Ubuntu中的SELinux实现
Ubuntu如何实现SELinux.?在Ubuntu上实现SELinux涉及哪些参数(模块)?
回答 2
Ask Ubuntu用户
发布于 2014-06-10 12:50:30
Ubuntu如何实现SELinux.?
默认情况下没有安装或启用selinux。我们使用仪表器的默认设置。用于SELinux的Ubuntu页面甚至声称..。
警告ubuntu特有的"selinux“和"selinux-policy-ubuntu”包,这里记录的自业力以来没有得到太多的关注,并且似乎在精确性上被有效地破坏了。如果您希望在Ubuntu中使用SELinux,来自Debian的“selinux基础”和“selinux-策略-默认”包仍在积极维护。与这些包相关的文档可以在http://wiki.debian.org/SELinux上找到
但也包含关于如何安装它的说明:
可以在Ubuntu中通过安装" SELinux“元包(这将对系统进行必要的更改)启用Ubuntu中的SELinux SELinux,并在安装后安装Tresys用于Ubuntu: sudo apt-get installing的策略,系统将提示您重新启动系统以标记和激活selinux。
但手动安装debian软件包可能更明智..。
所涉及的软件包(模块)是什么?
- 与selinux相关的包。
- 与selinux-utils相关的包。
- 与selinux相关的包-策略-ubuntu。
Ask Ubuntu用户
发布于 2014-11-08 06:53:47
我相信在安装SELinux之前,您必须先拆下仪器:
sudo apt-get remove apparmor根据SELinux维基页面的说法:
从Heron开始,SELinux已经集成到Ubuntu中,可以通过apt安装。安装selinux包: sudo apt-get Install selinux更改/etc/ SELinux /config中的selinux模式(可选):
- 执行-i‘S/selinux=.*/selinux=强制/’/etc/selinux/config
- -i‘S/selinux=.*/selinux=允许/’/etc/selinux/config
在关机期间重新启动系统上的所有文件将被标记。这可能需要一些时间,这取决于您有多少文件和磁盘速度。
使用apt-cache search进行搜索会发现以下软件包:
postgresql-contrib-9.4 - additional facilities for PostgreSQL
ruby-selinux - Ruby bindings to SELinux shared libraries
checkpolicy - SELinux policy compiler
debian-handbook - reference book for Debian users and system administrators
joe-jupp - reimplement the joe Debian package using jupp
jupp - user friendly full screen text editor
libseaudit-dev - Security Enhanced Linux audit message parser development
libseaudit4 - Security Enhanced Linux audit message parsing library
libsefs-dev - Security Enhanced Linux file context management development
libsefs4 - Security Enhanced Linux file context management
libsetools-java - SETools Java bindings (architecture-independent)
libsetools-tcl - SETools Tcl bindings
libtomoyotools3 - lightweight Linux Mandatory Access Control system - library
policycoreutils - SELinux core policy utilities
python-selinux - Python bindings to SELinux shared libraries
python-semanage - Python bindings for SELinux policy management
python-sepolgen - Python module used in SELinux policy generation
python-sepolicy - Python binding for SELinux Policy Analyses
python-setools - SETools Python bindings
ruby-semanage - Ruby bindings to for SELinux policy management
selinux - Security-Enhanced Linux runtime support
selinux-basics - SELinux basic support
selinux-policy-default - Strict and Targeted variants of the SELinux policy
selinux-policy-dev - Headers from the SELinux reference policy for building modules
selinux-policy-doc - Documentation for the SELinux reference policy
selinux-policy-dummy - Empty Security-Enhanced Linux policy (dummy package)
selinux-policy-mls - MLS (Multi Level Security) variant of the SELinux policy
selinux-policy-src - Source of the SELinux reference policy for customization
selinux-policy-ubuntu - Security-Enhanced Linux Reference Policy
selinux-policy-ubuntu-dev - Security-Enhanced Linux Reference Policy Development Headers
selinux-policy-ubuntu-doc - Security-Enhanced Linux Reference Policy Documentation
selinux-utils - SELinux utility programs
setools - tools for Security Enhanced Linux policy analysis
setools-gui - GUI tools for Security Enhanced Linux policy analysishttps://askubuntu.com/questions/481293
复制相似问题
腾讯云开发者
