Skip to main content

about getsebool and setsebool


The setsebool is used to set SELinux boolean value i.e. various configurations can be enabled or disabled using this tool. In other words, the setsebool command switches on and off the protection of SELinux. Type getsebool -a to see all such options which can be enabled or disabled at run time:
e.g.
# getsebool -a

The following should give you a complete listing of all the vsftpd switches:
e.g. 
# getsebool -a | grep ftp 

For example, if httpd_disable_trans set to 1, it will disable SELinux protection for  Apache web server. To disable it, enter:

 # setsebool -P httpd_can_network_connect=1

To enable it, enter: 
 # setsebool -P httpd_can_network_connect=0

Labels:

Comments

  1. Amey AmbajiOctober 9, 2013 at 6:58 PM

    what -P in setsebool command stands for

    ReplyDelete
  2. AnonymousOctober 10, 2013 at 2:34 PM

    i think -P flag in setsebool stands for 'persistant'. correct me if i am wrong,,,

    ReplyDelete
    Replies
    1. AnonymousDecember 25, 2013 at 12:11 AM

      you are right P stands for persistant means changes will reflect even after system restart.

      Delete

Post a Comment

Popular posts from this blog

Installing Qualcomm Atheros AR8162 Fast Ethernet Driver on Lenovo G400

I was preparing Lenovo G400 laptop for my linux class, after I installed CentOS 6.5 on it, tada,,,, my ethernet adapter won't show up. I checked with ifconfig command but where the hell my eth0 ??. Then i type the command below : # lspci -v 01:00.0 Ethernet controller: Qualcomm Atheros AR8162 Fast Ethernet (rev 10)     Subsystem: Lenovo Device 3802     Flags: bus master, fast devsel, latency 0, IRQ 32     Memory at 90500000 (64-bit, non-prefetchable) [size=256K]     I/O ports at 2000 [size=128]     Capabilities: <access denied>     Kernel driver in use: alx It seem my wired network adapter do not have its driver. After searching on the net then I find this great article. I wrote it out on my blog to make it sure I have notes for the trouble. This is how we troubleshoot it :   First download this file : alx-linux-v2.0.0.6.rar unrar it, run make command, change directory...
Post a Comment
Read more

All certification

Post a Comment
Read more

Honor Code Certificate from edX - Linux Foundation

Post a Comment
Read more