booleans - phpMan

Command: man perldoc info search(apropos)  

booleans(8)           SELinux Command Line documentation           booleans(8)



NAME
       booleans - Policy booleans enable runtime customization of SELinux policy.


DESCRIPTION
       This manual page describes SELinux policy booleans.

       The SELinux policy can include conditional rules that are enabled or disabled based
       on the current values of a set of policy booleans.   These  policy  booleans  allow
       runtime modification of the security policy without having to load a new policy.

       For  example,  the  boolean  httpd_enable_cgi  allows  the  httpd daemon to run cgi
       scripts if it is enabled.  If the administrator does not want to allow execution of
       cgi scripts, he can simply disable this boolean value.

       The  policy  defines  a  default  value  for  each boolean, typically false.  These
       default values can be  overridden  at  boot-time  based  on  the  settings  in  the
       /etc/selinux/SELINUXTYPE/booleans  file,  where  SELINUXTYPE  is the type of policy
       currently being run on the system as defined in the /etc/selinux/config file.   The
       system-config-securitylevel tool provides an interface for altering the settings in
       this file.  The load_policy(8) program will preserve current boolean settings  upon
       a  policy  reload  by  default,  or  can optionally reset booleans to the boot-time
       defaults via the -b option.

       Boolean values can be listed by using the getsebool(8) utility and passing  it  the
       -a option.

       Boolean  values  can also be changed at runtime via the setsebool(8) utility or the
       togglesebool utility.  These utilities only change the current boolean value and do
       not affect the boot-time settings.


AUTHOR
       This  manual page was written by Dan Walsh <dwalsh AT redhat.com>.  The SELinux condi-
       tional policy support was developed by Tresys Technology.


SEE ALSO
       getsebool(8), setsebool(8), selinux(8), togglesebool(8)


FILES
       /etc/selinux/SELINUXTYPE/booleans, /etc/selinux/config



dwalsh AT redhat.com                 11 Aug 2004                      booleans(8)

Generated by $Id: phpMan.php,v 4.55 2007/09/05 04:42:51 chedong Exp $ Author: Che Dong
On Apache/1.3.41 (Unix) PHP/5.2.5 mod_perl/1.30 mod_gzip/1.3.26.1a
Under GNU General Public License
2008-08-20 19:32 @38.103.63.61 CrawledBy CCBot/1.0 (+http://www.commoncrawl.org/bot.html)
Valid XHTML 1.0!Valid CSS!