selinux-policy/man/man8/named_selinux.8

37 lines
1.0 KiB
Groff
Raw Normal View History

2006-01-06 22:51:40 +00:00
.TH "named_selinux" "8" "17 Jan 2005" "dwalsh@redhat.com" "named Selinux Policy documentation"
.de EX
.nf
.ft CW
..
.de EE
.ft R
.fi
..
2006-01-06 22:51:40 +00:00
.SH "NAME"
named_selinux \- Security Enhanced Linux Policy for the Internet Name server (named) daemon
.SH "DESCRIPTION"
Security-Enhanced Linux secures the named server via flexible mandatory access
control.
.SH BOOLEANS
SELinux policy is customizable based on least access required. So by
default SElinux policy does not allow named to write master zone files. If you want to have named update the master zone files you need to set the named_write_master_zones boolean.
.EX
2006-01-06 22:51:40 +00:00
setsebool -P named_write_master_zones 1
.EE
.PP
2006-01-06 22:51:40 +00:00
You can disable SELinux protection for the named daemon by executing:
.EX
2006-01-06 22:51:40 +00:00
setsebool -P named_disable_trans 1
service named restart
.EE
.PP
2006-01-06 22:51:40 +00:00
system-config-securitylevel is a GUI tool available to customize SELinux policy settings.
.SH AUTHOR
This manual page was written by Dan Walsh <dwalsh@redhat.com>.
.SH "SEE ALSO"
selinux(8), named(8), chcon(1), setsebool(8)