rhel 7之 selinux
阿新 • • 發佈:2018-02-19
min code ipo lin oid 查看 sta conf targe 在安裝數據庫的時候,默認都會關閉selinux,以下的命令需要我們記住,在排錯的時候可能會用到。不能什麽命令都去查看文檔,要專業。
1、版本
[root@roidb01 ~]# uname -a Linux roidb01 3.10.0-123.el7.x86_64 #1 SMP Mon May 5 11:16:57 EDT 2014 x86_64 x86_64 x86_64 GNU/Linux [root@roidb01 ~]# cat /etc/redhat-release Red Hat Enterprise Linux Server release 7.0 (Maipo) [root@roidb01 ~]#
2、查看命令
[root@roidb01 ~]# getenforce ##查看selinux 狀態
Disabled
[root@roidb01 ~]#
[root@roidb01 ~]# setenforce 0 ##臨時關閉selinux
setenforce: SELinux is disabled
[root@roidb01 ~]#
[root@roidb01 ~]# sestatus ##查看selinux 狀態
SELinux status: disabled
[root@roidb01 ~]#
3、配置文件
[root@roidb01 ~]# cat /etc/selinux/config # This file controls the state of SELinux on the system. # SELINUX= can take one of these three values: # enforcing - SELinux security policy is enforced. # permissive - SELinux prints warnings instead of enforcing. # disabled - No SELinux policy is loaded. SELINUX=disabled ##默認為enforcing ,修改為disable,重啟操作系統init 6 # SELINUXTYPE= can take one of these two values: # targeted - Targeted processes are protected, # minimum - Modification of targeted policy. Only selected processes are protected. # mls - Multi Level Security protection. SELINUXTYPE=targeted
rhel 7之 selinux