A Beginner’s Guide to SELinux on CentOS 10/11

A Beginner’s Guide to SELinux on CentOS 10/11

 

 

SELinux (Security-Enhanced Linux) is a Mandatory Access Control (MAC) system developed by the NSA. Unlike Discretionary Access Control (DAC), which is used by most Linux distributions, SELinux provides a more secure environment by restricting system access to only what is explicitly allowed.

 

 

This guide will help you understand the basics of SELinux, including installation, configuration, troubleshooting, and policy management.

 

 

Understanding SELinux

 

 

1. SELinux States

 

 

SELinux can operate in one of the following states:

 

 

- Enabled: SELinux is active and enforcing security policies.

 

 

- Disabled: SELinux is turned off.

 

 

To disable SELinux, edit the configuration file:

 

 

sudo nano /etc/selinux/config

 

 

Find the line that starts with SELINUX=, and change it to:

 

 

SELINUX=disabled

 

 

Save and exit, then reboot the system for the changes to take effect.

 

 

After rebooting, check the status:

 

 

sudo sestatus

 

 

If SELinux is disabled, the output should confirm it.

 

 

2. SELinux Modes

 

 

When SELinux is enabled, it can run in one of the following modes:

 

 

- Enforcing: SELinux strictly applies security policies and blocks unauthorized access.

 

 

- Permissive: SELinux logs policy violations but does not enforce them.

 

 

- Disabled: SELinux is completely turned off.

blog.revold.us/a-beginners-guide-to-selinux-on-centos-10-11/

Done