redhat – SELinux：如何显示类型的所有允许规则？

概述对于任意对象类型,例如user_tmp_t,我想知道允许哪些进程访问此标记.如何查找引用user_tmp_t的所有允许规则？ 您无法直接找到可以转换为给定类型的进程,但您可以间接地进行此类 *** 作. 是时候熟悉搜索工具了.此工具允许您以各种方式查询SELinux策略. 在这里,我们将看到哪些类型可以转换为user_tmp_t类型.其中包括您感兴趣的流程的类型.正如您所看到的,这也为您提供了一些关于流程 对于任意对象类型,例如user_tmp_t,我想知道允许哪些进程访问此标记.如何查找引用user_tmp_t的所有允许规则？解决方法 您无法直接找到可以转换为给定类型的进程,但您可以间接地进行此类 *** 作.

是时候熟悉搜索工具了.此工具允许您以各种方式查询SELinux策略.

在这里,我们将看到哪些类型可以转换为user_tmp_t类型.其中包括您感兴趣的流程的类型.正如您所看到的,这也为您提供了一些关于流程允许执行的提示.

# sesearch -T -t user_tmp_tFound 44 semantic te rules:   type_Transition staff_sudo_t user_tmp_t : process staff_t;    type_Transition auditadm_sudo_t user_tmp_t : process auditadm_t;    type_Transition thumb_t user_tmp_t : file thumb_tmp_t;    type_Transition thumb_t user_tmp_t : dir thumb_tmp_t;    type_Transition thumb_t user_tmp_t : sock_file thumb_tmp_t;    type_Transition mozilla_plugin_t user_tmp_t : file mozilla_plugin_tmp_t;    type_Transition telepathy_msn_t user_tmp_t : file telepathy_msn_tmp_t;    type_Transition mozilla_plugin_t user_tmp_t : dir mozilla_plugin_tmp_t;    type_Transition telepathy_msn_t user_tmp_t : dir telepathy_msn_tmp_t;    type_Transition mozilla_plugin_t user_tmp_t : sock_file mozilla_plugin_tmp_t;    type_Transition telepathy_msn_t user_tmp_t : sock_file telepathy_msn_tmp_t;    type_Transition mozilla_plugin_t user_tmp_t : fifo_file mozilla_plugin_tmp_t;    type_Transition alsa_t user_tmp_t : file alsa_tmp_t;    type_Transition staff_gkeyringd_t user_tmp_t : dir gkeyringd_tmp_t;    type_Transition user_gkeyringd_t user_tmp_t : dir gkeyringd_tmp_t;    type_Transition alsa_t user_tmp_t : dir alsa_tmp_t;    type_Transition staff_gkeyringd_t user_tmp_t : sock_file gkeyringd_tmp_t;    type_Transition user_gkeyringd_t user_tmp_t : sock_file gkeyringd_tmp_t;    type_Transition dbadm_sudo_t user_tmp_t : process dbadm_t;    type_Transition secadm_sudo_t user_tmp_t : process secadm_t;    type_Transition gpg_pinentry_t user_tmp_t : sock_file gpg_pinentry_tmp_t;    type_Transition mozilla_plugin_config_t user_tmp_t : file mozilla_plugin_tmp_t;    type_Transition mozilla_plugin_config_t user_tmp_t : dir mozilla_plugin_tmp_t;    type_Transition sysadm_sudo_t user_tmp_t : process sysadm_t;    type_Transition virt_qemu_ga_unconfined_t user_tmp_t : file svirt_tmp_t;    type_Transition svirt_t user_tmp_t : file svirt_tmp_t;    type_Transition virt_qemu_ga_unconfined_t user_tmp_t : dir svirt_tmp_t;    type_Transition secadm_gkeyringd_t user_tmp_t : dir gkeyringd_tmp_t;    type_Transition httpd_t user_tmp_t : dir httpd_tmp_t;    type_Transition svirt_t user_tmp_t : dir svirt_tmp_t;    type_Transition virt_qemu_ga_unconfined_t user_tmp_t : lnk_file svirt_tmp_t;    type_Transition svirt_t user_tmp_t : lnk_file svirt_tmp_t;    type_Transition secadm_gkeyringd_t user_tmp_t : sock_file gkeyringd_tmp_t;    type_Transition svirt_tcg_t user_tmp_t : file svirt_tmp_t;    type_Transition svirt_tcg_t user_tmp_t : dir svirt_tmp_t;    type_Transition auditadm_gkeyringd_t user_tmp_t : dir gkeyringd_tmp_t;    type_Transition xguest_gkeyringd_t user_tmp_t : dir gkeyringd_tmp_t;    type_Transition svirt_tcg_t user_tmp_t : lnk_file svirt_tmp_t;    type_Transition auditadm_gkeyringd_t user_tmp_t : sock_file gkeyringd_tmp_t;    type_Transition xguest_gkeyringd_t user_tmp_t : sock_file gkeyringd_tmp_t;    type_Transition Chrome_sandBox_t user_tmp_t : file Chrome_sandBox_tmp_t;    type_Transition Chrome_sandBox_t user_tmp_t : dir Chrome_sandBox_tmp_t;    type_Transition gconfd_t user_tmp_t : file gconf_tmp_t;    type_Transition gconfd_t user_tmp_t : dir gconf_tmp_t; Found 298 named file Transition filename_trans:----(omitted)----

总结

以上是内存溢出为你收集整理的redhat – SELinux：如何显示类型的所有允许规则？全部内容，希望文章能够帮你解决redhat – SELinux：如何显示类型的所有允许规则？所遇到的程序开发问题。

如果觉得内存溢出网站内容还不错，欢迎将内存溢出网站推荐给程序员好友。