I need to know everything related to a selinux type on a running system's current rules:
- allow, allowaudit, dontaudit rules.
- files labeled with a context using the type.
- transitions.
…and any other info.
Is there any command(s) I can use to query for that info or should I download the all selinux related "src" packages, filter out the modules not in use and grep every file for that info? There must be an easier way to do that.
Best Answer
Some of the commands to obtain this info are (examples use
httpd_log_t
):seinfo
sesearch
semanage
References: RHEL6 SELinux manual