bytes] ‎RichardHaines (Talk | contribs) (New page: = SELinux Permissive and Enforcing Modes = SELinux has three major modes of operation: : '''Enforcing''' - SELinux is enforcing the loaded policy. : '''Permissive''' - SELinux has loade...)
  30. 14:57, 16 May 2010 ‎NB PolicyType (hist) ‎[13,394 bytes] ‎RichardHaines (Talk | contribs) (New page: = Types of SELinux Policy = This section describes the different type of policy descriptions and versions that can be found within SELinux. The types of SELinux policy can described in a ...)
  31. 14:23, 16 May 2010 ‎NB MLS (hist) ‎[12,255 bytes] ‎RichardHaines (Talk | contribs) (New page: = Multi-Level Security and Multi-Category Security = As stated in the Mandatory Access Control (MAC) section as well as supporting Type Enforcement (TE), SELinux also support...)
  32. 14:12, 16 May 2010 ‎NB Objects (hist) ‎[11,997 bytes] ‎RichardHaines (Talk | contribs) (New page: = Objects = Within SELinux an object is a resource such as files, sockets, pipes or network interfaces that are accessed via processes (also known as subjects). These objects are classifie...)
  33. 14:02, 16 May 2010 ‎NB Subjects (hist) ‎[2,132 bytes] ‎RichardHaines (Talk | contribs) (New page: = Subjects = A subject is an active entity generally in the form of a person, process, or device that causes information to flow among objects or changes the system state. Within SELinux...)
  34. 14:01, 16 May 2010 ‎NB SC (hist) ‎[5,043 bytes] ‎RichardHaines (Talk | contribs) (New page: = Security Context = SELinux requires a security context to be associated with every process (or subject) and object that are used by the security server to decide whether access is allowe...)
  35. 13:56, 16 May 2010 ‎NB RBAC (hist) ‎[1,076 bytes] ‎RichardHaines (Talk | contribs) (New page: = Role-Based Access Control (RBAC) = To further control access to TE domains SELinux makes use of role-based access control (RBAC). This feature allows SELinux users to be associated to on...)
  36. 13:54, 16 May 2010 ‎NB TE (hist) ‎[5,130 bytes] ‎RichardHaines (Talk | contribs) (New page: = Type Enforcement (TE) = SELinux makes use of a specific style of type enforcement<ref name="ftn5"><sup>There are various "type enforcement" technologies. </sup></ref> (TE) to enforce man...)
  37. 13:52, 16 May 2010 ‎NB MAC (hist) ‎[3,121 bytes] ‎RichardHaines (Talk | contribs) (New page: = Mandatory Access Control (MAC) = Mandatory Access Control (MAC) is a type of access control in which the operating system is used to constrain a user or process (the subject) from access...)
  38. 13:49, 16 May 2010 ‎NB Overview (hist) ‎[6,320 bytes] ‎RichardHaines (Talk | contribs) (New page: = SELinux Overview = == Introduction == SELinux is the primary Mandatory Access Control (MAC) mechanism built into a number of GNU / Linux distributions. SELinux originally started as the ...)
  39. 16:47, 14 March 2010 ‎Experimenting With X-Windows (hist) ‎[36,259 bytes] ‎RichardHaines (Talk | contribs) (New page: = Experimenting with X-Windows = == Section Overview == The main objectives of this section are to: * Demonstrate the use of '<tt>selections</tt>' using polyinstantiation and non- polyins...)
  40. 16:17, 14 March 2010 ‎Building the XSELinux Function Test Application (hist) ‎[3,203 bytes] ‎RichardHaines (Talk | contribs) (New page: = Building the XSELinux Function Test Application = The <tt>X-setest</tt> application allows a user to execute all of the SELinuxGet/Set.. functions that are integrated with the X-Windows ...)
  41. 16:08, 14 March 2010 ‎Building a Basic Policy (hist) ‎[16,178 bytes] ‎RichardHaines (Talk | contribs) (New page: = Building a Basic Policy = == Introduction == The objective of this section is to show how policy files are constructed, compiled and loaded using the SELinux command line tools and edito...)
  42. 15:38, 14 March 2010 ‎Experimenters Corner (hist) ‎[1,504 bytes] ‎RichardHaines (Talk | contribs) (New page: = Experimenters Corner = This section contains example source code and policy modules that may be useful for experimenting with. There is an experiment that uses different x_contexts fil...)
  43. 21:07, 12 March 2010 ‎SVNserver (hist) ‎[13,777 bytes] ‎MichalSvoboda (Talk | contribs) (New page: == Use case: SVN server ==)
  44. 13:04, 17 February 2010 ‎LibselinuxAPISummary (hist) ‎[37,319 bytes] ‎RichardHaines (Talk | contribs) (New page: = API Summary for libselinux = These functions have been taken from the following header files from the ``libselinux 2.0.87'' release and sorted in alphabetical order: /usr/include/selinu...)
  45. 22:32, 11 January 2010 ‎ULtest (hist) ‎[204 bytes] ‎WikiSysop (Talk | contribs) (New page: This is a test, ignore.)
  46. 14:57, 2 December 2009 ‎PolicyConfigurationFiles (hist) ‎[40,305 bytes] ‎RichardHaines (Talk | contribs) (New page: = Policy Configuration Files = Each file discussed in this section is relative to the policy name as follows: <nowiki>/etc/selinux/<policy_name></nowiki> The majority of files are instal...)
  47. 14:30, 2 December 2009 ‎PolicyStoreConfigurationFiles (hist) ‎[29,394 bytes] ‎RichardHaines (Talk | contribs) (New page: = Policy Store Configuration Files = Each file discussed in this section is relative to the policy name as follows: <pre> <nowiki>/etc/selinux/<policy_name></nowiki> </pre> The Policy Sto...)
  48. 13:55, 2 December 2009 ‎GlobalConfigurationFiles (hist) ‎[15,553 bytes] ‎RichardHaines (Talk | contribs) (New page: = Global Configuration Files = Listed in the sections that follow are the common configuration files used by SELinux and are therefore not policy specific. == /etc/selinux/config File == ...)
  49. 13:36, 2 December 2009 ‎ConfigurationFiles (hist) ‎[10,524 bytes] ‎RichardHaines (Talk | contribs) (New page: = SELinux Configuration Files = == Introduction == This section explains each SELinux configuration file with its format, example content and where applicable, any supporting SELinux comma...)
  50. 14:52, 30 November 2009 ‎SIDStatements (hist) ‎[3,071 bytes] ‎RichardHaines (Talk | contribs) (New page: = Security ID (SID) Statement = There are two SID statements, the first one declares the actual SID identifier and is defined at the start of a policy source file. The second statement is ...)

View (previous 50) (next 50) (20 | 50 | 100 | 250 | 500).

Views
Personal tools
Toolbox