diff options
| author |   Sven Vermeulen <sven.vermeulen@siphos.be> | 2012-05-21 21:07:31 +0200 |
|---|---|---|
| committer | Sven Vermeulen <sven.vermeulen@siphos.be> | 2012-05-21 21:07:31 +0200 |
| commit | 43763764f49c68a232a9da3568927e3541fdb493 (patch) | |
| tree | c214f8dcc79ce1341ec35441f5603efb6b6cffea | |
| parent | Adding back in sandbox fix, still needed, even with /selinux (diff) | |
| download | hardened-docs-43763764f49c68a232a9da3568927e3541fdb493.tar.gz hardened-docs-43763764f49c68a232a9da3568927e3541fdb493.tar.bz2 hardened-docs-43763764f49c68a232a9da3568927e3541fdb493.zip | |
Update on localpolicy
| -rw-r--r-- | xml/selinux-faq.xml | 25 |
1 files changed, 23 insertions, 2 deletions
diff --git a/xml/selinux-faq.xml b/xml/selinux-faq.xml index c893818..5fe99fe 100644 --- a/xml/selinux-faq.xml +++ b/xml/selinux-faq.xml @@ -17,8 +17,8 @@ The FAQ is a collection of solutions found on IRC, mailinglist, forums or elsewhere </abstract> -<version>22</version> -<date>2012-05-05</date> +<version>23</version> +<date>2012-05-21</date> <faqindex> <title>Questions</title> @@ -411,6 +411,27 @@ irc.freenode.net, the mailinglist, forums, etc. to find the proper rules and statements for your case. </p> +<p> +With the policy file created, you can then build it using the +<path>Makefile</path> provided by the system: +</p> + +<pre caption="Building a fixlocal.pp file"> +<comment>(This uses "strict" as the example policy type, substitute with your +own)</comment> +# <i>make -f /usr/share/selinux/strict/include/Makefile fixlocal.pp</i> +</pre> + +<p> +Then, if the builds succeeds, you can load it in memory. Once loaded, it will be +loaded after every boot as well, so you do not need to repeat this over and over +again. +</p> + +<pre caption="Loading the policy"> +# <i>semodule -i fixlocal.pp</i> +</pre> + </body> </section> </chapter> |