A SELinux policy for incron: our first interface
by Sven Vermeulen, post on Fri 24 May 2013The next step after having a basic skeleton is to get incrontab running. We know however that everything invoked from the main daemon will be running with the rights of the daemon context (unless we would patch the source code, but that is beyond the scope of this set of …
Commandline SELinux policy helper functions
by Sven Vermeulen, post on Sat 18 May 2013To work on SELinux policies, I use a couple of functions that I can call on the shell (command line): seshowif, sefindif, seshowdef and sefinddef. The idea behind the methods is that I want to search (find) for an interface (if) or definition (def) that contains a particular method or …