diff options
author | V3n3RiX <venerix@redcorelinux.org> | 2017-10-09 18:53:29 +0100 |
---|---|---|
committer | V3n3RiX <venerix@redcorelinux.org> | 2017-10-09 18:53:29 +0100 |
commit | 4f2d7949f03e1c198bc888f2d05f421d35c57e21 (patch) | |
tree | ba5f07bf3f9d22d82e54a462313f5d244036c768 /sec-policy/selinux-base/files |
reinit the tree, so we can have metadata
Diffstat (limited to 'sec-policy/selinux-base/files')
-rw-r--r-- | sec-policy/selinux-base/files/config | 15 | ||||
-rw-r--r-- | sec-policy/selinux-base/files/selinux.conf | 4 |
2 files changed, 19 insertions, 0 deletions
diff --git a/sec-policy/selinux-base/files/config b/sec-policy/selinux-base/files/config new file mode 100644 index 000000000000..55933ea0e534 --- /dev/null +++ b/sec-policy/selinux-base/files/config @@ -0,0 +1,15 @@ +# This file controls the state of SELinux on the system on boot. + +# SELINUX can take one of these three values: +# enforcing - SELinux security policy is enforced. +# permissive - SELinux prints warnings instead of enforcing. +# disabled - No SELinux policy is loaded. +SELINUX=permissive + +# SELINUXTYPE can take one of these four values: +# targeted - Only targeted network daemons are protected. +# strict - Full SELinux protection. +# mls - Full SELinux protection with Multi-Level Security +# mcs - Full SELinux protection with Multi-Category Security +# (mls, but only one sensitivity level) +SELINUXTYPE=strict diff --git a/sec-policy/selinux-base/files/selinux.conf b/sec-policy/selinux-base/files/selinux.conf new file mode 100644 index 000000000000..77d379e81251 --- /dev/null +++ b/sec-policy/selinux-base/files/selinux.conf @@ -0,0 +1,4 @@ +# Rebuild all selinux policy modules +[selinux-rebuild] +class = portage.sets.dbapi.OwnerSet +files = /usr/share/selinux/ |