14
Chapter 2. SELinux Policy Overview
netif_type
,
port_type
, and
node_type
These attributes relate to network activity by domains. The
netif_type
identifies the types
associated with network interfaces, allowing policy to control sending, receiving, and various
operations on the interface:
netif_t
netif_eth0_t
netif_eth1_t
netif_eth2_t
netif_lo_t
netif_ippp0_t
netif_ipsec0_t
netif_ipsec1_t
netif_ipsec2_t
The
port_type
attribute is associated with all types that are assigned to port numbers. This al 
lows SELinux to control port binding, meaning daemons are restricted in using a port depending
on the type assigned to the port:
dns_port_t
dhcpd_port_t
http_cache_port_t
port_t
reserved_port_t
http_port_t
pxe_port_t
smtp_port_t
mysqld_port_t
rndc_port_t
ntp_port_t
portmap_port_t
postgresql_port_t
snmp_port_t
syslogd_port_t
The
node_type
is for types assigned to network nodes or hosts, allowing SELinux to control
traffic to and from the node:
node_t
node_lo_t
node_internal_t
node_inaddr_any_t
node_unspec_t
node_link_local_t
node_site_local_t
node_multicast_t
node_mapped_ipv4_t
node_compat_ipv4_t
fs_type
This attribute identifies all types assigned to file systems, including non persistent file systems.
The
fs_type
attribute is used in TE rules to allow most domains to obtain overall file system
statistics, and for some specific domains to mount any file system. Here are the SELinux file
types that are part of
fs_type
:
devpts_t: sysadm_devpts_t, staff_devpts_t, user_devpts_t
fs_t
eventpollfs_t






footer




 

 

 

 

 Home | About Us | Network | Services | Support | FAQ | Control Panel | Order Online | Sitemap | Contact

adult web hosting

 

Our partners: PHP: Hypertext Preprocessor Best Web Hosting Java Web Hosting Inexpensive Web Hosting  Jsp Web Hosting

Cheapest Web Hosting Jsp Hosting Cheap Hosting

Visionwebhosting.net Business web hosting division of Web Design Plus. All rights reserved