diff options
Diffstat (limited to 'sec-policy/selinux-base/files/config')
| -rw-r--r-- | sec-policy/selinux-base/files/config | 15 |
1 files changed, 15 insertions, 0 deletions
diff --git a/sec-policy/selinux-base/files/config b/sec-policy/selinux-base/files/config new file mode 100644 index 000000000000..55933ea0e534 --- /dev/null +++ b/sec-policy/selinux-base/files/config @@ -0,0 +1,15 @@ +# This file controls the state of SELinux on the system on boot. + +# SELINUX can take one of these three values: +# enforcing - SELinux security policy is enforced. +# permissive - SELinux prints warnings instead of enforcing. +# disabled - No SELinux policy is loaded. +SELINUX=permissive + +# SELINUXTYPE can take one of these four values: +# targeted - Only targeted network daemons are protected. +# strict - Full SELinux protection. +# mls - Full SELinux protection with Multi-Level Security +# mcs - Full SELinux protection with Multi-Category Security +# (mls, but only one sensitivity level) +SELINUXTYPE=strict |