You're reading from Red Hat Enterprise Linux 8 Administration Master Linux administration skills and prepare for the RHCSA certification exam

Product type Paperback

Published in Nov 2021

Publisher Packt

ISBN-13 9781800569829

Length 534 pages

Edition 1st Edition

Tools

Linux

Concepts

System Administration

Authors (3):

Scott McCarty

Pablo Iranzo Gómez

Miguel Pérez Colino

View More author details

Table of Contents (25) Chapters

Preface

1. Section 1: Systems Administration – Software, User, Network, and Services Management

2. Chapter 1: Installing RHEL8 FREE CHAPTER

3. Chapter 2: RHEL8 Advanced Installation Options

4. Chapter 3: Basic Commands and Simple Shell Scripts

5. Chapter 4: Tools for Regular Operations

6. Chapter 5: Securing Systems with Users, Groups, and Permissions

7. Chapter 6: Enabling Network Connectivity

8. Chapter 7: Adding, Patching, and Managing Software

9. Section 2: Security with SSH, SELinux, a Firewall, and System Permissions

10. Chapter 8: Administering Systems Remotely

11. Chapter 9: Securing Network Connectivity with firewalld

12. Chapter 10: Keeping Your System Hardened with SELinux

13. Chapter 11:System Security Profiles with OpenSCAP

14. Section 3: Resource Administration – Storage, Boot Process, Tuning, and Containers

15. Chapter 12: Managing Local Storage and Filesystems

16. Chapter 13: Flexible Storage Management with LVM

17. Chapter 14: Advanced Storage Management with Stratis and VDO

18. Chapter 15: Understanding the Boot Process

19. Chapter 16: Kernel Tuning and Managing Performance Profiles with tuned

20. Chapter 17: Managing Containers with Podman, Buildah, and Skopeo

21. Section 4: Practical Exercises

22. Chapter 18: Practice Exercises – 1

23. Chapter 19: Practice Exercise – 2

24. Other Books You May Enjoy

Using SELinux Boolean settings to enable services

Many services have a wide range of configuration options for many common cases, but not always the same. For example, the http server should not access user files, but at the same time, it's a common way of operation to enable personal websites from the www or public_html folders in each user's home directory.

To overcome that use case and, at the same time, provide enhanced security, the SELinux policy makes use of Booleans.

A Boolean is a tunable that can be set by the administrator that can enable or disable conditionals in the policy code. Let's see, for example, a list of Booleans available for httpd by executing getsebol -a|grep ^http (list reduced):

httpd_can_network_connect --> off
httpd_can_network_connect_db --> off
httpd_can_sendmail --> off
httpd_enable_homedirs --> off
httpd_use_nfs --> off

This list is a reduced subset of the Booleans available, but it does give us an idea of what...

The rest of the chapter is locked

You're reading from Red Hat Enterprise Linux 8 Administration Master Linux administration skills and prepare for the RHCSA certification exam

Table of Contents (25) Chapters

Using SELinux Boolean settings to enable services

Unlock this book and the full library FREE for 7 days

Authors (3)

Personalised recommendations for you