answersLogoWhite

0


Best Answer

mandatory access control

User Avatar

Wiki User

13y ago
This answer is:
User Avatar

Add your answer:

Earn +20 pts
Q: What type of control does selinux implement?
Write your answer...
Submit
Still have questions?
magnify glass
imp
Related questions

What does SELinux provide to its users?

SELinux (Security Enhanced Linux) provides its users with well defined policy interfaces, flexible policy, control over which activities are allowed for each user or process with precise specifications.


What are three states of SELinux?

SELinux provides three states of operation: Enforcing Permissive Disabled


What selection in the left pane of the SELinux Administration window lets you change policy settings for SELinux?

The Boolean selection.


How do you turn off selinux?

How you turn off SELinux depends on your specific distribution, but they are all pretty common. There are a few ways to do this. If you are looking to temporarily disable SELinux, you can use the "setenforce" command (ran as the root user or through the sudo command) to do this - provided your distribution comes with it. Entering 'setenforce 0' will temporarily disable SELinux until you re-enable it, or you reboot. Many distributions come with a configuration file for SELinux in the /etc directory - look for /etc/config/selinux or /etc/selinux.conf (or the like) and edit the file - there will be a line within that begins with "selinux=" - change that value to 'disabled' to set it for the next reboot. Lastly, you can add the parameter 'selinux=0' to your kernel boot parameter in whatever boot loader you are using to disable it on next reboot.


Is SELinux preinstalled in Arch Linux?

No. Its support status in Arch Linux is currently unofficial with the official Arch kernel. However, if you want SELinux, there is a hardened version of the kernel you can install, along with a few rebuilds of core packages with SELinux support from the AUR. The information on what packages need to be rebuilt can be looked up in the SELinux article in the ArchWiki.


What are the three states of SELinux?

The three states of SELinux are Enforcing, Permissive, and Disabled. In Enforcing mode, SELinux policies are enforced and violations are logged. In Permissive mode, policies are not enforced but violations are logged for analysis. Disabled mode turns off SELinux entirely.


What is selinux in redhat?

NSA Security-Enhanced Linux (SELinux) is an implementation of a flexi- ble mandatory access control architecture in the Linux operating sys- tem. The SELinux architecture provides general support for the enforcement of many kinds of mandatory access control policies, includ- ing those based on the concepts of Type Enforcement®, Role- Based Access Control, and Multi-Level Security. The /etc/selinux/config configuration file controls whether SELinux is enabled or disabled, and if enabled, whether SELinux operates in per- missive mode or enforcing mode. The SELINUX variable may be set to any one of disabled, permissive, or enforcing to select one of these options. The disabled option completely disables the SELinux kernel and application code, leaving the system running without any SELinux protection. The permissive option enables the SELinux code, but causes it to operate in a mode where accesses that would be denied by policy are permitted but audited. The enforcing option enables the SELinux code and causes it to enforce access denials as well as auditing them. Permissive mode may yield a different set of denials than enforcing mode, both because enforcing mode will prevent an operation from pro- ceeding past the first denial and because some application code will fall back to a less privileged mode of operation if denied access. The /etc/selinux/config configuration file also controls what policy is active on the system. SELinux allows for multiple policies to be installed on the system, but only one policy may be active at any given time. At present, two kinds of SELinux policy exist: targeted and strict. The targeted policy is designed as a policy where most pro- cesses operate without restrictions, and only specific services are placed into distinct security domains that are confined by the policy. For example, the user would run in a completely unconfined domain while the named daemon or apache daemon would run in a specific domain tai- lored to its operation. The strict policy is designed as a policy where all processes are partitioned into fine-grained security domains and confined by policy. It is anticipated in the future that other policies will be created (Multi-Level Security for example). You can define which policy you will run by setting the SELINUXTYPE environment variable within /etc/selinux/config. The corresponding policy configu- ration for each such policy must be installed in the /etc/selinux/SELINUXTYPE/ directories. A given SELinux policy can be customized further based on a set of com- pile-time tunable options and a set of runtime policy booleans. sys- tem-config-securitylevel allows customization of these booleans and tunables.


Which type of controls are used to implement and maintain passwords identification authentication and access control mechanisms?

technical controls


What was the main goal of business managers?

The main goals of business manager is to Plan, Implement and control. General definition is to control the work place and produce more goods


What are the fourth and fifth processes of the orm process?

Make risk control decisions and implement control measures


What are the fourth and fifth steps of the ORM process?

Make risk control decisions and implement control measures


What is a opinion on gun control?

There is no rational reason to implement a law against a tool.