logo
Free, unlimited AI code reviews that run on commit
git-lrc git-lrc GitHub Install Now We'd appreciate a star git-lrc - Free, unlimited AI code reviews that run on commit | Product Hunt git-lrc - Free, unlimited AI code reviews that run on commit | Product Hunt

semanage-dontaudit - SELinux Policy Management dontaudit tool

Contents

Author

       This man page was written by Daniel Walsh <dwalsh@redhat.com>

                                                    20130617                               semanage-dontaudit(8)

Description

       semanage  is  used  to  configure certain elements of SELinux policy without requiring modification to or
       recompilation from policy sources.  semanagedontaudit toggles whether or not dontaudit rules will be  in
       the  policy.  Policy writers use dontaudit rules to cause confined applications to use alternative paths.
       Dontaudit rules are denied but not reported in the logs. Sometimes dontaudit  rules  can  cause  bugs  in
       applications  but  policy  writers  will  not realize it since the AVC is not audited. Turn off dontaudit
       rules with this command to see if the kernel is blocking an access.

Example

       Turn off dontaudit rules
       # semanage dontaudit off

Name

semanage-dontaudit-SELinuxPolicyManagementdontaudittool

Options

-h,--help
              Show this help message and exit

       -SSTORE,--storeSTORE
              Select an alternate SELinux Policy Store to manage

       -N,--noreload
              Do not reload the policy after commit

See Also

selinux(8), semanage(8)

Synopsis

semanagedontaudit[-h][-SSTORE][-N]{on,off}

See Also

Man Pages
audit2allow Man Pages
Man Pages
policy Man Pages
Man Pages
rules Man Pages
Man Pages
semanage Man Pages
Man Pages
SELinux Man Pages
Man Pages
abort Man Pages
Man Pages
Data::Stag::Writer Man Pages
Man Pages
ORTE_SSTORE Man Pages
Man Pages
amanda Man Pages
← View System admin Category← Back to Security and firewalls🙏  Credits & Acknowledgments