New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Question Regarding "semanage boolean": #418
Comments
SELinux notebook - https://github.com/SELinuxProject/selinux-notebook/ - chapter SELinux Configuration Files |
Thank you. I will close this. |
I'm not sure that this issue should be closed - the typical administrator or user won't know to find this notebook from their system. While it's nice to solve one persons question with this answer, the question itself points to a broader user interaction issue. That semanage boolean does not adequately or properly communicate what each boolean does to a user, and a user can't find what those booleans do on their own system in isolation. I don't think it's reasonable to expect every user to somehow search down this thread or something obscure on a mailing list. What this issue is showing is that there is a need to improve semanage boolean to communicate better about what a boolean will affect on a system, and that those communications must be localised into the semanage boolean tool itself. |
Alright, I shall re-open it. My bad. |
There's
If Fedora, Example:
If you find policy booleans descriptions insufficient, please report your issue to your SELinux policy provider. |
Hello, I am a person who wants to dig deeper in selinux policies. I notice semanage booleans are policies that can be enabled/disabled if I'm right. My question is where are these policies even stored on a typical linux system?
I was going to run a virtual machine and tinker with these policies, but I cannot find the policies in a easy way.
@Firstyear and I were discussing this on some discord server. Thank you!
The text was updated successfully, but these errors were encountered: