37 lines
1.0 KiB
Groff
37 lines
1.0 KiB
Groff
.TH "named_selinux" "8" "17 Jan 2005" "dwalsh@redhat.com" "named Selinux Policy documentation"
|
|
.de EX
|
|
.nf
|
|
.ft CW
|
|
..
|
|
.de EE
|
|
.ft R
|
|
.fi
|
|
..
|
|
.SH "NAME"
|
|
named_selinux \- Security Enhanced Linux Policy for the Internet Name server (named) daemon
|
|
.SH "DESCRIPTION"
|
|
|
|
Security-Enhanced Linux secures the named server via flexible mandatory access
|
|
control.
|
|
.SH BOOLEANS
|
|
SELinux policy is customizable based on least access required. So by
|
|
default SElinux policy does not allow named to write master zone files. If you want to have named update the master zone files you need to set the named_write_master_zones boolean.
|
|
.EX
|
|
setsebool -P named_write_master_zones 1
|
|
.EE
|
|
.PP
|
|
You can disable SELinux protection for the named daemon by executing:
|
|
.EX
|
|
setsebool -P named_disable_trans 1
|
|
service named restart
|
|
.EE
|
|
.PP
|
|
system-config-securitylevel is a GUI tool available to customize SELinux policy settings.
|
|
.SH AUTHOR
|
|
This manual page was written by Dan Walsh <dwalsh@redhat.com>.
|
|
|
|
.SH "SEE ALSO"
|
|
selinux(8), named(8), chcon(1), setsebool(8)
|
|
|
|
|