Linux repositories inspector

selinux-policy - SELinux policy configuration

SELinux Reference Policy. A complete SELinux policy that can be used as the system policy for a variety of systems and used as the basis for creating other policies.
20140730
OpenSUSE iconOpenSUSE Leap 42.3
3.14.6
Fedora iconFedora rawhide
3.14.4
Fedora iconFedora 31
Fedora iconFedora rawhide
3.14.3
Fedora iconFedora 30
3.14.2
Fedora iconFedora 29
3.14.1
Fedora iconFedora 28
3.13.1
CentOS iconCentOS 7.7.1908
DistributionVersionSincePackageInstalledPackager
CentOS iconCentOS 7.7.1908 atomicrpm3.13.1-63.atomic.el7.7Jan 07376 kiB185 BCentOS BuildSystem
CentOS iconCentOS 7.7.1908 osrpm3.13.1-252.el7Jan 07491 kiB6.75 kiBCentOS BuildSystem
CentOS iconCentOS 7.7.1908 updatesrpm3.13.1-252.el7_7.6Jan 07492 kiB6.75 kiBCentOS BuildSystem
CentOS iconCentOS 7.7.1908 updatesrpm3.13.1-252.el7.1Jan 07492 kiB6.75 kiBCentOS BuildSystem
Fedora iconFedora 28 releases/Everything-osrpm3.14.1-21.fc282019-01-14543 kiB23.9 kiBFedora Project
Fedora iconFedora 28 releases/Server-osrpm3.14.1-21.fc282019-01-14543 kiB23.9 kiBFedora Project
Fedora iconFedora 28 releases/Workstation-osrpm3.14.1-21.fc282019-01-14543 kiB23.9 kiBFedora Project
Fedora iconFedora 29 releases/Everything-osrpm3.14.2-40.fc292019-01-14117 kiB24.3 kiBFedora Project
Fedora iconFedora 29 releases/Server-osrpm3.14.2-40.fc292019-01-14117 kiB24.3 kiBFedora Project
Fedora iconFedora 29 releases/Workstation-osrpm3.14.2-40.fc292019-01-14117 kiB24.3 kiBFedora Project
Fedora iconFedora 29 releases-test/Everything-osrpm3.14.2-34.fc292019-01-14116 kiB23.9 kiBFedora Project
Fedora iconFedora 29 releases-test/Server-osrpm3.14.2-34.fc292019-01-14116 kiB23.9 kiBFedora Project
Fedora iconFedora 29 releases-test/Workstation-osrpm3.14.2-34.fc292019-01-14116 kiB23.9 kiBFedora Project
Fedora iconFedora 30 releases/Everything-osrpm3.14.3-29.fc302019-06-17123 kiB24.3 kiBFedora Project
Fedora iconFedora 30 releases/Server-osrpm3.14.3-29.fc302019-06-17123 kiB24.3 kiBFedora Project
Fedora iconFedora 30 releases/Workstation-osrpm3.14.3-29.fc302019-06-17123 kiB24.3 kiBFedora Project
Fedora iconFedora 30 releases-test/Server-osrpm3.14.3-23.fc302019-06-17119 kiB24.3 kiBFedora Project
Fedora iconFedora 30 releases-test/Workstation-osrpm3.14.3-23.fc302019-06-17119 kiB24.3 kiBFedora Project
Fedora iconFedora 31 releases/Everything-osrpm3.14.4-37.fc31Jan 07130 kiB24.3 kiBFedora Project
Fedora iconFedora 31 releases/Server-osrpm3.14.4-37.fc31Jan 07130 kiB24.3 kiBFedora Project
Fedora iconFedora rawhide development/Everything-osrpm3.14.6-9.fc33Mar 19116 kiB24.6 kiBFedora Project
Fedora iconFedora rawhide development/Server-osrpm3.14.6-9.fc33Mar 19116 kiB24.6 kiBFedora Project
Fedora iconFedora rawhide development/Workstation-osrpm3.14.4-29.fc312019-08-08128 kiB24.3 kiBFedora Project
OpenSUSE iconOpenSUSE Leap 42.3 update/ossrpm20140730-5.12019-01-2118.7 kiB18.2 kiBhttp://bugs.opensuse.org
OpenSUSE iconOpenSUSE Leap 42.3 update/ossrpm20140730-2.12019-01-2118.5 kiB18.2 kiBhttp://bugs.opensuse.org

Latest updates

Fedora icon

Fedora rawhide development/Server-os: Updated from 3.14.6-8.fc33 to 3.14.6-9.fc33

Mar 19
  • Allow zabbix_t manage and filetrans temporary socket files
  • Makefile: fix tmp/%.mod.fc target
Fedora icon

Fedora rawhide development/Everything-os: Updated from 3.14.6-8.fc33 to 3.14.6-9.fc33

Mar 19
  • Allow zabbix_t manage and filetrans temporary socket files
  • Makefile: fix tmp/%.mod.fc target
Fedora icon

Fedora rawhide development/Everything-os: Updated from 3.14.6-7.fc33 to 3.14.6-8.fc33

Mar 14
  • Allow NetworkManager read its unit files and manage services
  • Add init_daemon_domain() for geoclue_t
  • Allow to use nnp_transition in pulseaudio_role
  • Allow pdns_t domain to map files in /usr.
  • Label all NetworkManager fortisslvpn plugins as openfortivpn_exec_t
  • Allow login_pgm create and bind on netlink_selinux_socket
Fedora icon

Fedora rawhide development/Server-os: Updated from 3.14.6-7.fc33 to 3.14.6-8.fc33

Mar 14
  • Allow NetworkManager read its unit files and manage services
  • Add init_daemon_domain() for geoclue_t
  • Allow to use nnp_transition in pulseaudio_role
  • Allow pdns_t domain to map files in /usr.
  • Label all NetworkManager fortisslvpn plugins as openfortivpn_exec_t
  • Allow login_pgm create and bind on netlink_selinux_socket
Fedora icon

Fedora rawhide development/Server-os: Updated from 3.14.6-6.fc33 to 3.14.6-7.fc33

Mar 12
  • Allow sssd read systemd-resolved runtime directory
  • Allow sssd read NetworkManager's runtime directory
  • Mark nm-cloud-setup systemd units as NetworkManager_unit_file_t
  • Allow system_mail_t to signull pcscd_t
  • Create interface pcscd_signull
  • Allow auditd poweroff or switch to single mode
Fedora icon

Fedora rawhide development/Everything-os: Updated from 3.14.6-6.fc33 to 3.14.6-7.fc33

Mar 12
  • Allow sssd read systemd-resolved runtime directory
  • Allow sssd read NetworkManager's runtime directory
  • Mark nm-cloud-setup systemd units as NetworkManager_unit_file_t
  • Allow system_mail_t to signull pcscd_t
  • Create interface pcscd_signull
  • Allow auditd poweroff or switch to single mode
Fedora icon

Fedora rawhide development/Everything-os: Updated from 3.14.6-5.fc33 to 3.14.6-6.fc33

Mar 03
  • Allow postfix stream connect to cyrus through runtime socket
  • Dontaudit daemons to set and get scheduling policy/parameters
Fedora icon

Fedora rawhide development/Server-os: Updated from 3.14.6-5.fc33 to 3.14.6-6.fc33

Mar 03
  • Allow postfix stream connect to cyrus through runtime socket
  • Dontaudit daemons to set and get scheduling policy/parameters
Fedora icon

Fedora rawhide development/Everything-os: Updated from 3.14.6-4.fc33 to 3.14.6-5.fc33

Feb 23
  • Allow certmonger_t domain to read pkcs_slotd lock files
  • Allow httpd_t domain to mmap own var_lib_t files BZ(1804853)
  • Allow ipda_custodia_t to create udp_socket and added permission nlmsg_read for netlink_route_sockets
  • Make file context more variable for /usr/bin/fusermount and /bin/fusermount
  • Allow local_login_t domain to getattr cgroup filesystem
  • Allow systemd_logind_t domain to manage user_tmp_t char and block devices
Fedora icon

Fedora rawhide development/Server-os: Updated from 3.14.6-4.fc33 to 3.14.6-5.fc33

Feb 23
  • Allow certmonger_t domain to read pkcs_slotd lock files
  • Allow httpd_t domain to mmap own var_lib_t files BZ(1804853)
  • Allow ipda_custodia_t to create udp_socket and added permission nlmsg_read for netlink_route_sockets
  • Make file context more variable for /usr/bin/fusermount and /bin/fusermount
  • Allow local_login_t domain to getattr cgroup filesystem
  • Allow systemd_logind_t domain to manage user_tmp_t char and block devices
Fedora icon

Fedora rawhide development/Everything-os: Updated from 3.14.6-3.fc33 to 3.14.6-4.fc33

Feb 19
  • Update virt_read_qemu_pid_files inteface
  • Allow systemd_logind_t domain to getattr cgroup filesystem
  • Allow systemd_logind_t domain to manage user_tmp_t char and block devices
  • Allow nsswitch_domain attribute to stream connect to systemd process
Fedora icon

Fedora rawhide development/Server-os: Updated from 3.14.6-3.fc33 to 3.14.6-4.fc33

Feb 19
  • Update virt_read_qemu_pid_files inteface
  • Allow systemd_logind_t domain to getattr cgroup filesystem
  • Allow systemd_logind_t domain to manage user_tmp_t char and block devices
  • Allow nsswitch_domain attribute to stream connect to systemd process
Fedora icon

Fedora rawhide development/Server-os: Updated from 3.14.5-24.fc32 to 3.14.6-3.fc33

Feb 19
  • Allow systemd labeled as init_t to manage systemd_userdbd_runtime_t symlinks
  • Allow systemd_userdbd_t domain to read efivarfs files
Fedora icon

Fedora rawhide development/Everything-os: Updated from 3.14.5-24.fc32 to 3.14.6-3.fc33

Feb 19
  • Allow systemd labeled as init_t to manage systemd_userdbd_runtime_t symlinks
  • Allow systemd_userdbd_t domain to read efivarfs files
Fedora icon

Fedora rawhide development/Server-os: Updated from 3.14.5-23.fc32 to 3.14.5-24.fc32

Feb 08
  • Allow ptp4l_t create and use packet_socket sockets
  • Allow ipa_custodia_t create and use netlink_route_socket sockets.
  • Allow networkmanager_t transition to setfiles_t
  • Create init_create_dirs boolean to allow init create directories
Fedora icon

Fedora rawhide development/Everything-os: Updated from 3.14.5-23.fc32 to 3.14.5-24.fc32

Feb 08
  • Allow ptp4l_t create and use packet_socket sockets
  • Allow ipa_custodia_t create and use netlink_route_socket sockets.
  • Allow networkmanager_t transition to setfiles_t
  • Create init_create_dirs boolean to allow init create directories
Fedora icon

Fedora rawhide development/Everything-os: Updated from 3.14.5-21.fc32 to 3.14.5-23.fc32

Feb 04
  • Allow thumb_t connect to system_dbusd_t BZ(1795044)
  • Allow saslauthd_t filetrans variable files for /tmp directory
  • Added apache create log dirs macro
  • Tiny documentation fix
  • Allow openfortivpn_t to manage net_conf_t files.
  • Introduce boolean openfortivpn_can_network_connect.
  • Dontaudit domain chronyd_t to list in user home dirs.
  • Allow init_t to create apache log dirs.
  • Add file transition for /dev/nvidia-uvm BZ(1770588)
  • Allow syslog_t to read efivarfs_t files
  • Add ioctl to term_dontaudit_use_ptmx macro
  • Update xserver_rw_session macro
Fedora icon

Fedora rawhide development/Server-os: Updated from 3.14.5-21.fc32 to 3.14.5-23.fc32

Feb 04
  • Allow thumb_t connect to system_dbusd_t BZ(1795044)
  • Allow saslauthd_t filetrans variable files for /tmp directory
  • Added apache create log dirs macro
  • Tiny documentation fix
  • Allow openfortivpn_t to manage net_conf_t files.
  • Introduce boolean openfortivpn_can_network_connect.
  • Dontaudit domain chronyd_t to list in user home dirs.
  • Allow init_t to create apache log dirs.
  • Add file transition for /dev/nvidia-uvm BZ(1770588)
  • Allow syslog_t to read efivarfs_t files
  • Add ioctl to term_dontaudit_use_ptmx macro
  • Update xserver_rw_session macro
Fedora icon

Fedora rawhide development/Everything-os: Updated from 3.14.5-20.fc32 to 3.14.5-21.fc32

Jan 31
  • Dontaudit timedatex_t read file_contexts_t and validate security contexts
  • Make stratisd_t domain unconfined for now.
  • stratisd_t policy updates.
  • Label /var/spool/plymouth/boot.log as plymouthd_var_log_t
  • Label /stratis as stratisd_data_t
  • Allow opafm_t to create and use netlink rdma sockets.
  • Allow stratisd_t domain to read/write fixed disk devices and removable devices.
  • Added macro for stratisd to chat over dbus
  • Add dac_override capability to stratisd_t domain
  • Allow init_t set the nice level of all domains BZ(1778088)
  • Allow userdomain to chat with stratisd over dbus.
Fedora icon

Fedora rawhide development/Server-os: Updated from 3.14.5-20.fc32 to 3.14.5-21.fc32

Jan 31
  • Dontaudit timedatex_t read file_contexts_t and validate security contexts
  • Make stratisd_t domain unconfined for now.
  • stratisd_t policy updates.
  • Label /var/spool/plymouth/boot.log as plymouthd_var_log_t
  • Label /stratis as stratisd_data_t
  • Allow opafm_t to create and use netlink rdma sockets.
  • Allow stratisd_t domain to read/write fixed disk devices and removable devices.
  • Added macro for stratisd to chat over dbus
  • Add dac_override capability to stratisd_t domain
  • Allow init_t set the nice level of all domains BZ(1778088)
  • Allow userdomain to chat with stratisd over dbus.

Related packages

selinux - Security-Enhanced Linux runtime support
selinux-policy-default - Strict and Targeted variants of the SELinux policy
selinux-policy-dev - Headers from the SELinux reference policy for building modules
selinux-policy-devel - SELinux policy devel
selinux-policy-doc - Documentation for the SELinux reference policy
selinux-policy-dummy - Empty Security-Enhanced Linux policy (dummy package)
selinux-policy-minimum - SELinux minimum base policy
selinux-policy-mls - MLS (Multi Level Security) variant of the SELinux policy
selinux-policy-sandbox - SELinux policy sandbox
selinux-policy-src - Source of the SELinux reference policy for customization
selinux-policy-targeted - SELinux targeted base policy
selinux-policy-ubuntu - Security-Enhanced Linux Reference Policy
selinux-policy-ubuntu-dev - Security-Enhanced Linux Reference Policy Development Headers
selinux-policy-ubuntu-doc - Security-Enhanced Linux Reference Policy Documentation
⇧ Top