Last Updated: February 25, 2016
·
707
· bendihossan

Control Your SELinux

#logging
#linux
#selinux
#server
#systems

SELinux can be incredible powerful when used correctly. Out of the box though it's a bit too totalitarian.

Temporarily set mode to permissive (log and warn but not interrupt)

setenforce 0

Make the change permanent by opening /etc/selinux/config and editing the line SELINUX line:

SELINUX=permissive

By default SELinux log messages are written to /var/log/audit/audit.log via the Linux Auditing System auditd, which is started by default. If the auditd daemon is not running, then messages are written to /var/log/messages . SELinux log messages are labeled with the "AVC" keyword so that they might be easily filtered from other messages, as with grep.

Much, much more on how to configure and create custom audit logs: http://wiki.centos.org/HowTos/SELinux

#logging
#linux
#selinux
#server
#systems

Written by Steffan Harries

Say Thanks
Respond

Related protips

Colorful console.log

106.7K
3

Logging in Angular apps ... and how to filter those log messages

32.48K
6

How to use Monolog in any PHP file

23.49K
3

Have a fresh tip? Share with Coderwall community!

Post
Post a tip
Best #Logging Authors
anasnakawa
106.7K
#logging
#css
#javascript
otupman
32.48K
#logging
#JavaScript
#Angularjs
malteo
23.49K
#logging
#Java
#Spring
dmcrodrigues
20.39K
#logging
#Objective-C
#C
tuxcanfly
18.63K
#logging
#Python
#JavaScript
Related Tags
#logging
#linux
#selinux
#server
#systems
Sponsored by
#native_company#
#native_desc#
#native_cta#
Filed Under
Tools
Awesome Job
See All Jobs
Post a job for only $299
Thanks to our sponsor
Sponsored by #native_company# — Learn More
#native_title# #native_desc#
#native_cta#